Azienda sanitaria locale di Bari

€50,000

Non-compliance with general data processing principles

Data della decisione

2 marzo 2023

Autorità

Italian Data Protection Authority (Garante)

IT

Settore

Health Care

Paese

IT

Legge

GDPR

Stato

FINAL

Descrizione

The Italian DPA has imposed a fine of EUR 50,000 on Azienda sanitaria locale di Bari. The healthcare facility had published reviews of former patients on the Internet and provided access to hundreds of documents on which it was possible to identify the patients. The information about the patients had been crudely redacted, but not enough to prevent the data from being disclosed. In particular, information about the patients' state of health, clinical data on operations, diagnoses, etc. were visible.

Citazioni legali

Art. 5 (1)Art. 9Art. 25 (1)

Problemi e violazioni

Non-compliance with general data processing principles
Visualizza il documento ufficiale
Torna al database delle multe
Precedente Multa
Polish National Personal Data Protection Office (U...
Prossima ammenda
Data Protection Authority of Hamburg (HmbBfDI) - C...

Rimanete aggiornati sull'applicazione della privacy

Rispettiamo la vostra privacy. Un'email al mese, niente spam, cancellazione in qualsiasi momento.