Azienda Ospedale-Università Padova
€5,000
Non-compliance with general data processing principles
Sprendimo priėmimo data
2023 m. sausio 11 d.
Institucija
Italian Data Protection Authority (Garante)
IT
Sektorius
Health Care
Šalis
IT
Teisė
GDPRStatusas
FINALAprašymas
The Italian DPA has imposed a fine of EUR 5,000 on Azienda Ospedale-Università Padova. The controller had sent an email containing consent forms for participation in a clinical trial to several recipients in an open distribution list. This allowed the recipients to view the email addresses of all other recipients, 19 in total.
Teisinės citatos
Art. 5 (1)Art. 9
Problemos ir pažeidimai
Non-compliance with general data processing principles