Hospital

€3,000

Insufficient technical and organisational measures to ensure information security

Beslissingsdatum

24 maart 2025

Autoriteit

Croatian Data Protection Authority (azop)

HR

Sector

Health Care

Land

DE

Wet

GDPR

Status

FINAL

Beschrijving

The Croation DPA (AZOP) has imposed a fine of EUR 3,000 on a hospital. Despite the extensive and high-risk processing of health data, the hospital had not implemented sufficient organizational measures to ensure the security of data processing. Specifically, measures to ensure the confidentiality of health information were lacking, which undermined trust in medical services and patient privacy. The hospital was fined for breaching Art. 13, Art.32, Art. 33, and Art. 34(1) GDPR.

Juridische citaten

Art. 13Art. 32Art. 33Art. 34 (1)

Problemen en overtredingen

Insufficient technical and organisational measures to ensure information security
Officieel document bekijken
Terug naar de database met boetes
Vorige boete
Croatian Data Protection Authority (azop) - Hospit...
Volgende boete
Data Protection Authority of Hamburg (HmbBfDI) - C...

Blijf op de hoogte van privacybescherming

We respecteren je privacy. Eén e-mail per maand, geen spam, afmelden kan altijd.