Azienda Socio Sanitaria Territoriale Ovest Milanese

€12,000

Non-compliance with general data processing principles

Data decyzji

18 lipca 2023

Władza

Italian Data Protection Authority (Garante)

IT

Sektor

Health Care

Kraj

IT

Prawo

GDPR

Status

FINAL

Opis

The Italian DPA has imposed a fine of EUR 12,000 on Azienda Socio Sanitaria Territoriale Ovest Milanese. The controller had suffered data breaches that affected the privacy of several data subjects. For example, a patient's health records were given to the wrong patient. In addition, the controller had sent an email regarding Covid-19 behavior in multiple scelrose patients to 198 recipients, allowing all recipients to openly view the other email addresses. In addition, the controller sent an invitation for a disability assessment to the wrong person.

Cytaty prawne

Art. 5 (1)Art. 9Art. 32

Problemy i naruszenia

Non-compliance with general data processing principles
Zobacz oficjalny dokument
Powrót do bazy danych grzywien
Previous Fine
Italian Data Protection Authority (Garante) - Priv...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Bądź na bieżąco z egzekwowaniem przepisów dotyczących prywatności

Szanujemy Twoją prywatność. Jeden e-mail miesięcznie, bez spamu, zrezygnuj z subskrypcji w dowolnym momencie.