Azienda Sanitaria Locale TO4
€8,400
Non-compliance with general data processing principles
Data da decisão
23 de maio de 2024
Autoridade
Italian Data Protection Authority (Garante)
IT
Setor
Health Care
País
IT
Lei
GDPRStatus
FINALDescrição
The Italian DPA has imposed a fine of EUR 8,400 on Azienda Sanitaria Locale TO4. The controller had sent an email containing information on medical treatment plans to several pacients in an open distribution list. This allowed the recipients to view the email addresses of all other recipients, 44 in total.
Citações legais
Art. 5 (1)Art. 9
Problemas e violações
Non-compliance with general data processing principles