Veneto region

€100,000

Insufficient legal basis for data processing

Data da decisão

6 de outubro de 2022

Autoridade

Italian Data Protection Authority (Garante)

IT

Setor

Public Sector and Education

País

IT

Lei

GDPR

Status

FINAL

Descrição

The Italian DPA has imposed a fine of EUR 100,000 on the Veneto Region. The DPA had received a complaint from dozens of medical and nursing staff. During its investigation, the DPA found that the Region, in the context of Covid-19 containment measures, had provided lists of information on unvaccinated employees to various healthcare facilities and the physicians in charge there. The DPA found that the Region did not have a valid legal basis for such systematic disclosure of the lists to the physicians and that only the disclosure of the lists to the health authorities was covered by the legal decree in force at the time.

Citações legais

Art. 5Art. 6Art. 2

Problemas e violações

Insufficient legal basis for data processing
Ver documento oficial
Voltar ao banco de dados de multas
Multa anterior
Italian Data Protection Authority (Garante) - Post...
Próxima multa
Data Protection Authority of Hamburg (HmbBfDI) - C...

Mantenha-se atualizado sobre a aplicação da privacidade

Respeitamos sua privacidade. Um e-mail por mês, sem spam, cancele sua inscrição a qualquer momento.