National Center of Addiction Medicine ('SAA')

€20,600

Insufficient technical and organisational measures to ensure information security

Data deciziei

10 martie 2020

Autoritatea

Icelandic data protection authority ('Persónuvernd')

IS

Sector

Health Care

Țara

IS

Legea

GDPR

Statut

FINAL

Descriere

Persónuvernd noted that a former employee of the SAA received boxes of allegedly personal belongings that he had left there, but which also contained patient data, including the health records of 252 former patients and documents with the names of about 3,000 people who had participated in rehabilitation for alcohol and drug abuse.

Citări juridice

Art. 5 (1)Art. 32

Probleme și încălcări

Insufficient technical and organisational measures to ensure information security
Vezi documentul oficial
Înapoi la baza de date a amenzilor
Amenda anterioară
Danish Data Protection Authority (Datatilsynet) - ...
Următoarea amendă
Data Protection Authority of Hamburg (HmbBfDI) - C...

Rămâneți la curent cu aplicarea normelor de confidențialitate

Îți respectăm confidențialitatea. Un e-mail pe lună, fără spam, dezabonare oricând.