Azienda Ospedaliero-Universitaria Careggi di Firenze

€9,000

Insufficient technical and organisational measures to ensure information security

Datum odločitve

20. oktober 2022

Organ

Italian Data Protection Authority (Garante)

IT

Sektor

Health Care

Država

IT

Zakon

GDPR

Status

FINAL

Opis

The Italian DPA has imposed a fine of EUR 9,000 on Azienda Ospedaliero-Universitaria Careggi di Firenze. The controller had mistakenly sent a patient medical record to the wrong patient. The DPA found that the healthcare facility had not taken sufficient technical and organizational measures to protect personal data, which allowed such an incident to occur.

Pravne navedbe

Art. 5 (1)Art. 9Art. 32

Vprašanja in kršitve

Insufficient technical and organisational measures to ensure information security
Oglejte si uradni dokument
Nazaj v zbirko podatkov o globah
Prejšnja globa
Italian Data Protection Authority (Garante) - Fond...
Naslednja Drobna
Data Protection Authority of Hamburg (HmbBfDI) - C...

Spremljajte novice o uveljavljanju zasebnosti

Spoštujemo vašo zasebnost. Eno e-poštno sporočilo na mesec, brez neželene pošte, odjava kadar koli.