Azienda Socio Sanitaria Territoriale Ovest Milanese

€12,000

Non-compliance with general data processing principles

Datum odločitve

18. julij 2023

Organ

Italian Data Protection Authority (Garante)

IT

Sektor

Health Care

Država

IT

Zakon

GDPR

Status

FINAL

Opis

The Italian DPA has imposed a fine of EUR 12,000 on Azienda Socio Sanitaria Territoriale Ovest Milanese. The controller had suffered data breaches that affected the privacy of several data subjects. For example, a patient's health records were given to the wrong patient. In addition, the controller had sent an email regarding Covid-19 behavior in multiple scelrose patients to 198 recipients, allowing all recipients to openly view the other email addresses. In addition, the controller sent an invitation for a disability assessment to the wrong person.

Pravne navedbe

Art. 5 (1)Art. 9Art. 32

Vprašanja in kršitve

Non-compliance with general data processing principles
Oglejte si uradni dokument
Nazaj v zbirko podatkov o globah
Prejšnja globa
Italian Data Protection Authority (Garante) - Priv...
Naslednja Drobna
Data Protection Authority of Hamburg (HmbBfDI) - C...

Spremljajte novice o uveljavljanju zasebnosti

Spoštujemo vašo zasebnost. Eno e-poštno sporočilo na mesec, brez neželene pošte, odjava kadar koli.