Bolzano municipality

€30,000

Insufficient technical and organisational measures to ensure information security

Karar Tarihi

23 Mart 2023

Otorite

Italian Data Protection Authority (Garante)

IT

Sektör

Health Care

Ülke

IT

Hukuk

GDPR

Durum

FINAL

Açıklama

The Italian DPA has imposed a fine of EUR 30,000 on Bolzano municipality. The Bolzano health authority had reported a data breach to the DPA involving unauthorized access to the health records of a number of patients, which was caused by a deficiency in the electronic health record service that the municipality had delegated to a processor. During its investigation, the DPA found that although the leak occurred at the processor's site, the municipality should have taken appropriate technical and organizational measures to ensure that such incidents would be avoided.

Yasal Atıflar

Art. 5 (1)Art. 25Art. 32Art. 33

Sorunlar & İhlaller

Insufficient technical and organisational measures to ensure information security
Resmi Belgeyi Görüntüle
Para Cezaları Veritabanına Geri Dön
Önceki İnce
Spanish Data Protection Authority (aepd) - Private...
Sonraki İnce
Data Protection Authority of Hamburg (HmbBfDI) - C...

Gizlilik Uygulamasından Haberdar Olun

Gizliliğinize saygı duyuyoruz. Ayda bir e-posta, spam yok, istediğiniz zaman abonelikten çıkın.