Società triveneta di chirurgia – €2,000 Fine (Italy, 2021)

€2,000Garante per la protezione dei dati personali15 April 2021Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

Italy fined a surgical society EUR 2,000 for sharing a patient's personal data without consent. A doctor showed slides with detailed patient information at a conference and then posted them online. This case shows the importance of protecting patient privacy in medical presentations.

What happened

A surgical society published a patient's detailed medical information online without consent.

Who was affected

A patient whose personal and medical data was shared without permission.

What the authority found

The Italian authority ruled that sharing the patient's data without consent violated GDPR's privacy rules.

Why this matters

This case highlights the need for medical professionals to safeguard patient data, especially when sharing case studies. It underscores the importance of obtaining consent before disclosing personal information.

GDPR Articles Cited

Art. 6 GDPR
Art. 9 GDPR
Art. 5(1)(a) GDPR
Italy enforcementGarante per la protezione dei dati personali actionsAll Società triveneta di chirurgia actions
Full Legal Summary
Detailed

The Italian DPA (Garante) has imposed a fine of EUR 2,000 on Società triveneta di chirurgia. A physician had shown slides of a clinical case at a congress, which were subsequently published on the controller's website. The slides contained personal data of a patient, such as the patient's initials, age, gender, a detailed history of the pathology suffered by the patient, details of admissions from 1980 to 2016 and the surgical procedures performed during this period, indicating the date of admission and surgery, the surgical department that performed the procedures, the days spent in hospital, numerous diagnostic images, and 22 photographs showing the patient during the surgeries. At no time had the data subject consented to such processing of his personal data.

Related Enforcement Actions (0)

No other enforcement actions found for Società triveneta di chirurgia in IT

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

15 April 2021

Authority

Garante per la protezione dei dati personali

Fine Amount

€2,000

Enforcement Tracker ID

ETid-682

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Società triveneta di chirurgia - Italy (2021). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: