Health Protection Agency of Sardinia (ATS) – €8,000 Fine (Italy, 2021)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Health Protection Agency of Sardinia sent a patient's medical records to the wrong person. This privacy mistake resulted in an €8,000 fine. It's crucial for healthcare providers to double-check patient information to avoid such errors.
What happened
The Health Protection Agency of Sardinia mistakenly sent a patient's medical records to another patient.
Who was affected
Patients whose medical records were incorrectly shared with others were affected.
What the authority found
The Italian DPA fined the agency for mishandling sensitive medical data, violating GDPR's data protection rules.
Why this matters
This case underscores the need for strict data handling protocols in healthcare to protect patient privacy. Organizations should implement checks to prevent unauthorized data sharing.
GDPR Articles Cited
The Italian DPA (Garante) has imposed a fine of EUR 8,000 on the Health Protection Agency of Sardinia (ATS). A patient had mistakenly received medical records and clinical documentation from another patient in his own file.
Related Enforcement Actions (0)
No other enforcement actions found for Health Protection Agency of Sardinia (ATS) in IT
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
14 October 2021
Authority
Garante per la protezione dei dati personali
Fine Amount
€8,000
Enforcement Tracker ID
ETid-932
About this data
Cite as: Cookie Fines. Health Protection Agency of Sardinia (ATS) - Italy (2021). Retrieved from cookiefines.eu
Last updated: