Azienda USL di Parma – €5,000 Fine (Italy, 2021)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Azienda USL di Parma was fined EUR 5,000 for a privacy breach where a patient received medical reports of other patients by mistake. This highlights the importance of ensuring that sensitive medical information is only accessible to the correct individuals.
What happened
Azienda USL di Parma mistakenly included two other patients' diagnostic reports in a patient's medical record.
Who was affected
Patients whose medical reports were incorrectly shared with another patient.
What the authority found
The Italian DPA found that Azienda USL di Parma violated GDPR by not adequately protecting patient data.
Why this matters
This case underscores the need for healthcare providers to have strict data management practices to prevent unauthorized access to sensitive information. It serves as a reminder that even small errors can lead to significant privacy breaches.
GDPR Articles Cited
The Italian DPA (Garante) fined Azienda USL di Parma EUR 5,000. A patient filed a complaint with the DPA because she had mistakenly received two reports of diagnostic tests on two other patients in her medical record.
Related Enforcement Actions (0)
No other enforcement actions found for Azienda USL di Parma in IT
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
2 December 2021
Authority
Garante per la protezione dei dati personali
Fine Amount
€5,000
Enforcement Tracker ID
ETid-1010
About this data
Cite as: Cookie Fines. Azienda USL di Parma - Italy (2021). Retrieved from cookiefines.eu
Last updated: