Health insurance provider – €1,200 Fine (Hungary, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A Hungarian health insurance provider was fined for posting a customer's Covid-19 test result online, allowing unauthorized access. The company also failed to cooperate with the investigation. This case underscores the need for careful handling of sensitive health data.
What happened
The health insurer published a customer's Covid-19 test result on its website, exposing personal data.
Who was affected
The customer whose Covid-19 test result was made publicly accessible.
What the authority found
The Hungarian DPA fined the insurer for not protecting personal data and failing to cooperate during the investigation.
Why this matters
This case serves as a warning to companies handling sensitive health information to ensure robust data protection measures. It also stresses the importance of cooperation with regulatory investigations.
GDPR Articles Cited
The Hungarian DPA has imposed a fine of EUR 1,200 on a health insurance provider. The insurer had published the result of a Covid-19 test of the data subject on its website. This would have allowed unauthorized persons to access the personal data of the data subject. In addition, the insurer had not adequately cooperated with the agency during the DPA's investigation.
Related Enforcement Actions (0)
No other enforcement actions found for Health insurance provider in HU
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
25 September 2022
Authority
Nemzeti Adatvédelmi és Információszabadság Hatóság
Fine Amount
€1,200
Enforcement Tracker ID
ETid-1407
About this data
Cite as: Cookie Fines. Health insurance provider - Hungary (2022). Retrieved from cookiefines.eu
Last updated: