Azienda Socio Sanitaria Territoriale Rhodense – €3,000 Fine (Italy, 2022)

€3,000Garante per la protezione dei dati personali21 July 2022Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

An Italian healthcare facility was fined EUR 3,000 after losing a patient's medical record. The facility lacked proper security measures to protect personal data, leading to the loss. This case shows the critical need for healthcare providers to safeguard sensitive information.

What happened

A healthcare facility lost a patient's medical record due to insufficient security measures.

Who was affected

A patient whose personal and medical information was lost by the healthcare facility.

What the authority found

The Italian DPA found that the healthcare facility did not have adequate security measures to protect personal data, violating GDPR rules.

Why this matters

This case emphasizes the importance of strong data protection measures in healthcare settings. It serves as a warning that losing sensitive data can result in penalties and highlights the need for robust security protocols.

GDPR Articles Cited

Art. 32(GDPR)
Art. 5(1)(f) GDPR
Italy enforcementGarante per la protezione dei dati personali actionsAll Azienda Socio Sanitaria Territoriale Rhodense actions
Full Legal Summary
Detailed

The Italian DPA has fined Azienda Socio Sanitaria Territoriale Rhodense EUR 3,000. The healthcare facility had reported the loss of a patient's medical record. The file contained personal data such as surname, first name, gender, date and place of birth, tax number, place of residence, telephone numbers of the data subject. The DPA determined that the incident was caused by a lack of technical and organizational measures to protect personal data at the healthcare facility.

Related Enforcement Actions (0)

No other enforcement actions found for Azienda Socio Sanitaria Territoriale Rhodense in IT

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

21 July 2022

Authority

Garante per la protezione dei dati personali

Fine Amount

€3,000

Enforcement Tracker ID

ETid-1416

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Azienda Socio Sanitaria Territoriale Rhodense - Italy (2022). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: