Dent Estet Clinic SA – €1,000 Fine (Romania, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A Romanian dental clinic was fined EUR 1,000 for not reporting a data breach on time. A dentist at the clinic shared a patient's medical data online without consent. This highlights the importance of timely breach notifications and obtaining patient consent.
What happened
Dent Estet Clinic failed to notify the Romanian DPA of a data breach in a timely manner.
Who was affected
A patient whose medical information was shared online without consent by a dentist at the clinic.
What the authority found
The authority fined the clinic for not reporting the data breach promptly, as required by GDPR.
Why this matters
This case emphasizes the need for clinics and similar businesses to report data breaches quickly and ensure patient consent before sharing personal information. It serves as a reminder of the importance of data protection in healthcare.
GDPR Articles Cited
The Romanian DPA has fined Dent Estet Clinic SA (dental practice) EUR 1,000. An employed dentist at the practice had published medical information of a patient, such as photos and X-rays, in an article on a medical blog. However, the dentist failed to obtain the patient's consent before publishing the medical data. Although the patient had informed the clinic, it failed to notify the DPA of the data breach in a timely manner.
Related Enforcement Actions (0)
No other enforcement actions found for Dent Estet Clinic SA in RO
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
31 January 2023
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€1,000
Enforcement Tracker ID
ETid-1600
About this data
Cite as: Cookie Fines. Dent Estet Clinic SA - Romania (2023). Retrieved from cookiefines.eu
Last updated: