Dentist – €1,000 Fine (Romania, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A dentist in Romania was fined EUR 1,000 for publishing a patient's medical data online without their consent. This case shows how important it is to get permission before sharing sensitive information. Healthcare providers should be careful with patient data.
What happened
A dentist published a patient's medical information online without obtaining consent.
Who was affected
A patient whose medical photos and X-rays were shared on a medical blog without their consent.
What the authority found
The authority found that the dentist unlawfully processed the patient's data by not obtaining consent before publication.
Why this matters
This case highlights the critical need for healthcare professionals to secure patient consent before sharing personal data. It serves as a warning to ensure compliance with data protection laws to avoid fines and protect patient privacy.
GDPR Articles Cited
The Romanian DPA has fined a dentist EUR 1,000. The controller had published medical information of a patient, such as photos and X-rays, in an article on a medical blog. However, it had failed to obtain the patient's consent before publishing the medical data. Therefore, the DPA found that the controller had unlawfully processed the data.
Related Enforcement Actions (0)
No other enforcement actions found for Dentist in RO
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
31 January 2023
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€1,000
Enforcement Tracker ID
ETid-1601
About this data
Cite as: Cookie Fines. Dentist - Romania (2023). Retrieved from cookiefines.eu
Last updated: