Med Life S.A. – €3,000 Fine (Romania, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Med Life S.A. was fined €3,000 for sending a patient's medical test results to the wrong person via WhatsApp. This case matters because it emphasizes the need for strong data protection measures in handling sensitive information.
What happened
Med Life S.A. sent a patient's medical test results to the wrong recipient through WhatsApp.
Who was affected
Patients whose medical test results were mishandled and sent to unauthorized recipients.
What the authority found
The Romanian DPA found that Med Life S.A. failed to implement adequate security measures to protect personal data.
Why this matters
This ruling stresses the importance of secure communication channels, especially for sensitive data like medical information. Companies must ensure robust data protection practices to prevent unauthorized disclosures.
GDPR Articles Cited
The Romanian DPA has imposed a fine of EUR 1,000 on Centrul Medical dr. Furtună Dan. The controller had sent results of a medical test via WhatsApp to the wrong recipient. As a result, personal data of the data subject, such as first and last name, telephone number and medical data, were unauthorizedly disclosed to third parties. The DPA found that the controller had failed to implement adequate technical and organizational measures to protect personal data.
Related Enforcement Actions (0)
No other enforcement actions found for Med Life S.A. in RO
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
16 March 2023
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€3,000
Enforcement Tracker ID
ETid-1687
About this data
Cite as: Cookie Fines. Med Life S.A. - Romania (2023). Retrieved from cookiefines.eu
Last updated: