Covid-19 test center – €1,800 Fine (Germany, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A Covid-19 test center in Germany was fined EUR 1,800 for accidentally displaying personal data. An employee mistakenly used a label with someone's personal information on a public window. This incident highlights the importance of handling personal data carefully to avoid breaches.
What happened
A Covid-19 test center displayed personal data on a public window due to an employee's oversight.
Who was affected
The personal data of an individual whose information was on the discarded label.
What the authority found
The data protection authority found the test center failed to protect personal data, violating GDPR's data protection principles.
Why this matters
This case underscores the need for businesses to ensure employees are trained in data protection practices. Even small oversights can lead to data breaches and fines, emphasizing the importance of careful data handling.
GDPR Articles Cited
The DPA of Hessen imposed a fine of EUR 1,800 on a Covid-19 test center. An employee had taken an adhesive label from the trash, written the test center's e-mail address on it and attached it to the center's window. However, due to a lack of care, the employee did not notice that the label still contained personal data of an individual. The data was therefore visible to third parties for about 24 hours until the label was removed.
Related Enforcement Actions (2)
Other enforcement actions involving Covid-19 test center in DE
Fine
€2K
Details
Fine Date
1 January 2022
Authority
Bundesbeauftragter für den Datenschutz
Fine Amount
€1,800
Enforcement Tracker ID
ETid-1780
About this data
Cite as: Cookie Fines. Covid-19 test center - Germany (2022). Retrieved from cookiefines.eu
Last updated: