Informatica Alto Adige Spa – €10,000 Fine (Italy, 2023)

€10,000Garante per la protezione dei dati personali23 March 2023Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

Informatica Alto Adige Spa was fined EUR 10,000 for not securing patient health data properly, leading to unauthorized access. This case shows the need for strong data protection measures to prevent breaches. Companies must ensure their systems are secure to protect sensitive information.

What happened

Informatica Alto Adige Spa failed to prevent unauthorized access to patient health data due to inadequate security measures.

Who was affected

Patients whose health data was accessed without authorization were affected.

What the authority found

The Italian DPA found that Informatica Alto Adige Spa did not implement adequate security measures to protect personal data.

Why this matters

This ruling highlights the importance of robust security practices for companies handling sensitive data. It serves as a reminder that organizations must prioritize data protection to avoid breaches and fines.

GDPR Articles Cited

Art. 32 GDPR
Art. 5(1)(f) GDPR
Italy enforcementGarante per la protezione dei dati personali actionsAll Informatica Alto Adige Spa actions
Full Legal Summary
Detailed

The Italian DPA has fined Informatica Alto Adige Spa EUR 10,000. The municipality of Bolzano had reported a data protection breach to the DPA involving unauthorized access to the health data of a number of patients caused by a deficiency in the electronic health record that the municipality had delegated to Informatica Alto Adige Spa. During its investigation, the DPA found that Alto Adige Spa had failed to take appropriate technical and organizational measures to prevent such incidents.

Related Enforcement Actions (0)

No other enforcement actions found for Informatica Alto Adige Spa in IT

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

23 March 2023

Authority

Garante per la protezione dei dati personali

Fine Amount

€10,000

Enforcement Tracker ID

ETid-1829

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Informatica Alto Adige Spa - Italy (2023). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: