Azienda ULSS 6 Euganea – €10,000 Fine (Italy, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Italy fined Azienda ULSS 6 Euganea EUR 10,000 for sending personal data to the wrong patients. The healthcare facility failed to protect personal data with proper security measures. This case highlights the importance of safeguarding sensitive information in healthcare settings.
What happened
Azienda ULSS 6 Euganea mistakenly sent documents containing personal data to the wrong patients.
Who was affected
Patients who received documents not intended for them, exposing their personal data.
What the authority found
The Italian DPA found that Azienda ULSS 6 Euganea did not take adequate steps to protect personal data, violating GDPR's requirements for data security.
Why this matters
Healthcare providers must ensure they have strong data protection measures in place to prevent unauthorized access to sensitive information. This case serves as a reminder of the potential consequences of data mishandling.
GDPR Articles Cited
The Italian DPA has imposed a fine of EUR 10,000 on Azienda ULSS 6 Euganea. The controller had mistakenly sent documents containing personal data to the wrong patients. The DPA found that the healthcare facility had not taken sufficient technical and organizational measures to protect personal data, which allowed such an incident to occur.
Related Enforcement Actions (1)
Other enforcement actions involving Azienda ULSS 6 Euganea in IT
Details
Fine Date
17 May 2023
Authority
Garante per la protezione dei dati personali
Fine Amount
€10,000
Enforcement Tracker ID
ETid-1920
About this data
Cite as: Cookie Fines. Azienda ULSS 6 Euganea - Italy (2023). Retrieved from cookiefines.eu
Last updated: