Camedi s.r.l. – €10,000 Fine (Italy, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Italy's data protection authority fined Camedi s.r.l. Medical Center EUR 10,000 for sending invoices and appointment reminders to the wrong person. This mistake happened because two patients had the same name, leading to a mix-up. Businesses should ensure they have strong data verification processes to avoid similar errors.
What happened
Camedi s.r.l. sent invoices and appointment reminders to the wrong patient due to a name mix-up.
Who was affected
Patients at Camedi s.r.l. Medical Center who received incorrect invoices and reminders due to shared names.
What the authority found
The Italian authority found that Camedi s.r.l. violated GDPR by failing to properly handle personal data, leading to a data mix-up.
Why this matters
This case highlights the importance of accurate data handling in medical centers to protect patient privacy. It serves as a reminder for businesses to implement checks to prevent personal data errors.
GDPR Articles Cited
The Italian DPA has imposed a fine of EUR 10,000 on Camedi s.r.l. Medical Center. A person had filed a complaint with the DPA because they had received invoices as well as appointment reminders from another patient with the same name as theirs.
Related Enforcement Actions (0)
No other enforcement actions found for Camedi s.r.l. in IT
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
1 June 2023
Authority
Garante per la protezione dei dati personali
Fine Amount
€10,000
Enforcement Tracker ID
ETid-1997
About this data
Cite as: Cookie Fines. Camedi s.r.l. - Italy (2023). Retrieved from cookiefines.eu
Last updated: