Ophthalmologic institute – €7,000 Fine (Spain, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
An ophthalmologic institute in Spain was fined €7,000 for revealing a patient's personal information when responding to an online review. This matters because it highlights the importance of protecting patient privacy, even in public forums. Businesses should be careful about what personal information they share online.
What happened
The ophthalmologic institute disclosed personal data of a patient in response to an online review.
Who was affected
Patients whose personal data was revealed by the institute's response to the review.
What the authority found
The Spanish DPA found that the institute violated GDPR rules by not adequately protecting personal data.
Why this matters
This case emphasizes the need for businesses to safeguard personal information in all communications. It serves as a reminder that even seemingly harmless interactions can lead to serious privacy violations.
GDPR Articles Cited
The Spanish DPA has imposed a fine of EUR 7,000 on a ophthalmologic institute. The controller had responded to an online review, disclosing personal data of a patient.
Related Enforcement Actions (0)
No other enforcement actions found for Ophthalmologic institute in ES
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
26 October 2023
Authority
Agencia Española de Protección de Datos
Fine Amount
€7,000
Enforcement Tracker ID
ETid-2291
About this data
Cite as: Cookie Fines. Ophthalmologic institute - Spain (2023). Retrieved from cookiefines.eu
Last updated: