Healthcare facility – €9,200 Fine (Poland, 2024)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Polish DPA has imposed a fine of EUR 9,200 on a healthcare facility. The company suffered a ransomware attack on its systems, resulting in the loss of personal data. During its investigation, the DPA found that the controller had failed to implement appropriate technical and organizational measures to protect personal data in order to prevent such incidents. Furthermore, the controller failed to notify the data subjects about the incident.
GDPR Articles Cited
The Polish DPA has imposed a fine of EUR 9,200 on a healthcare facility. The company suffered a ransomware attack on its systems, resulting in the loss of personal data. During its investigation, the DPA found that the controller had failed to implement appropriate technical and organizational measures to protect personal data in order to prevent such incidents. Furthermore, the controller failed to notify the data subjects about the incident.
Related Enforcement Actions (0)
No other enforcement actions found for Healthcare facility in PL
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
13 June 2024
Authority
Urząd Ochrony Danych Osobowych
Fine Amount
€9,200
Enforcement Tracker ID
ETid-2468
About this data
Cite as: Cookie Fines. Healthcare facility - Poland (2024). Retrieved from cookiefines.eu
Last updated: