Hospital – €3,000 Fine (Croatia, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Croation DPA (AZOP) has imposed a fine of EUR 3,000 on a hospital. Despite the extensive and high-risk processing of health data, the hospital had not implemented sufficient organizational measures to ensure the security of data processing. Specifically, measures to ensure the confidentiality of health information were lacking, which undermined trust in medical services and patient privacy. The hospital was fined for breaching Art. 13, Art.32, Art. 33, and Art. 34(1) GDPR.
GDPR Articles Cited
The Croation DPA (AZOP) has imposed a fine of EUR 3,000 on a hospital. Despite the extensive and high-risk processing of health data, the hospital had not implemented sufficient organizational measures to ensure the security of data processing. Specifically, measures to ensure the confidentiality of health information were lacking, which undermined trust in medical services and patient privacy. The hospital was fined for breaching Art. 13, Art.32, Art. 33, and Art. 34(1) GDPR.
Related Enforcement Actions (3)
Other enforcement actions involving Hospital in HR
Fine
€3K
Details
Fine Date
24 March 2025
Authority
Agencija za zaštitu osobnih podataka
Fine Amount
€3,000
Enforcement Tracker ID
ETid-2607
About this data
Cite as: Cookie Fines. Hospital - Croatia (2025). Retrieved from cookiefines.eu
Last updated: