Company – €60,000 Fine (Germany, 2024)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A healthcare company in Berlin was fined EUR 60,000 for not having strong enough data protection measures in its patient communication software. This matters because it shows that companies must prioritize data security to protect patient information. The fine was reduced since there was no data breach and the company cooperated with the authorities.
What happened
The DPA imposed a fine of EUR 60,000 on a healthcare company for inadequate data protection measures in its software.
Who was affected
Patients using the healthcare company's practice management software were affected by the lack of data protection.
What the authority found
The authority found that the company did not implement sufficient technical and organizational measures to ensure data protection.
Why this matters
This case highlights the importance of strong data protection practices for companies handling sensitive information. Other businesses should evaluate their data security measures to avoid similar penalties.
The DPA of Berlin imposed a fine of EUR 60,000 on a healthcare company. The company offers practice management software that includes a patient communication portal with insufficient technical and organizational measures to ensure data protection. The total amount of the fine was reduced because no data breach was found and the company cooperated with the DPA.
Related Enforcement Actions (20)
Other enforcement actions involving Company in DE
Fine
€60K
Details
Fine Date
1 January 2024
Authority
Bundesbeauftragter für den Datenschutz
Fine Amount
€60,000
Enforcement Tracker ID
ETid-2629
About this data
Cite as: Cookie Fines. Company - Germany (2024). Retrieved from cookiefines.eu
Last updated: