Casa di Cura Città di Roma – €12,000 Fine (Italy, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Casa di Cura Città di Roma was fined EUR 12,000 for allowing excessive access to patient data through its management software. This matters because it raises concerns about patient privacy and data security. Companies must ensure that only necessary information is accessible to users.
What happened
The company used patient management software that granted users access to too much patient data.
Who was affected
Patients whose data was accessed through the management software.
What the authority found
The authority found that the company violated data protection rules by providing excessive access to patient data.
Why this matters
This ruling underscores the importance of limiting access to personal data in healthcare settings. It serves as a warning for healthcare providers to implement stricter data access controls.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Italian DPA has imposed a fine of EUR 12,000 on the Casa di Cura Città di Roma. The controller used patient management software that gave users access to excessive amounts of patient data.
Related Enforcement Actions (0)
No other enforcement actions found for Casa di Cura Città di Roma in IT
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
11 September 2025
Authority
Garante per la protezione dei dati personali
Fine Amount
€12,000
Enforcement Tracker ID
ETid-2889
About this data
Cite as: Cookie Fines. Casa di Cura Città di Roma - Italy (2025). Retrieved from cookiefines.eu
Last updated: