San Pio Hospital in Benevento – €6,000 Fine (Italy, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
San Pio Hospital in Benevento was fined €6,000 for not keeping sensitive employee reports secure. This means that unauthorized staff could access personal data about employees. It highlights the importance of protecting sensitive information in healthcare settings.
What happened
San Pio Hospital failed to restrict access to technical consultancy reports containing sensitive employee data.
Who was affected
Employees whose sensitive personal data was included in the technical consultancy reports.
What the authority found
The Italian DPA found that the hospital did not ensure that only authorized employees had access to sensitive data, violating GDPR's requirements for data protection.
Why this matters
This case underscores the need for organizations to implement strict access controls for sensitive information. It serves as a reminder for all businesses to regularly review their data protection practices.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Italian DPA has imposed a fine of EUR 6,000 on the San Pio Hospital in Benevento. The controller did not ensure that only entitled employees had access to technical consultancy reports for employees, which include sensitive personal data about the affected employee.
Related Enforcement Actions (0)
No other enforcement actions found for San Pio Hospital in Benevento in IT
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
16 January 2025
Authority
Garante per la protezione dei dati personali
Fine Amount
€6,000
Enforcement Tracker ID
ETid-3046
About this data
Cite as: Cookie Fines. San Pio Hospital in Benevento - Italy (2025). Retrieved from cookiefines.eu
Last updated: