Azienda Ospedale - Università Padova – €75,000 Fine (Italy, 2024)
Azienda Ospedale - Università Padova was fined for allowing employees to access patient health records without proper authorization. This breach of privacy rules put sensitive patient information at risk. It underscores the need for strict access controls in healthcare settings.
What happened
Hospital employees accessed patient health dossiers without authorization, leading to data breaches.
Who was affected
Patients whose health information was accessed by unauthorized hospital employees.
What the authority found
The Italian DPA found that the hospital violated GDPR by not adequately protecting sensitive personal data.
Why this matters
This ruling stresses the importance of strong data protection measures in healthcare. Organizations must ensure that only authorized personnel can access sensitive information to prevent breaches.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The case involves unauthorized access to health data and data breaches, not related to cookies or consent mechanisms.
Violations (1)
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
Related Enforcement Actions (0)
No other enforcement actions found for Azienda Ospedale - Università Padova in IT
This is the only recorded action for this entity in this jurisdiction.
Similar Cases
Enforcement actions with similar violations
Details
Fine Date
9 May 2024
Authority
Garante per la protezione dei dati personali
Fine Amount
€75,000
GDPRhub ID
gdprhub-8030About this data
Cite as: Cookie Fines. Azienda Ospedale - Università Padova - Italy (2024). Retrieved from cookiefines.eu
Last updated: