State Hospital – €5,000 Fine (Cyprus, 2019)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A state hospital in Cyprus was fined €5,000 for failing to provide a patient access to her medical records. This case is important because it reinforces patients' rights to access their own health information.
What happened
A state hospital did not fulfill a patient's request to access her medical file.
Who was affected
The patient who requested access to her medical records.
What the authority found
The Commissioner for Personal Data Protection fined the hospital for not complying with GDPR's right of access requirements.
Why this matters
This ruling emphasizes the importance of healthcare providers maintaining proper records and ensuring patients can access their information. It serves as a warning to medical institutions to improve their data management practices.
GDPR Articles Cited
A patient complained to the Commissioner that the request for access to her medical file was not satisfied by the hospital because the dossier could not be identified/located by the controller. After investigating the case, an administrative fine of €5,000 was imposed on the hospital.
Related Enforcement Actions (0)
No other enforcement actions found for State Hospital in CY
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
1 January 2019
Authority
Commissioner for Personal Data Protection
Fine Amount
€5,000
Enforcement Tracker ID
ETid-10
About this data
Cite as: Cookie Fines. State Hospital - Cyprus (2019). Retrieved from cookiefines.eu
Last updated: