Details:

Summary The Italian DPA has imposed a fine of EUR 50,000 on Azienda Usl Toscana centro. A person had reported that medical records containing sensitive patient data were still being stored in one of the healthcare facility’s former and vacant buildings which were publicly accessible.
Link: link
Related articles:  Art. 5 (1) a), e), f) GDPR, Art. 32 GDPR
Type: Non-compliance with general data processing principles
Fine: EUR 50,000
Sector Health Care

 

All data is based on The CMS’s Law GDPR Enforcement Tracker Source: https://www.enforcementtracker.com/

Tags: case law