Legal News

Sicilian healthcare provider gets EU GDPR fine

Published on: 21 April 2022
Published by LNB News

LNB News 21/04/2022

Document Information

Issue Date: 21 April 2022

Published Date: 21 April 2022

Jurisdiction(s): United Kingdom

Article summary

MLex has reported that a healthcare provider in Caltanissetta, Sicily has been fined €6,000 by the Italian Data Protection Authority (DPA) for violating the EU’s General Data Protection Regulation, Regulation (EU) 2016/679 (EU GDPR). The company had illegally made an employee's social security-related information available to other employees. It also failed to fulfil a data subject's right to access and co-operate with the DPA. During the investigation, the Italian DPA also found that the company infringed Article 37 of the EU GDPR when it did not update the changed contact details of its data protection officer on its website and subsequently failed to inform the DPA of the change.

Popular documents