Italy

Tecnomed Trento s.r.l.

10,000 €

GDPR enforcement action by Italian Data Protection Authority (Garante) on 2022-04-07.

Rank · Sector

#135

of 270 in Health Care

Rank · Italy

#283

of 543

Rank · All fines

#1,375

of 3,042

Case details

Authority: Italian Data Protection Authority (Garante)
Date: 2022-04-07
Controller / Processor: Tecnomed Trento s.r.l.
Sector: Health Care
Quoted Articles: Art. 5 (1) a), c) GDPR, Art. 13 GDPR, Art. 29 GDPR, Art. 32 GDPR, Art. 114 Codice della privacy
Type of violation: Non-compliance with general data processing principles

Summary

The Italian DPA has fined Tecnomed Trento s.r.l. EUR 10,000. The controller had operated several video surveillance cameras in its premises, some of them without the required authorization. Furthermore, the DPA found that information signs regarding the processing of personal data by the cameras were missing. The DPA also found that three individuals with shared credentials had authorized access to the recorded images. The DPA concluded that this circumstance was not appropriate to guarantee the confidentiality of the information processed by the video surveillance system, in particular it does not allow to check who carried out certain processing operations.

Open original source Links to the regulator's original publication or another source.