Lithuania Lithuania

Reda Naujokaitienė

1,153 €

GDPR enforcement action by Lithuanian Data Protection Authority (VDAI) on 2026-06-05.

Rank · Sector
#248
of 272 in Health Care
Rank · Lithuania
#16
of 16
Rank · All fines
#2,594
of 3,059

Case details

Authority
Lithuanian Data Protection Authority (VDAI)
Date
2026-06-05
Controller / Processor
Reda Naujokaitienė
Sector
Health Care
Quoted Articles
Art. 5 (1) a) GDPR, Art. 6 (1) GDPR, Art. 9 (2) GDPR
Type of violation
Insufficient legal basis for data processing

Summary

The Lithuanian DPA has imposed a fine of EUR 1,153 on Reda Naujokaitienė. The controller, who was a physician, accessed patient data from her employer's data system outside of working hours, without authorisation, and viewed the records of 1,231 patients. She extracted the data in order to inform patients that she would be continuing to work at a new medical facility and to invite them to join her there.

Open original source Links to the regulator's original publication or another source.

Related fines