Czech Republic
Healthcare provider
—
GDPR enforcement action by Czech Data Protection Auhtority (UOOU) on 2020.
Case details
- Authority
- Czech Data Protection Auhtority (UOOU)
- Date
- 2020
- Controller / Processor
- Healthcare provider
- Sector
- Health Care
- Quoted Articles
- Art. 5 (1) a) GDPR, Art. 12 (1) GDPR, Art. 28 (2), (3) GDPR
- Type of violation
- Insufficient fulfilment of information obligations
Summary
A healthcare provider collected personal data through a software provided by an external body without informing the patients.
Open original source
Links to the regulator's original publication or another source.
Related fines
Czech Republic
2024-04-15
13,900,000 €
ETid-2298
Avast Software s.r.o.
Industry and Commerce
Czech Republic
2023-08-02
178,000 €
ETid-2592
Multiple website operators
Not assigned
Czech Republic
2021-01-04
118,500 €
ETid-513
Unknown
Industry and Commerce
Czech Republic
2021-01-20
26,710 €
ETid-2792
Legal Person
Not assigned
Czech Republic
2020-12-18
26,710 €
ETid-2793
Legal Person
Not assigned
Czech Republic
2020-09-30
20,050 €
ETid-2828
Legal Person
Industry and Commerce