HM Hospitales

€48K($52K USD)final

Date Issued

2020-02-25

Regulation

GDPR

Authority

Spanish Data Protection Authority (AEPD)

Country

Spain

Violation Type

Non-compliance with lawful basis for data processing

Currency

EUR

Violation Summary

An individual reported that at the time of their admission to the hospital they had to fill in a form that had a checkbox that indicated that if the checkbox is not ticked, the hospital can transfer the person’s private data to third parties. The data protection authority argued that this form was not in accordance with the GDPR because consent was to be obtained from the inactivity of the affected person.

Articles Violated

Art. 5 GDPRArt. 6 GDPR

View Source Document →

Other Fines for HM Hospitales

Date	Regulation	Amount (USD)	Type
2020-02-25	GDPR	$51,840	Non-compliance with lawful basis for data processing