Hague Hospital

€460K($497K USD)final

Date Issued

2019-06-18

Regulation

GDPR

Authority

Dutch Supervisory Authority for Data Protection (AP)

Country

Netherlands

Violation Type

Failure to implement sufficient measures to ensure information security

Currency

EUR

Violation Summary

After a serious investigation, the DDPA surmised that the Hague Hospital failed to provide the appropriate security measures for possession of patient records. This investigation had started following several events when multiple staff hospital members had checked the personal data of a Dutch person. Measures were taken, and the hospital was warned – it would have to update its security measures by the 2nd of October 2019 or it would incur e penalty of 100.000 EUR every two weeks.

Articles Violated

Art. 32 GDPR

View Source Document →

Other Fines for Hague Hospital

Date	Regulation	Amount (USD)	Type
2019-06-18	GDPR	$496,800	Failure to implement sufficient measures to ensure information security