A hospital in The Hague was fined € 460,000 for violation of the GDPR. The Dutch supervisory authority “Autoriteit Persoonsgegevens” recently announced that the fine was imposed in 2018.

Hospital Staff Gained Access To Prominent Patient’s Data

The incident occurred while famous reality TV star Samantha de Jong was a patient at Haga Hospital. Staff members gained access to de Jong’s patient records. A statement by the Dutch data protection authority explained that the clinic did not have adequate internal security measures in place to sufficiently protect patient records from unauthorized access. The hospital was furthermore unable to fulfill some important GDPR requirements, such as two-factor authentication and regular log file reviews. The security authority announced that further fines will be imposed if the hospital does not improve safety precautions by October 2nd, 2019.

[FREE WHITEPAPER] Best Practices for Access Rights Management in Microsoft® Environments

Read our whitepaper to learn how best to treat access rights in Microsoft® environments.

Download

[FREE WHITEPAPER] Best Practices for Access Rights Management in Microsoft® Environments

Read our whitepaper to learn how best to treat access rights in Microsoft® environments.

Download

Not An Isolated Case

Unfortunately, this offence is not an exception in the healthcare sector: In December 2018, it was made public that Portuguese authorities had imposed a fine of € 400,000 on Barreiro Montijo hospital for violating the GDPR. Here, various staff members were able to gain unauthorized access to clinical patient records because the clinic had not taken any technical or organizational precautions to prevent internal data misuse.
In both cases, access to the system should have been restricted in oder to allow only persons who actually need access to patient data for medical purposes to access the data.

Access Rights Management Provides Protection Against Data Theft and Abuse

Both of the incidents outlined above could have been prevented if the hospitals had had adequate access rights management software installed. tenfold is an access rights management tool that can help you protect delicate data from unauthorized access by limiting access rights appropriately. Do not take risks – act now and start limiting access to data in order to reduce the risk of data theft and abuse!

While you’re here – why don’t you sign up for our webinar?

“Top 5 Risks in Access Management” –
held by Helmut Semmelmayer, tenfold Software GmbH

Sign up for free

While you’re here – why don’t you sign up for our webinar?

“Top 5 Risks in Access Management” –
held by Helmut Semmelmayer, tenfold Software GmbH

Sign up now