Not An Isolated Case
Unfortunately, this offence is not an exception in the healthcare sector: In December 2018, it was made public that Portuguese authorities had imposed a fine of € 400,000 on Barreiro Montijo hospital for violating the GDPR. Here, various staff members were able to gain unauthorized access to clinical patient records because the clinic had not taken any technical or organizational precautions to prevent internal data misuse.
In both cases, access to the system should have been restricted in oder to allow only persons who actually need access to patient data for medical purposes to access the data.
Access Rights Management Provides Protection Against Data Theft and Abuse
Both of the incidents outlined above could have been prevented if the hospitals had had adequate access rights management software installed. tenfold is an access rights management tool that can help you protect delicate data from unauthorized access by limiting access rights appropriately. Do not take risks – act now and start limiting access to data in order to reduce the risk of data theft and abuse!