Saltar al contingut principal

Search engine

Catalan Data Protection Authority

| Catalan Data Protection Authority

Home
Tools
Resolutions, opinions and reports
Resolutions, opinions and reports search tool
Unjustified access to medical history and confidentiality of passwords.

Unjustified access to medical history and confidentiality of passwords.

Back

PS 39/2019

02/06/2020

Disciplinary resolution

Result of the resolution: Warning

SECTORIAL AREA
Health
Healthcare facility
Clinical record
PERSONAL DATA
Sensitive data
Health data
SECURITY MEASURES
PRINCIPLES
Duty of secrecy

Access to medical records, without being justified by a healthcare reason, is a violation of data protection regulations. Passwords must be confidential. The data controller must be able to unequivocally determine the specific person who accesses the resources of the system that contains personal data.

Download

PS 39/2019 (File type pdf)(File weight)[20 Bytes] (Opens in new window)