The Garante for personal data protection (“Garanteâ€) has fined an ASL (or Local Health Authority) in the province of Naples for 30,000 euros following a hacking attack that affected more than 840,000 people, including patients and employees.
The Local health body (“ASLâ€) notified the Garante of a data breach, under Article 33 GDPR. The data breach was caused by a ransomware via cyber-attack, which infected the health institution’s network. The ASL stated that there were malfunctions related to the delivery of hospital and laboratory services.
