Newsroom: Fall 2024
Actions by the DPC, CNIL, and the CPPA. CJEU Decision and EDPB Guidelines on legitimate interest
ePrivacy & Regulatory Updates
Enforcement
On September 5th, the CNIL fined CEGEDIM SANTÉ 800,000 euros for processing health data without authorization. The healthcare software provider collected sensitive personal information, assigning a unique identifier for each patient of the same doctor. This method was considered sufficient to ensure that personal …