Chile: CPLT announces breach of sensitive patient data in health industry
The Chilean Transparency Council ('CPLT') announced, on 1 June 2020, that following an audit of 12,000 purchase orders made by 86 organisations in the health sector, the CPLT found that 12 purchase orders by hospitals and six by health services were made which revealed the sensitive personal data of patients. In particular, the CPLT noted that the patient information shared was in most cases sensitive personal data and was shared without the express consent of the data subject, and without adequate security measures to protect the data. Moreover, the CPLT highlighted that in some cases this data was made public through portals. Finally, the CPLT outlined that it had sent a letter ('the Letter') to the Ministry of Health, offering technical support to remedy the situation.