Continue reading on DataGuidance with:
Free Member
Limited ArticlesCreate an account to continue accessing select articles, resources, and guidance notes.
Already have an account? Log in
Create an account
Join our community for free to access exclusive whitepapers, reports, and regulatory information.
Italy: Garante publishes FAQs on medical online reports
The Italian data protection authority ('Garante') published, on 12 October 2020, frequently asked questions on medical online reports. In particular, the FAQs define medical reports as the written report issued by the medical professional in relation to the health condition of the patient after a clinical or instrumental exam, which, in the case of the online version, may be accessed through digital means. In addition, the FAQs highlight that the data controller must provide the data subject with a specific privacy notice in relation to the online medical report service, in accordance with Articles 13 and 14 of the General Data Protection Regulation (Regulation (EU) 2016/679) ('GDPR'). Moreover, the FAQs recall that the data subject must express his/her explicit, freely given, specifically, and informed consent to the online medical report service. Furthermore, the FAQs address, among other things, necessary security measures, data breach management obligations, and requirements in relation to records of processing activities and data protection impact assessments.
You can read the FAQs, only available in Italian, here.
Send us your Feedback!
Please let us know what you think of DataGuidance! It will only take 60 seconds and help us make the site better for you.
