Data Protection Academy » Data Protection News » 25,000 patient files found in empty building

patient files found in empty building

25,000 patient files found in empty building

Date: 28.02.2019

Responsible body: Helios Clinic

Type of data range: 25,000 patient files found

Around 25,000 former patient files were found in an empty former building of the Buch Clinic. The move to the new building took place in 2001, presumably the files were forgotten. This case is particularly explosive because a former hospital of the GDR State Security is said to have been located on the same site. Because of this, the Berlin data protection commissioner and the police were called in, as well as a federal commissioner for Stasi documents.

Categories of data concerned: Patient files

Legal classification: Subject to registration

Practical tip: Medical documents are subject to a ten to thirty-year retention period and must be kept securely protected. After this period, the documents must be destroyed by a certified waste management company. Those affected must be informed immediately in the event of a data breach.

Country: Berlin, Germany

Fines: Not specified

Sourceiinews

Back to the overview of the data breaches

Book demo

Nadine Porrmann
Latest posts by Nadine Porrmann (see all)

This might interest you too:

Data breach at Klarna: Third party data visible

Entering a postcode and e-mail was sufficient to view third party data. The autofill function is to blame.
Read more

Data breach Microsoft customer records leaked

In December 2019, 250 million support requests to Microsoft were available online for two days. Security researchers reported the data breach to Microsoft.
Read more

British government published private addresses of stars

The British government publishes the addresses of around 1000 celebrities, politicians and private individuals who receive the traditional New Year's honours.
Read more