Cegedim Santé fined €800,000 for processing health data unlawfully

Photo: Clemens Bilan – Pool/Getty Images

September 18, 20241 min read

The data was found to be pseudonymous – not anonymous – making it possible to re-identify the people concerned.

CNIL has fined Cegedim Santé €800,000 ($886,809) for processing health data without authorization. The French Data Protection Authority said that the fine reflects the “seriousness of the breaches, the massive nature of the processing and the fact that the data concerned is health data, and therefore sensitive data.”

The company, which publishes

CNIL, Data, Data privacy, EU GDPR Art 5, France, Health records

Subscribe for free to continue reading

Read more articles like this one with our free plan, or get our Premium plan for access to all content – including our 5,000+ article archive, exclusive interviews, podcasts, and more.

Subscribe for free

Already have an account? Sign in

Interested in Premium? See all plans

Rise in sanctions and compliance orders by CNIL in 2024

Enforcement

Premium

Rise in sanctions and compliance orders by CNIL in 2024

February 14, 2025

The Commission nationale de l'informatique et des libertés issued 45 more sanctions in 2024 than in 2023.

Data

Amazon France Logistique fined €32m for intrusive employee monitoring

January 26, 2024

CNIL found that the company's monitoring and data collection were disproportionate and excessively intrusive.

Data

Euro 2024: Top three data protection authorities revealed

June 20, 2024

To celebrate the Euro 2024 soccer tournament, we ranked the best of the data protection authorities from the nations competing in the tournament.

Data

Increasing number of sanctions and fines by CNIL, the authority reveals

May 7, 2024

The French administrative regulatory body has issued more sanctions thanks to a 'simplified procedure’ to handle complaints.

Latest News

DOJ announces healthcare fraud takedown with 455 defendants charged

OFAC and OFSI announce their 2026 Enhanced Partnership Exchange

FCA proposes to accept $1.3m plus commitments from traders under investigation

Latest News

FTC urges court to reject narrow intent standard in pharma monopoly case

USTR opens section 301 investigation into Germany’s drug‑pricing reforms

FCA proposes to accept $1.3m plus commitments from traders under investigation

Latest News

Hot privacy and data security issues on the Hill for 2026

Tech layoffs accelerate as AI automation looms

Opening pan-DORA's box: Navigating the practical challenges

Latest News

AI tech governance – from hallucinations to ownership

"You need to be much more committed in this job market" – Nick Litwinek, INK Recruitment

Regulatory compliance trends in Canada for sellside and buyside

Latest News

FTC urges court to reject narrow intent standard in pharma monopoly case

DOJ announces healthcare fraud takedown with 455 defendants charged

AI tech governance – from hallucinations to ownership

Cegedim Santé fined €800,000 for processing health data unlawfully

Subscribe for free to continue reading

Rise in sanctions and compliance orders by CNIL in 2024

Amazon France Logistique fined €32m for intrusive employee monitoring

Euro 2024: Top three data protection authorities revealed

Increasing number of sanctions and fines by CNIL, the authority reveals