In Decision 41/2020, the Litigation Chamber of the Data Protection Authority (DPA) issued a reprimand to a hospital for its violation of an employee's access and information rights regarding an audit, which had led to the employee's dismissal.
Specifically, the hospital had refused the employee access to the external expert's audit report which had formed the basis of its decision to dismiss the employee. Article 221(2) of the Data Protection Act 2018 prohibits the DPA from fining government bodies (other than public law entities that offer goods or services on a market). Hence, the DPA issued a reprimand and ordered the hospital to provide access to additional documentation and comply with the data protection regulations within three months.
Read the ILO publication here.