An employee from the Kymenlaakso welfare area has illegally viewed the data of 44 individuals within the patient information system without proper authorization. This breach happened between January and March of the previous year and is alarming as it represents the third occurrence of unauthorized data access from this welfare area within just six months. Such unauthorized viewing of client and patient data was uncovered during an internal audit conducted by the welfare area.

Processing of customer and patient data is strictly regulated and must be based on legal grounds and a legitimate need related to the employee's work tasks. In this case, the employees did not have an appropriate justification for accessing the sensitive information, which raises serious concerns regarding data privacy and the safeguarding of personal health information. The welfare area had previously announced a case in January involving an individual who accessed the health records of over 50 people without permission.

The Kymenlaakso welfare area has since intensified monitoring of the use of its customer and patient information systems in light of these events. The latest incident adds to a broader context where, in October 2025, it was reported that an employee had viewed the health information of nearly 600 individuals over several years without authorization. This pattern of unauthorized access highlights the ongoing challenges within the organization regarding data security and the importance of reinforcing compliance measures.