Movimento 5 Stelle Party

€50K($54K USD)final

Date Issued

2019-04-24

Regulation

GDPR

Authority

Italian Data Protection Authority (Garante)

Country

Italy

Violation Type

Failure to implement sufficient measures to ensure information security

Currency

EUR

Violation Summary

Website affiliated with the Movimento 5 Stelle, an Italian political party, had a data breach in 2017. Rousseau, the data processor running these websites, had insufficient security measures in place. Garante, the Italian Data Protection Authority, issued a request to update these measures and the privacy information notice, for more transparency on the processing of data. The information issue was completed on time. However, Rousseau failed to adopt new security measures, and it was fined by Garante.

Articles Violated

Art. 32 GDPR

View Source Document →

Other Fines for Movimento 5 Stelle Party

Date	Regulation	Amount (USD)	Type
2019-04-24	GDPR	$54,000	Failure to implement sufficient measures to ensure information security