Search Privacy Fines
Browse and filter privacy enforcement fines worldwide.
253 fines found
Total: $230.6M
| Date | Company | Fine | Regulation | Authority | Country | Type | Summary |
|---|---|---|---|---|---|---|---|
| 2021-12-02 | Casa di cura Fondazione Gaetano e Piera Borghi s.r.l. | €30K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with lawful basis for data processing | --Articles: Art. 5 (1) f) GDPR, Art. 32 GDPR |
| 2021-12-02 | Ica s.r.l. | €30K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with lawful basis for data processing | --Articles: Art. 5 (1) f) GDPR, Art. 32 GDPR |
| 2021-07-22 | Flowbird Italia s.r.l. | €30K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with lawful basis for data processing | --Articles: Art. 5 GDPR, Art. 6 GDPR, Art. 30 GDPR |
| 2020-01-23 | Sapienza Università di Roma | €30K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to implement sufficient measures to ensure information security | --Articles: Art. 5 (1) f) GDPR, Art. 32 GDPR |
| 2022-12-15 | Verizon Connect Italy S.p.A. | €30K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 (1) a) GDPR, Art. 6 GDPR, Art. 28 GDPR |
| 2021-01-14 | Azienda sanitaria provinciale di Enna | €30K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with lawful basis for data processing | --Articles: Art. 5 (1) a) GDPR, Art. 6 GDPR, Art. 9 GDPR |
| 2020-01-23 | Azienda Ospedaliero Universitaria Integrata di Verona (Hospital) | €30K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to implement sufficient measures to ensure information security | --Articles: Art. 5 (1) f) GDPR, Art. 32 GDPR |
| 2023-03-23 | Bolzano Municipality | €30K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 (1) f) GDPR, Art. 25 GDPR, Art. 32 GDPR, Art. 33 GDPR |
| 2020-11-17 | Provincial Health Authority of Cosenza | €30K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 9 GDPR |
| 2022-08-01 | Policoro municipality | €26K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 (1) a), e) GDPR, Art. 5 (2) GDPR, Art. 12 GDPR, Art. 13 GDPR, Art. 24 GDPR, Art. 38 (6) GDPR |
| 2022-06-16 | Deutsche Bank S.p.A. | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-cooperation with Data Protection Authority | --Articles: Art. 12 (3) GDPR, Art. 15 GDPR |
| 2022-07-21 | Acqua Novara.VCO S.p.a | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 (1) a) GDPR, Art. 6 GDPR, Art. 28 GDPR, Art. 2-ter Codice della privacy |
| 2022-05-13 | Synlab Med srl | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 (1) a), c) GDPR, Art. 9 GDPR, Art. 2-ter Codice della privacy |
| 2021-06-10 | Dentist | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with lawful basis for data processing | --Articles: Art. 5 (1) a), c) GDPR |
| 2022-07-07 | Intesa Sanpaolo Vita S.p.a. | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 (1) a), f) GDPR |
| 2021-12-16 | Corradi s.r.l. | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with lawful basis for data processing | --Articles: Art. 5 (1) a), c), e) GDPR, Art. 13 GDPR, Art. 157 Codice della privacy |
| 2022-12-01 | Amazon Italia Logistica s.r.l. | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with subjects' rights protection safeguards | --Articles: Art. 12 GDPR, Art. 15 GDPR |
| 2020-02-06 | RTI - Reti Televisive Italiane s.p.a. | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with lawful basis for data processing | --Articles: Art. 5 GDPR, Art. 6 GDPR |
| 2022-11-10 | Sporitalia | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 (1) a) GDPR, Art. 9 GDPR, Art. 13 GDPR, Art. 30 (1) c) GDPR |
| 2020-11-23 | Burgo Group, S.p.A | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 GDPR, Art. 13 GDPR |
| 2022-04-07 | Made in Italy s.r.l.s. | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with lawful basis for data processing | --Articles: Art. 6 GDPR, Art. 7 GDPR, Art. 15 GDPR, Art. 17 GDPR, Art. 21 GDPR, Art. 130 (3) Codice della privacy, Art. 157 Codice della privacy, Art. 166 (2) Codice della privacy |
| 2020-10-26 | Università Campus Bio-medico di Roma (Polyclinic) | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | -- | --Articles: Art. 5 (2) a), f) GDPR, Art. 9 GDPR |
| 2021-12-16 | FCA Italy s.p.a. | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with subjects' rights protection safeguards | --Articles: Art. 12 GDPR |
| 2022-08-05 | Cosmopol Security S.p.A. | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with subjects' rights protection safeguards | --Articles: Art. 12 (3) GDPR, Art. 15 GDPR |
| 2020-10-29 | Gaypa s.r.l. | €20K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 (1) a), c), e) GDPR, Art. 12 GDPR, Art. 13 GDPR |