Sirio S.p.A. – €1,000 Fine (Italy, 2023)
Sirio S.p.A. was fined €1,000 for sharing an employee's personal data with a bank without their consent. This matters because it shows that companies must get permission before sharing personal information. Small business owners should ensure they have clear consent processes in place.
What happened
Sirio S.p.A. shared an employee's personal data with a bank without obtaining consent.
Who was affected
An employee whose personal data was shared without their knowledge or permission.
What the authority found
The Italian DPA found that Sirio S.p.A. violated GDPR by not having a valid legal basis for processing the employee's personal data.
Why this matters
This case highlights the importance of obtaining consent before sharing personal data. Companies should review their data-sharing practices to avoid similar issues.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Italian DPA has imposed a fine of EUR 1,000 on Sirio S.p.A.. An employee filed a complaint with the DPA because the controller had passed on their personal data to a bank without their consent and without informing them.
Violations (1)
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
Related Enforcement Actions (0)
No other enforcement actions found for Sirio S.p.A. in IT
This is the only recorded action for this entity in this jurisdiction.
Similar Cases
Enforcement actions with similar violations
Details
Fine Date
7 December 2023
Authority
Garante per la protezione dei dati personali
Fine Amount
€1,000
About this data
Cite as: Cookie Fines. Sirio S.p.A. - Italy (2023). Retrieved from cookiefines.eu
Last updated: