Iliad Italia S.p.A. – €800,000 Fine (Italy, 2020)

€800,000Garante per la protezione dei dati personali13 July 2020Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

Iliad Italia S.p.A. was fined for mishandling customer data during SIM card activation and payment processing. The company failed to follow rules on fairness and transparency, risking customer privacy. Businesses should ensure their data practices are clear and secure to avoid similar penalties.

What happened

Iliad Italia S.p.A. mishandled customer data during SIM card activation and payment processing.

Who was affected

Customers whose data was processed for SIM card activation and payment transactions.

What the authority found

Italy's data protection authority fined the company for violating GDPR principles of lawfulness, fairness, transparency, integrity, and confidentiality.

Why this matters

This fine highlights the critical need for businesses to maintain transparent and secure data handling practices, especially in telecommunications and online services.

GDPR Articles Cited

AI-verified

Art. 5 GDPR
Art. 25 GDPR
View original scraped data
Art. 5 GDPR
Art. 25 GDPR

Original data from scraper before AI verification against source document.

Source verified 5 March 2026
articles corrected
national law identified
Italy enforcementGarante per la protezione dei dati personali actionsAll Iliad Italia S.p.A. actions
Full Legal Summary
Detailed

The fine relates to data protection infringements concerning the processing of customer data for the activation of SIM cards and the manner in which payment data was recorded. In addition, the data protection authority stated that the company had violated the principles of lawfulness, fairness and transparency as well as the integrity and confidentiality with regard to the processing of personal data for direct marketing purposes and the storage of customer data in the personal area of its website.

Related Enforcement Actions (0)

No other enforcement actions found for Iliad Italia S.p.A. in IT

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

13 July 2020

Authority

Garante per la protezione dei dati personali

Fine Amount

€800,000

Enforcement Tracker ID

ETid-337

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Iliad Italia S.p.A. - Italy (2020). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: