Provincial Health Authority of Cosenza – €30,000 Fine (Italy, 2020)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Provincial Health Authority of Cosenza was fined for publishing personal details of people with claims against it on its website without a valid reason. This is important because it shows that organizations must have a legal basis to share personal information publicly. The fine was EUR 30,000, stressing the need for careful handling of sensitive data.
What happened
The Provincial Health Authority of Cosenza published personal data of individuals with claims against it on its website without a legal basis.
Who was affected
Individuals who had claims for damages against the health authority and whose personal data was published online.
What the authority found
The authority determined that the health authority lacked a valid legal basis for publishing personal data, violating GDPR.
Why this matters
This case highlights the importance of having a legal basis for processing and sharing personal data. Organizations should review their data handling practices to avoid similar breaches.
GDPR Articles Cited
Publication of personal data (including first and last name, address, tax ID) on the website of the authority about persons who have claims for damages against the authority, without sufficient legal basis
Related Enforcement Actions (0)
No other enforcement actions found for Provincial Health Authority of Cosenza in IT
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
17 November 2020
Authority
Garante per la protezione dei dati personali
Fine Amount
€30,000
Enforcement Tracker ID
ETid-447
About this data
Cite as: Cookie Fines. Provincial Health Authority of Cosenza - Italy (2020). Retrieved from cookiefines.eu
Last updated: