Comune di Luino – €10,000 Fine (Italy, 2020)

€10,000Garante per la protezione dei dati personali17 December 2020Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

The municipality of Luino was fined EUR 10,000 for publishing a document with personal data about a council member and failing to appoint a data protection officer. The document was accessible online without restrictions. This case emphasizes the need for public bodies to protect personal data and comply with GDPR rules.

What happened

Luino published a document with personal data about a council member and failed to appoint a data protection officer.

Who was affected

A local council member whose personal and complaint-related information was exposed online.

What the authority found

The Garante found that Luino violated GDPR by publishing personal data without a valid legal basis and not appointing a data protection officer.

Why this matters

This case serves as a reminder for public entities to ensure proper data protection measures and appoint a data protection officer as required by GDPR. It highlights the importance of safeguarding personal information in public records.

GDPR Articles Cited

Art. 5(1)(a) GDPR
Art. 6(1)(c) GDPR
Art. 6(2) GDPR
Art. 6(3)(b) GDPR
Art. 37(1)(a) GDPR
Art. 37(7) GDPR
Italy enforcementGarante per la protezione dei dati personali actionsAll Comune di Luino actions
Full Legal Summary
Detailed

The Italian DPA (Garante) imposed a fine of EUR 10,000 on the municipality of Luino. The controller had published a document containing personal data of a local council member. In addition to personal data, the document also contained information about a complaint procedure filed against him by the mayor. The freely accessible document could be downloaded without further authentication. Furthermore, the municipality had failed to name a data protection officer and to provide the DPA with his/her contact details.

Related Enforcement Actions (0)

No other enforcement actions found for Comune di Luino in IT

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

17 December 2020

Authority

Garante per la protezione dei dati personali

Fine Amount

€10,000

Enforcement Tracker ID

ETid-590

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Comune di Luino - Italy (2020). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: