Istituto Nazionale Previdenza Sociale (INPS) – €12,000 Fine (Italy, 2021)

€12,000Garante per la protezione dei dati personali15 April 2021Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

Italy's data protection authority fined the country's social security agency EUR 12,000 for not responding to requests about personal data sharing. The agency blamed a technical glitch for the oversight. This case reminds organizations to ensure their systems are reliable and responsive to data access requests.

What happened

The Italian National Institute for Social Security failed to respond to requests about personal data sharing due to a technical error.

Who was affected

Individuals who requested information about how their personal data was shared by the social security agency.

What the authority found

The Italian authority found that the agency violated privacy rules by not promptly responding to data access requests.

Why this matters

This fine emphasizes the need for organizations to have robust systems in place to handle data access requests efficiently. It highlights the importance of addressing technical issues that can lead to non-compliance with privacy regulations.

GDPR Articles Cited

Art. 12 GDPR
Art. 15 GDPR
Art. 5(1)(a) GDPR
Italy enforcementGarante per la protezione dei dati personali actionsAll Istituto Nazionale Previdenza Sociale (INPS) actions
Full Legal Summary
Detailed

The Italian DPA (Garante) has imposed a fine of EUR 12,000 on the Italian National Institute for Social Security (Istituto Nazionale della Previdenza Sociale). That fine was based on the fact that the controller failed to respond properly to two requests for information that the data subject had submitted to the controller. The requests were related to the disclosure of personal data of the data subject to third parties. Initially, the data subject had received no response to either request. In the course of the investigation, the controller then provided him with information and explained that the previous requests had not been answered due to a technical error in its e-mail system

Related Enforcement Actions (1)

Other enforcement actions involving Istituto Nazionale Previdenza Sociale (INPS) in IT

Fine
Feb 2021· Garante per la protezione dei dati personali

Original fine summary: The Italian DPA (Garante) imposed a fine of EUR 300,000 on the Istituto Nazionale Previdenza Sociale (INPS). The Italian Nation...

€300K
Current
Apr 2021

Fine

€12K

Details

Fine Date

15 April 2021

Authority

Garante per la protezione dei dati personali

Fine Amount

€12,000

Enforcement Tracker ID

ETid-707

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Istituto Nazionale Previdenza Sociale (INPS) - Italy (2021). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: