Scionti Selezioni Superiori S.r.l. – €70,000 Fine (Italy, 2023)
Scionti Selezioni Superiori S.r.l. faced another fine of EUR 70,000 for placing cookies on users' devices without their consent. This ruling is significant because it reinforces the need for businesses to obtain clear consent before tracking users online.
What happened
Scionti placed cookies on users' devices before obtaining their consent.
Who was affected
Website visitors who had their browsing behavior tracked by Scionti's cookies without their permission.
What the authority found
The Italian data protection authority determined that Scionti violated rules by not securing valid consent for cookie usage.
Why this matters
This case highlights the importance of obtaining user consent for cookies. Website operators should review their cookie policies to ensure compliance with consent requirements.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
National Law Articles
Scionti Selezioni Superiori S.r.l. (the data controller) faced scrutiny following numerous complaints received by the Italian DPA in 2022. The complaints highlighted unauthorised phone calls promoting the "Caffè Scionti" brand, particularly targeting individuals registered in the Italian Public Opt-out Registry (RPO). The [https://registrodelleopposizioni.it/en/home/ RPO] is an Italian registry extended to all national phone numbers, which allows citizens to opt-out of unwanted telemarketing calls. Following the DPA's request of 22 November 2022 for information, the controller explained that the unauthorised phone calls happened due to random typing errors. In this regard, it explained that its development and turnover are based on word-of-mouth marketing of customers, as well as by carrying out telephone promotional activities 'in manual mode', which it admitted to have an average of 8 to 12 errors of typing monthly. In early 2023, the DPA received more complaints related to unsolicited phone calls by the controller. Thus, on 24 February 2023, the DPA requested the controller to provide more information for a complete evaluation of its processing activities. The controller confirmed that the database at its disposal for marketing purposes contained data obtained from third parties who, in turn, had been advertising the Scionti brand. But it also complained that its brand had been used by third parties without any authorisation and that it was unable to register to the RPO as an operator and therefore keep track of the existing objections to telemarketing. On the basis of the information provided, the DPA found a systematic lack of compliance with GDPR provisions by the controller. The DPA began by explaining that pursuant to Article 4 GDPR a phone number randomly dialled and called for telemarketing purposes can be considered personal data. Hence, the GDPR and the Italian Privacy Code apply. In light of this, the controller's acquisition of the personal data by w
Violations (1)
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
Related Enforcement Actions (0)
No other enforcement actions found for Scionti Selezioni Superiori S.r.l. in IT
This is the only recorded action for this entity in this jurisdiction.
Similar Cases
Enforcement actions with similar violations
Details
Fine Date
12 October 2023
Authority
Garante per la protezione dei dati personali
Fine Amount
€70,000
GDPRhub ID
gdprhub-6558About this data
Cite as: Cookie Fines. Scionti Selezioni Superiori S.r.l. - Italy (2023). Retrieved from cookiefines.eu
Last updated: