Nomodidattica S.r.l. (owner of the Moltocomuni website) – €10,000 Fine (Italy, 2024)
Nomodidattica S.r.l. received a fine for publishing sensitive information about minors without proper consent. This matters because it highlights the importance of protecting personal data, especially for vulnerable individuals like children. Companies should ensure they anonymize sensitive information before sharing it online.
What happened
Nomodidattica S.r.l. published an article containing unredacted sensitive information about minors involved in a legal case.
Who was affected
Minors whose identifiable information was included in a court judgment published on the Moltocomuni website were affected.
What the authority found
The Garante ruled that Nomodidattica S.r.l. violated GDPR by failing to protect the privacy of minors, lacking a valid legal basis for sharing their information.
Why this matters
This case shows that companies can be held accountable for publishing sensitive data without proper safeguards. Website operators should review their practices to ensure they protect personal information, especially of minors.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
National Law Articles
On February 13, 2023, Nomodidattica S.r.l., a company managing the Moltocomuni website, published an article linking to a court judgment from the Tribunal of Vicenza. This judgment, accessible via the link, contained sensitive, unredacted information about minors involved in a legal dispute between two municipalities regarding social assistance costs. The judgment included identifiable information, such as minors' names, places of residence, the care facilities they were placed in, and details of their stays. On June 27, 2023, The Regional Ombudsman for Veneto (an independent public office within the Veneto region of Italy that serves to protect the rights and interests of individuals), reported the publication to Garante, highlighting that the judgment’s full content was available online without any anonymization, violating GDPR and the Italian Data Protection Code, especially considering the minors’ information. On November 9, 2023, Garante contacted the controller to address the issue and they immediately removed the article and the court judgment. The controller argued that the article aligned with journalistic standards, aiming to inform public administration employees on relevant cases. However, they admitted an error in assuming the judgment had already been anonymized by the court. On April 15, 2024, Garante formally notified the controller of potential data protection violations and opened a formal inquiry. The controller provided a formal response, explaining the free-access nature of the website, focused on public sector issues. They reiterated that they intended to inform without directly identifying the minors, but they acknowledged failing to anonymize the linked judgment. Garante ruled that Nomodidattica’s handling of minors’ data was unlawful, breaching principles of lawfulness, fairness, data minimization, and essential anonymization, violating Article 5 GDPR. For this reason, the DPA issued a fine of €10,000 imposed on Nomodidattica S.r.l. under
Violations (1)
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
Related Enforcement Actions (0)
No other enforcement actions found for Nomodidattica S.r.l. (owner of the Moltocomuni website) in IT
This is the only recorded action for this entity in this jurisdiction.
Similar Cases
Enforcement actions with similar violations
Details
Fine Date
13 September 2024
Authority
Garante per la protezione dei dati personali
Fine Amount
€10,000
GDPRhub ID
gdprhub-8542About this data
Cite as: Cookie Fines. Nomodidattica S.r.l. (owner of the Moltocomuni website) - Italy (2024). Retrieved from cookiefines.eu
Last updated: