Poste Italiane S.p.a. – €12,501,000 Fine (Italy, 2026)
Poste Italiane was fined over 12 million euros for misleading users about how it used their data and for not getting proper consent for third-party cookies. This case shows that companies must be clear and honest about data usage and obtain consent before tracking users. It emphasizes the need for transparency in online practices.
What happened
Poste Italiane processed user data and used third-party cookies without obtaining proper consent.
Who was affected
Users of Poste Italiane's services whose data was processed without proper consent.
What the authority found
The authority found that Poste Italiane violated several GDPR rules, including misleading users and failing to obtain consent for data processing.
Why this matters
This significant fine serves as a warning to companies about the importance of clear communication and consent regarding data usage. Businesses should review their cookie policies and ensure they comply with consent requirements.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
National Law Articles
Entities Involved
The case involves unauthorized access and processing of device data for security purposes, unrelated to cookies or consent mechanisms.
Violations (2)
Third-party tracking cookies or scripts are loaded without obtaining prior user consent.
Art. 13, 14 GDPR
The cookie banner uses misleading language to trick or pressure users into accepting cookies (dark patterns).
Art. 7 GDPR
Related Enforcement Actions (2)
Other enforcement actions involving Poste Italiane S.p.a. in IT
Fine
€12.5M
Similar Cases
Enforcement actions with similar violations
Details
Fine Date
17 April 2026
Authority
Garante per la protezione dei dati personali
Fine Amount
€12,501,000
GDPRhub ID
gdprhub-9958About this data
Cite as: Cookie Fines. Poste Italiane S.p.a. - Italy (2026). Retrieved from cookiefines.eu
Last updated: