Conservatory – €5,000 Fine (Italy, 2026)

€5,000Garante per la protezione dei dati personali26 February 2026Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

The Conservatory was fined €5,000 for sending an email to over 100 employees that included sensitive information about a former director's dismissal. This ruling emphasizes that companies must be careful about sharing personal details, even internally.

What happened

The Conservatory sent an email detailing the dismissal of a former Administrative Director, including sensitive information about past criminal proceedings.

Who was affected

Over one hundred employees who received the email containing sensitive information about the former director.

What the authority found

The Italian DPA determined that the Conservatory violated GDPR by sharing personal information without a valid legal basis.

Why this matters

This case serves as a warning that sharing sensitive information can lead to significant fines. Companies should train staff on data privacy to prevent similar issues.

GDPR Articles Cited

AI-verified

Art. 6(GDPR)
Art. 10(GDPR)
Art. 5(1)(a) GDPR
View original scraped data
Art. 5(1) a) GDPR
c) GDPR
Art. 6(GDPR)
Art. 10(GDPR)

Original data from scraper before AI verification against source document.

Source verified 29 April 2026
articles corrected
national law identified
Italy enforcementGarante per la protezione dei dati personali actionsAll Conservatory actions
Full Legal Summary
Detailed

The Italian DPA has imposed a fine of EUR 5,000 on a Conservatory. The controller sent an email to over one hundred employees informing them that a former Administrative Director had been dismissed due to disciplinary measures. The email included further details of the reasons for the dismissal, including the fact that the former employee had previously been subject to criminal proceedings.

Related Enforcement Actions (0)

No other enforcement actions found for Conservatory in IT

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

26 February 2026

Authority

Garante per la protezione dei dati personali

Fine Amount

€5,000

Enforcement Tracker ID

ETid-1251

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Conservatory - Italy (2026). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: