Ministero delle Imprese e del Made in Italy – €15,000 Fine (Italy, 2026)

€15,000Garante per la protezione dei dati personali26 February 2026Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

The Ministero delle Imprese e del Made in Italy was fined for improperly posting a ranking list of job candidates online, which included personal data. Even after being requested to remove it, the list reappeared on a third-party site. This case highlights the need for government bodies to protect personal information.

What happened

The ministry published a ranking list of job candidates online that included personal data.

Who was affected

Job candidates whose personal information was included in the ranking list were affected.

What the authority found

The data protection authority fined the ministry for failing to adequately protect personal data after it was requested to be removed.

Why this matters

This case emphasizes the importance of data protection for public institutions. Government agencies must ensure that personal data is handled and removed properly to avoid breaches.

GDPR Articles Cited

AI-verified

Art. 6(GDPR)
Art. 9(GDPR)
Art. 12(GDPR)
Art. 5(1)(a) GDPR
View original scraped data
Art. 5(1) a) GDPR
c) GDPR
Art. 6(GDPR)
Art. 9(GDPR)
Art. 12(GDPR)

Original data from scraper before AI verification against source document.

Source verified 29 April 2026
national law identified
Italy enforcementGarante per la protezione dei dati personali actionsAll Ministero delle Imprese e del Made in Italy actions
Full Legal Summary
Detailed

The Italian DPA has imposed a fine of EUR 15,000 on the Ministero delle Imprese e del Made in Italy. The controller started a 'Open competition, based on qualifications and examinations, to fill a total of 225 full-time, permanent non-managerial posts (...)' After the competition was closed, the ranking list of the candidates had still been effectivly online on the controllers website and could be accessed by web links. The ranking list included personal data of the candidates. The controller later took the list offline after a request to delete the data, but the list reappeared later on the website of a third party.

Related Enforcement Actions (0)

No other enforcement actions found for Ministero delle Imprese e del Made in Italy in IT

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

26 February 2026

Authority

Garante per la protezione dei dati personali

Fine Amount

€15,000

Enforcement Tracker ID

ETid-3116

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Ministero delle Imprese e del Made in Italy - Italy (2026). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: