Villabate municipality – €6,000 Fine (Italy, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Italian privacy authority fined Villabate municipality EUR 6,000 for sharing a former employee's personal data without permission. They also failed to appoint a data protection officer. This case highlights the importance of protecting employee data and having a dedicated privacy officer.
What happened
Villabate municipality shared personal data of a former employee with unauthorized third parties without a valid legal basis.
Who was affected
A former employee of Villabate municipality whose personal data was improperly disclosed.
What the authority found
The Italian DPA ruled that Villabate municipality violated GDPR by disclosing personal data without a valid legal basis and failing to appoint a data protection officer.
Why this matters
This case underscores the need for municipalities and businesses to safeguard personal data and ensure compliance with GDPR by appointing a data protection officer. It serves as a reminder that even local governments must adhere to privacy laws.
GDPR Articles Cited
The Italian DPA has fined Villabate municipality EUR 6,000. The municipality had disclosed personal data of a former employee to unauthorized third parties without a valid legal basis. The DPA also found that the municipality had not appointed a data protection officer.
Related Enforcement Actions (0)
No other enforcement actions found for Villabate municipality in IT
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
12 May 2022
Authority
Garante per la protezione dei dati personali
Fine Amount
€6,000
Enforcement Tracker ID
ETid-1290
About this data
Cite as: Cookie Fines. Villabate municipality - Italy (2022). Retrieved from cookiefines.eu
Last updated: