Region of Tuscany – €16,000 Fine (Italy, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Region of Tuscany was fined EUR 16,000 for posting documents online that showed personal details of tourism professionals who applied for COVID-19 aid. This matters because it highlights the importance of protecting personal data even when sharing information about public aid programs.
What happened
The Region of Tuscany published documents online with personal details of tourism professionals who applied for COVID-19 aid.
Who was affected
Tourism professionals who applied for emergency aid and had their personal information exposed online.
What the authority found
The Italian DPA found that the Region of Tuscany violated data protection rules by disclosing personal data without a valid legal basis.
Why this matters
This case underscores the need for public entities to carefully handle personal data, even in emergency situations. It serves as a reminder for organizations to ensure transparency and legal compliance when publishing sensitive information.
GDPR Articles Cited
The Italian DPA has imposed a fine of EUR 16,000 on the Region of Tuscany. The region had published documents on its website containing information on professionals from the tourism sector who had applied for emergency aid in the context of the covid-19 pandemic. The documents showed, among other things, the name, address of the data subjects as well as the amount of aid granted.
Related Enforcement Actions (1)
Other enforcement actions involving Region of Tuscany in IT
Details
Fine Date
26 May 2022
Authority
Garante per la protezione dei dati personali
Fine Amount
€16,000
Enforcement Tracker ID
ETid-1294
About this data
Cite as: Cookie Fines. Region of Tuscany - Italy (2022). Retrieved from cookiefines.eu
Last updated: