XX and XX – €4,000 Fine (Italy, 2020)
Regione Campania was fined €4,000 for publishing personal data of two individuals online without proper consent. This case is important because it shows that even public authorities must follow GDPR rules when handling personal information.
What happened
Regione Campania published personal data of individuals online without their consent.
Who was affected
Individuals whose names and addresses were published online due to a debt-related civil suit.
What the authority found
The Italian data protection authority ruled that Regione Campania violated GDPR by publishing personal information without a valid legal basis.
Why this matters
This decision highlights that public authorities must comply with GDPR and cannot assume an obligation to publish personal data without proper legal grounds. It serves as a caution for any organization handling sensitive information.
GDPR Articles Cited
The case involved the unlawful online publication of personal data of debtors, unrelated to cookies or consent mechanisms.
Violations (1)
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
Related Enforcement Actions (0)
No other enforcement actions found for XX and XX in IT
This is the only recorded action for this entity in this jurisdiction.
Similar Cases
Enforcement actions with similar violations
Details
Fine Date
2 July 2020
Authority
Garante per la protezione dei dati personali
Fine Amount
€4,000
GDPRhub ID
gdprhub-2676About this data
Cite as: Cookie Fines. XX and XX - Italy (2020). Retrieved from cookiefines.eu
Last updated: