A.R.N.A.S. Civico – €6,000 Fine (Italy, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A.R.N.A.S. Civico was fined €6,000 for publishing personal health data of two employees online without their consent. This breach of privacy rules shows the importance of protecting sensitive information. Companies must ensure they have proper consent before sharing such data publicly.
What happened
A.R.N.A.S. Civico published personal health data of employees on the Internet without consent.
Who was affected
Two employees of A.R.N.A.S. Civico whose personal health data was made public.
What the authority found
The Italian data protection authority found that A.R.N.A.S. Civico violated GDPR by publishing personal health data without consent.
Why this matters
This case underscores the critical need for organizations to safeguard sensitive health information and obtain proper consent before making it public. It serves as a warning to ensure compliance with data protection laws to avoid fines.
GDPR Articles Cited
The Italian DPA has imposed a fine of EUR 6,000 on A.R.N.A.S. Civico. Two employees of the controller had filed a complaint with the DPA. During its investigation, the DPA found that the controller had published two documents containing personal health data of the data subjects on the Internet without their consent, thus making them available to the public.
Related Enforcement Actions (0)
No other enforcement actions found for A.R.N.A.S. Civico in IT
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
1 December 2022
Authority
Garante per la protezione dei dati personali
Fine Amount
€6,000
Enforcement Tracker ID
ETid-1574
About this data
Cite as: Cookie Fines. A.R.N.A.S. Civico - Italy (2022). Retrieved from cookiefines.eu
Last updated: