Intesa Sanpaolo Spa – €42,000 Fine (Italy, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Intesa Sanpaolo Spa was fined for not responding quickly enough to a customer's request for their personal data. This delay in providing access is a violation of data protection rules. It emphasizes the need for companies to handle data access requests promptly to maintain trust with their customers.
What happened
Intesa Sanpaolo Spa failed to respond to a customer's request for access to their personal data in a timely manner.
Who was affected
A customer who requested access to their personal data held by Intesa Sanpaolo Spa.
What the authority found
The authority found that the company violated GDPR rules by not responding to the data access request on time.
Why this matters
This case serves as a reminder for businesses to prioritize timely responses to data access requests, which is crucial for compliance and customer trust.
GDPR Articles Cited
Failure to respond to the data subject's request for access to their data in a timely manner.
Related Enforcement Actions (0)
No other enforcement actions found for Intesa Sanpaolo Spa in IT
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
14 September 2023
Authority
Garante per la protezione dei dati personali
Fine Amount
€42,000
Enforcement Tracker ID
ETid-2085
About this data
Cite as: Cookie Fines. Intesa Sanpaolo Spa - Italy (2023). Retrieved from cookiefines.eu
Last updated: