Undici S.r.l.s. – €8,000 Fine (Italy, 2025)

€8,000Garante per la protezione dei dati personali10 April 2025Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

Undici S.r.l.s. received an €8,000 fine for using personal data from potential customers without checking if it was obtained legally. This matters because it shows the importance of verifying data sources before using them for marketing. Small businesses should ensure they comply with data protection rules to avoid similar penalties.

What happened

Undici S.r.l.s. used personal data obtained by Realmaps S.r.l. for direct marketing without verifying its legality.

Who was affected

Potential customers whose personal data was collected and used for marketing by Undici S.r.l.s.

What the authority found

The Italian DPA ruled that Undici S.r.l.s. failed to verify the lawfulness of the data obtained, violating multiple GDPR requirements.

Why this matters

This case highlights the need for companies to ensure their data sources are compliant with data protection laws. It serves as a reminder that businesses can be held accountable for the data they use.

GDPR Articles Cited

AI-verified

Art. 7(GDPR)
Art. 12(GDPR)
Art. 13(GDPR)
Art. 14(GDPR)
Art. 15(GDPR)
Art. 24(GDPR)
Art. 25(GDPR)
Art. 5(1)(a) GDPR
Art. 6(1)(a) GDPR
View original scraped data
Art. 5(1) a) GDPR
(2) GDPR
Art. 6(1) a) GDPR
Art. 7(GDPR)
Art. 12(GDPR)
Art. 13(GDPR)
Art. 14(GDPR)
Art. 15(GDPR)
Art. 24(GDPR)
Art. 25(GDPR)

Original data from scraper before AI verification against source document.

Source verified 14 March 2026
articles corrected
national law identified
Italy enforcementGarante per la protezione dei dati personali actionsAll Undici S.r.l.s. actions
Full Legal Summary
Detailed

The Italian DPA has imposed a fine of EUR 8,000 on Undici S.r.l.s. The controller obtained personal data of potential customers by Realmaps S.r.l., which obtained the data in violation of the GDPR (see ETiD: 2649). The controller used the data for direct marketing purposes. The controller failed to verify the lawfulness of the data obtained, failed to comply with requests to exercise data subjects rights and failed to provide evidence of compliance with data protection requirements.

Related Enforcement Actions (0)

No other enforcement actions found for Undici S.r.l.s. in IT

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

10 April 2025

Authority

Garante per la protezione dei dati personali

Fine Amount

€8,000

Enforcement Tracker ID

ETid-2675

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Undici S.r.l.s. - Italy (2025). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: