Cooperativa Sociale Quadrifoglio – €20,000 Fine (Italy, 2025)

€20,000Garante per la protezione dei dati personali29 April 2025Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

Cooperativa Sociale Quadrifoglio was fined €20,000 for improperly sharing sensitive data. They forwarded files containing children's personal and health information without a legal basis. This case serves as a warning about the importance of data security and compliance.

What happened

Cooperativa Sociale Quadrifoglio forwarded files with children's personal and health data without proper legal grounds.

Who was affected

Children whose personal and health data was improperly shared by Cooperativa Sociale Quadrifoglio.

What the authority found

The Garante determined that Cooperativa Sociale Quadrifoglio failed to ensure data security, violating data protection rules.

Why this matters

This case highlights the critical need for organizations to have robust security measures in place when handling sensitive data. It reminds businesses to verify their legal grounds before sharing any personal information.

GDPR Articles Cited

AI-verified

Art. 28(3) GDPR
Art. 32(1) GDPR
View original scraped data
Art. 28(3) GDPR
Art. 32(1) GDPR

Original data from scraper before AI verification against source document.

Source verified 13 March 2026
national law identified
Italy enforcementGarante per la protezione dei dati personali actionsAll Cooperativa Sociale Quadrifoglio actions
Full Legal Summary
Detailed

The Italian DPA has imposed a fine of EUR 20,000 on Cooperativa Sociale Quadrifoglio. The entity that was fined, acting as a data processor, forwarded files containing the personal and health data of children. There was no legal basis for this, and it happened due to insufficient technical and organisational measures to ensure data security.

Related Enforcement Actions (0)

No other enforcement actions found for Cooperativa Sociale Quadrifoglio in IT

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

29 April 2025

Authority

Garante per la protezione dei dati personali

Fine Amount

€20,000

Enforcement Tracker ID

ETid-2774

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Cooperativa Sociale Quadrifoglio - Italy (2025). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: