Comune di Nave – €6,000 Fine (Italy, 2025)

€6,000Garante per la protezione dei dati personali18 December 2025Italy
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

The Italian data protection authority fined Comune di Nave EUR 6,000 for using an automatic license plate recognition system without proper legal grounds. This matters because the system processed sensitive data without informing people adequately. Businesses should ensure they have a valid reason for collecting data and communicate clearly with users.

What happened

Comune di Nave processed data from an automatic license plate recognition system without a sufficient legal basis.

Who was affected

Drivers whose vehicles were monitored by the license plate recognition system were affected.

What the authority found

The authority ruled that Comune di Nave lacked a valid legal basis for processing personal data and failed to inform users properly.

Why this matters

This case highlights the importance of having a legal reason for data processing and being transparent with users. Companies should review their data collection practices and ensure compliance with privacy laws.

GDPR Articles Cited

AI-verified

Art. 13(GDPR)
Art. 35(GDPR)
Art. 5(1)(a) GDPR
Art. 6(1)(c) GDPR
Art. 12(1) GDPR
View original scraped data
Art. 5(1) a) GDPR
Art. 6(1) c) GDPR
e)
(2)
(3) GDPR
Art. 12(1) GDPR
(3)
(4) GDPR
Art. 13(GDPR)
Art. 35(GDPR)

Original data from scraper before AI verification against source document.

Source verified 14 March 2026
articles corrected
national law identified
Italy enforcementGarante per la protezione dei dati personali actionsAll Comune di Nave actions
Full Legal Summary
Detailed

The Italian DPA has imposed a fine of EUR 6,000 on the Commune di Nave. The controller has installed an automatic licence plate recognition system which processes data on when a car passes a specific control point. This data is stored for seven days, after which it is automatically deleted. The system is also connected to the Motor Vehicle Registry and automatically verifies the passing vehicle's insurance coverage, periodic inspection and environmental class. This data processing occurred without a sufficient legal basis. The controller also failed to adequately inform data subjects, develop a data protection impact assessment and react adequately to data subject requests to exercise their rights.

Related Enforcement Actions (0)

No other enforcement actions found for Comune di Nave in IT

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

18 December 2025

Authority

Garante per la protezione dei dati personali

Fine Amount

€6,000

Enforcement Tracker ID

ETid-3023

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Comune di Nave - Italy (2025). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: