aiComply S.r.l. – €20,000 Fine (Italy, 2021)
aiComply S.r.l. was fined EUR 20,000 for not securing personal data in a whistleblowing app it provided to Bologna Airport. The Italian privacy authority found that aiComply failed to encrypt data and improperly shared admin access with other companies. This case shows the need for clear security protocols and transparency with clients.
What happened
aiComply did not encrypt personal data and shared admin access with other companies without informing Bologna Airport.
Who was affected
Users of the whistleblowing app provided by aiComply to Bologna Airport.
What the authority found
The Italian privacy authority found aiComply violated GDPR by not implementing adequate security measures and failing to inform the airport about shared admin access.
Why this matters
The ruling underlines the importance of encryption and clear communication about data handling practices. Service providers must ensure robust security and transparency with their clients to comply with privacy laws.
GDPR Articles Cited
The case focused on data security and processor agreements, not related to cookies or consent mechanisms.
Violations (1)
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
Related Enforcement Actions (1)
Other enforcement actions involving aiComply S.r.l. in IT
Similar Cases
Enforcement actions with similar violations
Details
Fine Date
10 July 2021
Authority
Garante per la protezione dei dati personali
Fine Amount
€20,000
GDPRhub ID
gdprhub-3765About this data
Cite as: Cookie Fines. aiComply S.r.l. - Italy (2021). Retrieved from cookiefines.eu
Last updated: