Pago PA S.p.A – Violation Found (Italy, 2021)
The Italian data protection authority found that the IO app, run by Pago PA S.p.A, used third-party cookies without user consent. This case is important because it emphasizes the need for apps to obtain clear consent before tracking user behavior.
What happened
The IO app used third-party cookies to track users without obtaining their consent.
Who was affected
Users of the IO app, which provides access to various public services in Italy, were affected by unauthorized tracking.
What the authority found
The Italian DPA found that the app's use of third-party cookies without consent violated data protection rules.
Why this matters
This finding stresses the importance of obtaining user consent for tracking technologies in apps. It serves as a reminder for app developers to ensure compliance with privacy laws, particularly regarding third-party data sharing.
GDPR Articles Cited
The IO app automatically triggered third-party tracking services without user consent, violating cookie consent rules.
Outcome
Violation Found
The DPA found a violation but did not impose a fine.
Violations (2)
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
Third-party tracking cookies or scripts are loaded without obtaining prior user consent.
Art. 13, 14 GDPR
Related Enforcement Actions (0)
No other enforcement actions found for Pago PA S.p.A in IT
This is the only recorded action for this entity in this jurisdiction.
Similar Cases
Enforcement actions with similar violations
Details
About this data
Cite as: Cookie Fines. Pago PA S.p.A - Italy (2021). Retrieved from cookiefines.eu
Last updated: