InfoCert S.p.A. – Complaint Upheld (Italy, 2024)
Complaint Upheld
Garante per la protezione dei dati personali9 May 2024Italyfinal
ePrivacy
Complaint Upheld
The case dealt with a data breach and inadequate security measures, not involving cookies or consent issues.
GDPR Articles Cited
Art. 5 GDPR
Art. 5 GDPRCore data protection principles: lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, storage limitation, integrity, and accountability.Art. 28 GDPR
Art. 28 GDPRProcessor obligations: rules for organisations that process data on behalf of a controller (data processing agreements).Art. 32 GDPR
Art. 32 GDPRSecurity of processing: organisations must implement appropriate technical and organisational measures to protect personal data.Art. 33 GDPR
Art. 33 GDPRBreach notification to the authority: personal data breaches must be reported to the supervisory authority within 72 hours.Art. 34 GDPR
Art. 34 GDPRBreach notification to affected individuals: when a breach is likely to result in a high risk, affected people must be informed.Entities Involved
InfoCert S.p.A.
Tinexta S.p.A.
Full Legal Summary
The case dealt with a data breach and inadequate security measures, not involving cookies or consent issues.
Outcome
Complaint Upheld
A data subject complaint that was upheld by the DPA.
Related Enforcement Actions (0)
No other enforcement actions found for InfoCert S.p.A. in IT
This is the only recorded action for this entity in this jurisdiction.
Details
About this data
Cite as: Cookie Fines. InfoCert S.p.A. - Italy (2024). Retrieved from cookiefines.eu
Report Inaccuracy
Last updated: