Lombardy Region – €20,000 Fine (Italy, 2023)
The Lombardy Region was fined for publishing personal data on its website without proper consent. This is important because it shows that organizations must handle personal information carefully, especially when sharing it online. Failing to do so can lead to significant fines.
What happened
The Lombardy Region published personal data on its website without obtaining proper consent.
Who was affected
Employees of companies whose personal data was disclosed on the Lombardy Region's website.
What the authority found
The Garante ruled that the Lombardy Region violated data protection rules by unlawfully disclosing personal data.
Why this matters
This case highlights the need for organizations to ensure they have valid consent before publishing personal information. It serves as a reminder for all businesses to review their data handling practices to avoid similar issues.
GDPR Articles Cited
National Law Articles
The case focused on the publication of personal data on a website, unrelated to cookies or consent mechanisms.
Violations (1)
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
Related Enforcement Actions (0)
No other enforcement actions found for Lombardy Region in IT
This is the only recorded action for this entity in this jurisdiction.
Similar Cases
Enforcement actions with similar violations
Details
Fine Date
26 October 2023
Authority
Garante per la protezione dei dati personali
Fine Amount
€20,000
GDPRhub ID
gdprhub-6583About this data
Cite as: Cookie Fines. Lombardy Region - Italy (2023). Retrieved from cookiefines.eu
Last updated: