Rinascente – €300,000 Fine (Italy, 2023)

€300,000Garante per la protezione dei dati personali8 June 2023Italy
final
ePrivacy
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

Italy's data protection authority fined Rinascente EUR 300,000 for using third-party cookies without getting user consent and providing unclear cookie information. This matters because it highlights the importance of transparency and consent when using cookies for advertising. Companies need to ensure they clearly inform users about data sharing and retention practices.

What happened

Rinascente used third-party cookies for advertising without obtaining user consent and failed to provide clear information about data handling.

Who was affected

Website visitors whose data was transferred to Facebook-Meta for advertising and profiling without clear consent.

What the authority found

The authority ruled that Rinascente violated GDPR by not providing clear information and consent mechanisms for third-party cookies.

Why this matters

This case emphasizes the need for companies to be transparent about their data practices, especially when using third-party cookies. It serves as a reminder that businesses must obtain clear consent and provide detailed information on data usage to comply with privacy laws.

GDPR Articles Cited

AI-verified

Art. 5 GDPR
Art. 12 GDPR
Art. 32 GDPR
View original scraped data
Art. 5 GDPR
Art. 12 GDPR
Art. 32 GDPR

Original data from scraper before AI verification against source document.

National Law Articles

AI-identified

Art. 122 Codice Privacy
Source verified 6 March 2026
national law identified
Italy enforcementGarante per la protezione dei dati personali actionsAll Rinascente actions
Full Legal Summary
Detailed

Rinascente failed to provide information about data transfers to Facebook-Meta for profiling and lacked transparency about data storage periods.

Violations (2)

Third-Party Cookies Without Consent
critical

Third-party tracking cookies or scripts are loaded without obtaining prior user consent.

Art. 13, 14 GDPR

Unclear Cookie Information
high

The cookie banner or cookie policy provides vague, incomplete, or unclear information about what cookies are used and why.

Art. 12, 13 GDPR

Related Enforcement Actions (0)

No other enforcement actions found for Rinascente in IT

This is the only recorded action for this entity in this jurisdiction.

Similar Cases

Enforcement actions with similar violations

Legal Person

2023 · Úřad pro ochranu osobních údajů

€4K

unknown (claimant)

2021 · DPA OLGWien

Azienda USL della Romagna

2021 · Garante per la protezione dei dati personali

€50K

Ramona Films, S.L.

2022 · Agencia Española de Protección de Datos

€8K

CNIL

2019 · Court of Justice of the European Union

Details

Fine Date

8 June 2023

Authority

Garante per la protezione dei dati personali

Fine Amount

€300,000

GDPRhub ID

gdprhub-6157

Sources

About this data

Data: GDPRhub (noyb.eu)
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Rinascente - Italy (2023). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: