Skip to content

🇪🇺 Italian Data Protection Authority (Garante)

606 decisions · €235.6M total fines · ITALY →

Date ↓ Company / party Authority Articles Fine
2023-07-18 Università Telematica E-Campus
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 6Art. 7Art. 12 €75,000
2023-07-18 Municipality of Modica
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 12Art. 13Art. 25 €45,000
2023-07-18 Compara Facile S.r.l.
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 6Art. 7Art. 12 €40,000
2023-07-18 Azienda Socio Sanitaria Territoriale Ovest Milanese
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 9Art. 32 €12,000
2023-07-18 Cat s.r.l.
Insufficient legal basis for data processing
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 6Art. 2 €10,000
2023-07-18 Ermeslink di Giovanni Di Stefano
Insufficient legal basis for data processing
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 6 €5,000
2023-07-18 Prodav srl
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 13Art. 114 €1,000
2023-07-18 Private individual
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 6 €400
2023-07-06 AcegasApsAmga SpA
Insufficient fulfilment of data subjects rights
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 12Art. 15 €10,000
2023-07-06 Ristorante Francesco srl
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 13Art. 114 €5,000
2023-06-22 Autostrade per l'Italia spa
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 13Art. 28 €1,000,000
2023-06-08 Rinascente S.p.A.
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 12Art. 32Art. 35 €300,000
2023-06-08 RCS Mediagroup S.p.a.
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5 €40,000
2023-06-07 Azienda Tutela della Salute della Sardegna
Insufficient legal basis for data processing
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 9Art. 2 €5,000
2023-06-01 Ew Business Machines S.p.A.
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 9Art. 13Art. 114 €20,000
2023-06-01 Azienda Usl Toscana Sud Est.
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 9Art. 25Art. 2 €20,000
2023-06-01 Thin Srl
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 9Art. 13 €15,000
2023-06-01 Camedi s.r.l.
Insufficient technical and organisational measures to ensure information security
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 9Art. 32 €10,000
2023-06-01 Comune di Napoli
Insufficient legal basis for data processing
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 6Art. 2 €3,000
2023-05-17 Website operator
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 6Art. 12Art. 13 €60,000
2023-05-17 Volkswagen Leasing GmbH
Insufficient fulfilment of data subjects rights
🇪🇺 Italian Data Protection Authority (Garante) Art. 12Art. 15 €40,000
2023-05-17 La Gazzetta di Parma S.r.l.
Non-compliance with general data processing principles
🇪🇺 Italian Data Protection Authority (Garante) Art. 5 €10,000
2023-05-17 Grizzaffi Management Srl
Insufficient fulfilment of data subjects rights
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 17Art. 21 €10,000
2023-05-17 Santander Consumer Bank S.p.a.
Insufficient fulfilment of data subjects rights
🇪🇺 Italian Data Protection Authority (Garante) Art. 12 €10,000
2023-05-17 Azienda ULSS 6 Euganea
Insufficient technical and organisational measures to ensure information security
🇪🇺 Italian Data Protection Authority (Garante) Art. 5Art. 6Art. 32 €10,000