Iliad Italia S.p.A.: Non-compliance with general data processing principles

The fine relates to data protection infringements concerning the processing of customer data for the activation of SIM cards and the manner in which payment data was recorded. In addition, the data protection authority stated that the company had violated the principles of lawfulness, fairness and transparency as well as the integrity and confidentiality with regard to the processing of personal data for direct marketing purposes and the storage of customer data in the personal area of its website.

GDPR Articles: Art. 5 GDPR, Art. 25 GDPR
Industry: Media, Telecoms and Broadcasting