Federazione Italiana Sommelier, Albergatori e Ristoratori: Non-compliance with general data processing principles

The Italian DPA has imposed a fine of EUR 5,000 on Federazione Italiana Sommelier, Albergatori e Ristoratori. The federation had sent a protocol containing personal data of a member to all other members. The protocol revealed information about a disciplinary measure against the member concerned, although the measure was not yet legally binding and was later revoked. In addition, the disciplinary measure continued to be published on a cloud platform even after the measure was revoked.

GDPR Articles: Art. 5 (1) a), f) GDPR, Art. 6 (1) GDPR
Industry: Individuals and Private Associations