Ristorante Francesco srl: Non-compliance with general data processing principles

The Italian DPA has fined Ristorante Francesco srl EUR 5,000. The controller had operated video surveillance cameras in its premises without the required authorization. Furthermore, the DPA found that the controller failed to properly inform about the CCTV and the processing of personal data by the cameras.

GDPR Articles: Art. 5 GDPR, Art. 13 GDPR, Art. 114 Codice della privacy
Industry: Accomodation and Hospitality