Roma Capitale (Rome Municipality)

€500,000

Non-compliance with general data processing principles

Dato for beslutning

17. december 2020

Myndighed

Italian Data Protection Authority (Garante)

IT

Sektor

Public Sector and Education

Land

IT

Lovgivning

GDPR

Status

FINAL

Beskrivelse

The Italian DPA (Garante) fined the municipality of Rome EUR 500,000 for the unlawful processing of users' and employees' personal data. The municipality of Rome had been using the 'TuPassi' booking system to manage appointments and other services since 2015. In the course of a detailed investigation, the Italian DPA found that the controller had violated several data protection regulations with regard to the processing of personal data of customers and employees with whom they had made appointments. For example, the municipality had not properly informed the data subjects prior to processing their data, nor had it taken appropriate technical and organizational measures to protect the processing.

Juridiske citater

Art. 5 (1)Art. 13Art. 14Art. 28 (2)Art. 32

Problemer og overtrædelser

Non-compliance with general data processing principles
Se officielt dokument
Tilbage til bøde-databasen
Forrige bøde
Polish National Personal Data Protection Office (U...
Næste bøde
Data Protection Authority of Hamburg (HmbBfDI) - C...

Hold dig opdateret om håndhævelse af privatlivets fred

Vi respekterer dit privatliv. En e-mail om måneden, ingen spam, afmeld når som helst.