Gaypa s.r.l.

€20,000

Non-compliance with general data processing principles

Decision Date

October 29, 2020

Authority

Italian Data Protection Authority (Garante)

IT

Sector

Employment

Country

IT

Law

GDPR

Status

FINAL

Description

The Italian DPA (Garante) imposed a fine of EUR 20,000 on Gaypa s.r.l.. The controller had kept a former employee's email account active and had access to the data subject's correspondence, despite the termination of his/her employment. The data subject had not been informed about such a further use of his/her e-mail account, as well as about the storage of all incoming and outgoing e-mails on the company servers and the related processing of his/her personal data.

Legal Citations

Art. 5 (1)Art. 12Art. 13

Issues & Violations

Non-compliance with general data processing principles
View Official Document
Back to Fines Database
Previous Fine
Hellenic Data Protection Authority (HDPA) - Americ...
Next Fine
Data Protection Authority of Hamburg (HmbBfDI) - C...

Stay Updated on Privacy Enforcement

We respect your privacy. One email per month, no spam, unsubscribe anytime.