Comune di Luino
€10,000
Non-compliance with general data processing principles
Päätöspäivä
17. joulukuuta 2020
Viranomainen
Italian Data Protection Authority (Garante)
IT
Ala
Public Sector and Education
Maa
IT
Laki
GDPRTila
FINALKuvaus
The Italian DPA (Garante) imposed a fine of EUR 10,000 on the municipality of Luino. The controller had published a document containing personal data of a local council member. In addition to personal data, the document also contained information about a complaint procedure filed against him by the mayor. The freely accessible document could be downloaded without further authentication. Furthermore, the municipality had failed to name a data protection officer and to provide the DPA with his/her contact details.
Oikeudelliset viittaukset
Art. 5 (1)Art. 6 (1)Art. 6 (2)Art. 6 (3)Art. 37 (1)Art. 37 (7)
Asiat ja rikkomukset
Non-compliance with general data processing principles