Interflora Italia S.p.A.
€40,000
Insufficient legal basis for data processing
Tanggal Keputusan
13 Maret 2025
Wewenang
Italian Data Protection Authority (Garante)
IT
Sektor
Industry and Commerce
Negara
IT
Hukum
GDPRStatus
FINALDeskripsi
The Italian DPA imposed a fine of EUR 20,000 on Interflora Italia S.p.A. The controller, who operates an online shop, used customer data for direct marketing purposes without a sufficient legal basis. The controller also failed to react to the objection of a data subject and only reacted after the data subject filed a complaint with the DPA.
Kutipan Hukum
Art. 5 (1)Art. 6 (1)Art. 12 (3)Art. 15Art. 21
Masalah & Pelanggaran
Insufficient legal basis for data processing