Burgo Group S.p.A
€20,000
Non-compliance with general data processing principles
Data della decisione
23 novembre 2020
Autorità
Italian Data Protection Authority (Garante)
IT
Settore
Employment
Paese
IT
Legge
GDPRStato
FINALDescrizione
The Italian DPA (Garante) imposed a fine of EUR 20,000 on the company for non-compliant practices. Thus, for example, the personnel director forwarded an e-mail conversation between the data subject and a work colleague containing personal data (information relating to physical and mental discomfort in the workplace) to four people in the company.
Citazioni legali
Art. 5Art. 13
Problemi e violazioni
Non-compliance with general data processing principles