Comune di Luino
€10,000
Non-compliance with general data processing principles
Data della decisione
17 dicembre 2020
Autorità
Italian Data Protection Authority (Garante)
IT
Settore
Public Sector and Education
Paese
IT
Legge
GDPRStato
FINALDescrizione
The Italian DPA (Garante) imposed a fine of EUR 10,000 on the municipality of Luino. The controller had published a document containing personal data of a local council member. In addition to personal data, the document also contained information about a complaint procedure filed against him by the mayor. The freely accessible document could be downloaded without further authentication. Furthermore, the municipality had failed to name a data protection officer and to provide the DPA with his/her contact details.
Citazioni legali
Art. 5 (1)Art. 6 (1)Art. 6 (2)Art. 6 (3)Art. 37 (1)Art. 37 (7)
Problemi e violazioni
Non-compliance with general data processing principles