Clio S.r.l.

€10,000

Insufficient legal basis for data processing

Sprendimo priėmimo data

2022 m. liepos 21 d.

Institucija

Italian Data Protection Authority (Garante)

IT

Sektorius

Industry and Commerce

Šalis

IT

Teisė

GDPR

Statusas

FINAL

Aprašymas

The Italian DPA has imposed a fine of EUR 10,000 on Clio S.r.l.. Clio provides and manages a whistleblowing reporting application for various private and public entities. As part of its investigation, the DPA found that Clio had not adequately regulated its relationship with customers. In addition, Clio provided data on whistleblowing reports to customers without a valid legal basis. The DPA considered this to be a violation of Art. 5 (1) a) GDPR and Art. 6 GDPR. Further, the DPA found that Clio had failed to maintain a register of activity carried out in its role as a processor. The DPA considered this to be a violation of Art. 30 (2) GDPR.

Teisinės citatos

Art. 5 (1)Art. 6Art. 30 (2)Art. 2

Problemos ir pažeidimai

Insufficient legal basis for data processing
Peržiūrėti oficialų dokumentą
Grįžti į baudų duomenų bazę
Ankstesnis Bauda
Italian Data Protection Authority (Garante) - Azie...
Kitas Bauda
Data Protection Authority of Hamburg (HmbBfDI) - C...

Gaukite naujausią informaciją apie privatumo vykdymo užtikrinimą

Gerbiame jūsų privatumą. Vienas el. laiškas per mėnesį, jokių šlamšto, atsisakykite prenumeratos bet kada.