Intesa Sanpaolo Vita S.p.a.

€20,000

Non-compliance with general data processing principles

Datum odločitve

7. julij 2022

Organ

Italian Data Protection Authority (Garante)

IT

Sektor

Finance, Insurance and Consulting

Država

IT

Zakon

GDPR

Status

FINAL

Opis

The Italian DPA has fined Intesa Sanpaolo Vita S.p.a. EUR 20,000. The data subject, who had taken out a life insurance policy with the controller, had filed a complaint with the DPA against the controller for the unauthorized disclosure of their personal data. In the course of its investigation, the DPA found that the controller had disclosed personal data, such as first name, last name and information about the policy, to third parties without authorization. The unauthorized disclosure had occurred due to an employee's error.

Pravne navedbe

Art. 5 (1)

Vprašanja in kršitve

Non-compliance with general data processing principles
Oglejte si uradni dokument
Nazaj v zbirko podatkov o globah
Prejšnja globa
Italian Data Protection Authority (Garante) - Sens...
Naslednja Drobna
Data Protection Authority of Hamburg (HmbBfDI) - C...

Spremljajte novice o uveljavljanju zasebnosti

Spoštujemo vašo zasebnost. Eno e-poštno sporočilo na mesec, brez neželene pošte, odjava kadar koli.