Comune di Luino
€10,000
Non-compliance with general data processing principles
Karar Tarihi
17 Aralık 2020
Otorite
Italian Data Protection Authority (Garante)
IT
Sektör
Public Sector and Education
Ülke
IT
Hukuk
GDPRDurum
FINALAçıklama
The Italian DPA (Garante) imposed a fine of EUR 10,000 on the municipality of Luino. The controller had published a document containing personal data of a local council member. In addition to personal data, the document also contained information about a complaint procedure filed against him by the mayor. The freely accessible document could be downloaded without further authentication. Furthermore, the municipality had failed to name a data protection officer and to provide the DPA with his/her contact details.
Yasal Atıflar
Art. 5 (1)Art. 6 (1)Art. 6 (2)Art. 6 (3)Art. 37 (1)Art. 37 (7)
Sorunlar & İhlaller
Non-compliance with general data processing principles