GDPR fine Archives – GamingTechLaw

17

The Italian Data Protection Authority (Garante) has fined a company EUR 420,000 for violating privacy laws in the workplace. The decision centers on the employer’s use of content from Facebook, WhatsApp, and Messenger—shared from the employee’s personal accounts—for disciplinary purposes.

ByGiulio Coraggio 0Comments 6 minRead time

03

Jun 2025

Data Protection & Cybersecurity

The Garante Issues First GDPR Fine Over Employees Email Metadata Privacy Breach in Italy

The Italian Data Protection Authority (the Garante) issued its first GDPR fine on, among others, the unlawful retention of metadata from employees’ emails and web browsing activities applying in Italy for the first time its highly discussed guidelines of 2024 on the use of metadata in workplace email systems.

ByGiulio Coraggio 0Comments 10 minRead time

27

May 2025

Data Protection & Cybersecurity

Google, Privacy & $1.3B Fine: Who’s Tougher — US or EU?

Google has agreed to pay a $ 1.375 billion fine to settle two major privacy lawsuits in Texas—its largest data-related payout ever. But is the U.S. finally outpacing the EU in regulating Big Tech?

ByGiulio Coraggio 0Comments 1 minRead time

05

Mar 2024

Data Protection & Cybersecurity

Italy’s Largest GDPR Fine Against ENEL Highlights Flaws in DPAs’ Enforcement Procedures

The Garante issued the largest ever GDPR fine in Italy against ENEL Energia, which, however, shows deficiencies in the enforcement procedures that should be improved to benefit privacy-related values across Europe.

ByGiulio Coraggio 0Comments 5 minRead time

25

Jan 2024

Data Protection & Cybersecurity

Italian € 26.5 M GDPR Fine Cancelled by Court As Issued Too Late

The Court of Rome cancelled the GDPR fine of EUR 26.5 million issued by the Italian data protection authority against ENEL, one of the largest energy companies in the world because it was issued too late, after the expiry of the procedural terms.

ByEnila Elezi 0Comments 5 minRead time

25

Oct 2023

Data Protection & Cybersecurity

A DPO cannot be also a Data Processor for the Italian Privacy Authority

According to the Italian data protection authority, a DPO cannot play the role of data processor at the same time.

ByGiulio Coraggio 0Comments 3 minRead time

23

Jun 2023

Data Protection & Cybersecurity

Italian GDPR fine for criminal record checks without a privacy related legal basis

The Italian data protection authority (the Garante) issued a GDPR fine for criminal checks without a privacy-related legal basis consolidating a position leading to significant issues for multinational companies in handling their employees' data.

ByGiulio Coraggio 0Comments 5 minRead time

09

Jun 2023

Data Protection & Cybersecurity

The Italian privacy authority issued a GDPR fine for unlawful CCTV system

The Italian privacy authority has issued a GDPR fine for installing CCTV systems in the workplace in violation of obligations under Article 4 of the Workers' Statute.

ByDeborah Paracchini 0Comments 6 minRead time

23

May 2023

Data Protection & Cybersecurity

Meta € 1.2 bn GDPR fine, what to do with data transfers now?

The GDPR fine of € 1.2 billion issued by the Irish data protection commission against Meta raises the question of how companies deal with data transfers leading to a status of anxiety perfectly expressed by The Scream of Munch.

ByGiulio Coraggio 0Comments 4 minRead time

09

Jan 2023

Data Protection & Cybersecurity

EUR 390 M fine against Meta marks a new era for behavioural advertising?

The Irish Data Protection Commission has made waves with its recent decision to levy a staggering EUR 390 million GDPR fine against Meta for its practices in behavioural advertising, creating a precedent potentially impacting online behavioural advertising by any business, and changing the Internet as we know it.

ByGiulio Coraggio 0Comments 4 minRead time