GDPR fine Archives – GamingTechLaw

03

The Italian Data Protection Authority (the Garante) issued its first GDPR fine on, among others, the unlawful retention of metadata from employees’ emails and web browsing activities applying in Italy for the first time its highly discussed guidelines of 2024 on the use of metadata in workplace email systems.

ByGiulio Coraggio 0Comments 10 minRead time

27

May 2025

Data Protection & Cybersecurity

Google, Privacy & $1.3B Fine: Who’s Tougher — US or EU?

Google has agreed to pay a $ 1.375 billion fine to settle two major privacy lawsuits in Texas—its largest data-related payout ever. But is the U.S. finally outpacing the EU in regulating Big Tech?

ByGiulio Coraggio 0Comments 1 minRead time

05

Mar 2024

Data Protection & Cybersecurity

Italy’s Largest GDPR Fine Against ENEL Highlights Flaws in DPAs’ Enforcement Procedures

The Garante issued the largest ever GDPR fine in Italy against ENEL Energia, which, however, shows deficiencies in the enforcement procedures that should be improved to benefit privacy-related values across Europe.

ByGiulio Coraggio 0Comments 5 minRead time

25

Jan 2024

Data Protection & Cybersecurity

Italian € 26.5 M GDPR Fine Cancelled by Court As Issued Too Late

The Court of Rome cancelled the GDPR fine of EUR 26.5 million issued by the Italian data protection authority against ENEL, one of the largest energy companies in the world because it was issued too late, after the expiry of the procedural terms.

ByEnila Elezi 0Comments 5 minRead time

25

Oct 2023

Data Protection & Cybersecurity

A DPO cannot be also a Data Processor for the Italian Privacy Authority

According to the Italian data protection authority, a DPO cannot play the role of data processor at the same time.

ByGiulio Coraggio 0Comments 3 minRead time

23

Jun 2023

Data Protection & Cybersecurity

Italian GDPR fine for criminal record checks without a privacy related legal basis

The Italian data protection authority (the Garante) issued a GDPR fine for criminal checks without a privacy-related legal basis consolidating a position leading to significant issues for multinational companies in handling their employees' data.

ByGiulio Coraggio 0Comments 5 minRead time

09

Jun 2023

Data Protection & Cybersecurity

The Italian privacy authority issued a GDPR fine for unlawful CCTV system

The Italian privacy authority has issued a GDPR fine for installing CCTV systems in the workplace in violation of obligations under Article 4 of the Workers' Statute.

ByDeborah Paracchini 0Comments 6 minRead time

23

May 2023

Data Protection & Cybersecurity

Meta € 1.2 bn GDPR fine, what to do with data transfers now?

The GDPR fine of € 1.2 billion issued by the Irish data protection commission against Meta raises the question of how companies deal with data transfers leading to a status of anxiety perfectly expressed by The Scream of Munch.

ByGiulio Coraggio 0Comments 4 minRead time

09

Jan 2023

Data Protection & Cybersecurity

EUR 390 M fine against Meta marks a new era for behavioural advertising?

The Irish Data Protection Commission has made waves with its recent decision to levy a staggering EUR 390 million GDPR fine against Meta for its practices in behavioural advertising, creating a precedent potentially impacting online behavioural advertising by any business, and changing the Internet as we know it.

ByGiulio Coraggio 0Comments 4 minRead time

05

Dec 2022

Data Protection & Cybersecurity

€ 1.4 million GDPR fine for privacy breach through CRM card system in Italy

On October 20, 2022, the Italian data protection authority issued a GDPR fine of 1.4 million euros for multiple violations related to the CRM card system against a well-known perfume store chain.

ByGiulio Coraggio 0Comments 7 minRead time