Details:
Summary | The Italian DPA has imposed a fine of EUR 3,000 on I.N.P.A.S. (Istituto Nazionale di Previdenza e di Assistenza Sociale). During its investigation, the DPA found that a former employee had access to databases containing personal data even after the termination of their employment relationship. |
Link: | link |
Related articles: | Art. 5 (1) a) GDPR, Art. 6 GDPR, Art. 9 GDPR, Art. 2-ter Codice della privacy, Art. 2-sexies Codice della privacy |
Type: | Insufficient legal basis for data processing |
Fine: | EUR 3,000 |
Sector | Public Sector and Education |
All data is based on The CMS’s Law GDPR Enforcement Tracker Source: https://www.enforcementtracker.com/