iubenda logo

In the ever-evolving landscape of data protection, staying compliant with the General Data Protection Regulation (GDPR) is not just a legal necessity but a testament to an organization’s commitment to data security and privacy.

Recent fines imposed by Italy’s Data Protection Authority, Garante, on prominent companies like Autostrade per l’Italia S.p.A., Cluster s.r.l., and Amazon Italia Transport s.r.l. underscore the importance of adhering to GDPR standards.

In this blog post, we’ll delve into these cases and demonstrate how iubenda’s comprehensive solutions can safeguard your business from similar pitfalls.

Autostrade per l’Italia S.p.A.’s GDPR Breach and Fine

Autostrade per l’Italia S.p.A. was fined €100,000 for violating Articles 12 and 15 of the GDPR. The company failed to respond adequately to an employee’s request for access and rectification of personal data related to annual severance pay calculations. This highlights the critical need for businesses to have robust systems in place for handling personal data requests efficiently and transparently.

Cluster s.r.l.’s Data Breach and Fine

Cluster s.r.l. faced a fine of €18,000 for violating Articles 5 and 32 of the GDPR. This penalty was imposed due to the unauthorized disclosure of sensitive clinical health data and information about an individual’s death. This case underlines the importance of strict adherence to data processing principles and ensuring the security of sensitive personal data.

Amazon Italia Transport s.r.l.’s Compliance Failure and Fine

Amazon Italia Transport s.r.l. was fined €40,000 for failing to properly respond to an employee’s data subject right request, breaching Articles 12 and 15 of the GDPR. This case serves as a reminder of the necessity for clear and effective communication channels regarding data subject rights.

How iubenda can help


With iubenda, you can ensure that your business is equipped to handle data subject requests promptly and accurately. Our solutions facilitate effective communication and provide a structured approach to managing such requests, thereby upholding GDPR compliance and reinforcing trust in your data management practices.

Check out our solution to easily document all the data processing activity within your organization →

The recent GDPR fines in Italy are a wake-up call for businesses to reassess their data protection strategies. iubenda stands ready to assist your organization in navigating the complex terrain of GDPR compliance. With our expert solutions, you can mitigate the risk of non-compliance, protect your customers’ data, and maintain your business’s integrity in the digital world.

Don’t wait for a fine to prompt action. Visit iubenda today to explore our suite of GDPR compliance solutions and secure your business’s future.


GDPR compliance certificateGDPR compliance in the USFines over COPPA Non-Compliance ($750'000)

About Us

iubenda is the easiest and most professional way to generate a privacy policy for your website, mobile app and facebook app
www.iubenda.com

Generate a privacy policy now

Ready in a few steps and built to meet the needs of both website and mobile app owners

Generate your privacy policy now

Sometimes the best choice is to "just give it a try"

iubenda is the easiest and most professional way to generate a privacy policy for your website, mobile app and facebook app

Generate your privacy policy now