In 2020, Italy imposed the highest fines related to the GDPR. This achievement is due to the Italian Data Protection Authority. The regulator is fighting unsolicited telemarketing. Here’s everything you need to know.
Why did Italy win the GDPR exemplary award in 2020?
What is the Garante per la protezione dei dati personali? It is a regulatory authority in personal data, the Italian counterpart to the CNIL.
The Garante is an active authority:
- in supporting actors who must comply with the GDPR;
- in imposing sanctions.
As shown in the regulator’s activity report, 2019 was a busy year:
- 1443 violations of personal data were reported to the Garante;
- the authority carried out 147 inspections.
- Italy then ranks second in the ranking of the most repressive countries in Europe, with seven fines imposed for a total amount of 38,420,000€. Only France does “better” with its penalty of 50 million euros set on Google.
In 2020, the Garante continued on its path. According to a Finbold study, Italy imposed 58.1 million euros in fines. So France and Italy represent no less than 64.14% of the total fines imposed in Europe during the year.
GDPR – the Garantie’s fight against unsolicited telemarketing
For several years, the Italian regulator has made unsolicited telemarketing a strong action theme. It must be said that complaints have multiplied to denounce the practices of many operators:
- Prospects are contacted without having previously consented to their inclusion in marketing databases, where legally required;
- Candidates who have opposed commercial solicitation or requested the erasure of their data continue to be solicited.
Beyond the discomfort caused by an unsolicited phone call, the Italian regulator seeks to protect the most vulnerable people, the elderly or disabled, from the risk of being forced to subscribe to an offer over the phone.
The Garante has therefore decided to carry out numerous checks, which have resulted in the imposition of significant fines made public:
- 11.5 million euros in January 2020;
- 27.8 million euros in February 2020;
- 17 million euros in July 2020;
- 12.2 million euros in November 2020.
Conclusion: It’s time to accelerate your GDPR compliance
In 2020, the confinement period proved to be a good time to accelerate GDPR compliance. First, you could take advantage of greater availability from your teams.
Protecting personal data is now of paramount importance:
- Because your company wants to accelerate its transition to digital. Moving to cloud computing, setting up digital workplaces, opening marketplaces… There is plenty of new technological projects.
- Because cybersecurity is an increased risk for your activities, you are increasingly exposed to computer attacks on your information systems and malicious mechanics based on social engineering.
GDPR compliance is a real challenge that you will meet by equipping yourself with appropriate tools that make your daily work easier. This is the case with Axeptio’s module, which takes on the issue of cookies by integrating it into a graphic and marketing approach.