- In Italy the complaint was filed by an individual about the new parking meters installed in the city of Rome. The Case type was Non-compliance with general data processing principles. The Italian Data Protection Authority (Garante) has imposed a fine of EUR 400,000 (i.e. 34817200.00 Rupees) against Atac s.p.a. Company. ATAC S.p.A. (Azienda Tramvie e Autobus del Comune di Roma, EN Tramways and Buses Company of the Municipality of Rome) is an Italian publicly owned company running most of the local public transportation services, paid parking and incentive parking lots in Rome. It was found that ATAC Company had not established a data processing register. Also, the retention periods for the collected data were not specified, and appropriate security measures were not taken.
The complaint was filed under Article 5 of GDPR (General Data Protection Regulation) Which says “Principles relating to processing of personal data”, Article 6 of GDPR (General Data Protection Regulation) Which says ”Lawfulness of processing”, Article 30 of GDPR (General Data Protection Regulation) Which says “Records of processing activities”, Article 32 of GDPR (General Data Protection Regulation) Which says “Security of processing”.
The Date of Decision was – 22.07.2021
- In Italy the Italian Data Protection Authority (Garante) has imposed a fine of EUR 30,000 (i.e. 2611290.00 Rupees) on Flowbird Italia s.r.l.. Flowbird Italia Srl is located in Zola Predosa, Bologna, Italy and is part of the Machinery, Equipment, and Supplies Merchant Wholesalers Industry. The Garante had launched an investigation following a complaint from an individual who had complained about the new parking meters that were installed in the city of Rome in 2018. In fact, the company Atac s.p.a., which was also contracted by the city to manage the parking lots, had initiated a technical upgrade of the parking meters in order to offer new services (e.g., the payment of fines/fees or the purchase/renewal of public transport tickets) and introduce new payment methods that also take into account the vehicle’s license plate number. Part of the equipment was supplied by Flowbird Italia s.r.l. All parking information was then managed through a centralized system, which could also be accessed through an app by the employees responsible for controlling parking fees. During the investigation the DPA found that Flowbird Italia had not established a data processing register.
The complaint was filed under Article 5 of GDPR (General Data Protection Regulation) Which says “Principles relating to processing of personal data”, Article 6 of GDPR (General Data Protection Regulation) Which says ”Lawfulness of processing”, Article 30 of GDPR (General Data Protection Regulation) Which says “Records of processing activities”.
The Date of Decision was – 22.07.2021
Picture Credit-https://www.thorntons-law.co.uk/