The Italian data protection authority ('Garante') issued, on 2 December 2021, its decision in case No. 424, in which it imposed a fine of €100,000 to OMNIA24 srl, for violations of Article 5(1)(a), 5(2), 6(1)(a), 12, 13, 14, 15, 24, and 28 of the General Data Protection Regulation (Regulation (EU) 2016/679) ('GDPR') and Article 130 of the Personal Data Protection Code, Containing Provisions to Adapt the National Legislation to General Data Protection Regulation (Regulation (EU) 2016/679) ('GDPR') ('the Code'), following a complaint submitted by an individual, and in conjunction with a related decision. Background to the decision In particular, the Garante reported that the complainant, upon