Data Privacy — March 30, 2026

Intesa Sanpaolo fined €31.8M for unauthorized access to 3,500+ clients' banking data

The Italian Data Protection Authority (Garante Privacy) imposed a €31.8 million fine on Intesa Sanpaolo S.p.A. for serious data security deficiencies. The bank failed to implement adequate technical and organizational measures to protect personal data, resulting in unauthorized access to banking information of over 3,500 clients for more than two years.