Italy’s data protection watchdog has fined Intesa Sanpaolo 31.8 million euros ($36.41 million) following a data breach affecting approximately 3,500 customers over two years. The Milan-based bank, Italy’s largest, was cited for failing to protect sensitive consumer information.
Regulators emphasized the severity of prolonged exposure and inadequate safeguards. The penalty marks one of the largest fines issued under Italy’s data privacy regime, highlighting growing enforcement against financial institutions.
Intesa Sanpaolo has not publicly commented on the decision. The case underscores ongoing regulatory scrutiny of data handling practices in Europe’s banking sector.