Data protection fine to Vodafone

Data protection fine to Vodafone

The Spanish Data Protection Agency(AEPD) has fined Vodafone Spain the highest amount in its history, no more and no less than 8.1 million euros for non-compliance with data protection regulations(RGPD and LOPD-GDD):

— 4 Million fine for lack of real, continuous and permanent control over data processing by data processors.

— 2 Million fine for international data transfers without consent

— 2 Million fine for not attending or for attending out of time the exercise of citizens’ rights.

— 150,000 euros fine for sending commercial communications without prior consent.

Vodafone will have 6 months to prove that its actions complied with data protection regulations.

The AEPD in its work as a control body with inspection and sanctioning capacity, has found the existence of serious actions by Vodafone, since the calls made were around 200 million that brought it significant benefits as a result of the claimed actions.

However, what is really striking is the apparent inaction on the part of the telephone company with respect to the warnings issued by the AEPD, motivated by a total of 162 consumer complaints in two years.

Million-dollar fines

In just over a year, the AEPD has imposed heavy penalties. From 2020 to date, the AEPD has totaled a whopping 22 million euros in fines for non-compliance with data protection regulations.

Banks, airlines and telephone companies are the main sectors affected by these sanctions, all for not complying with the measures and obligations of the General Data Protection Regulation (GDPR).

Vodafone: 8 million euros fine for communications without consent.

BBVA: €5 million fine for breaches of consent in the use of customer personal data.

Caixabank: 6 million euros fine for unlawful use of customer information.

Aireuropa: 600,000 euros fine for serious non-compliance with safety measures.

They are followed, albeit with lighter penalties, by gas, electricity and water supply companies, for services provided through the Internet. And finally, companies in the video surveillance sector. The fines imposed on these entities have not reached one million euros to date.

Penalty statistics

As evidenced by public reports, the AEPD since the entry into force in 2018, of the “General Data Protection Regulation(GDPR)”, has behind it a total of 360 proceedings for breaches of the GDPR, of which:

  • 41% resulted in sanctions.
  • 44% ended in a warning.
  • 15% were archived.

Most frequent infractions

— Not having a legitimate basis to justify why personal data is collected and processed.

— Failure to provide essential information about the use to be made of the personal data collected.

Avoid penalties

Contact us, we are expert consultants in data protection.

Business Adapter will manage and advise you on everything you need to implement in your company to comply with the Data Protection Regulation.

[su_button url=”https://businessadapter.es/contacto” target=”blank” background=”#f6f903″ color=”#181818″ size=”7″ center=”yes” icon_color=”#000000″]WE HELP YOU[/su_button]

Contact us, we will be pleased to help you.
error: Content is protected !!