Xfera Moviles S.A. – €30,000 Fine (Spain, 2020)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Xfera Moviles S.A. was fined because a third party could access a customer's personal information, like their name and address. This matters because it shows how important it is to protect customer data from unauthorized access. Companies need to ensure their security measures are strong enough to prevent such breaches.
What happened
A third party accessed a customer's personal information, including their name, phone number, and address.
Who was affected
The affected individuals were customers whose personal information was exposed to unauthorized parties.
What the authority found
The AEPD fined Xfera Moviles S.A. for failing to protect personal data, violating GDPR's security requirements.
Why this matters
This case highlights the importance of robust security measures to protect personal data from unauthorized access. It serves as a warning to companies to regularly assess and improve their data protection strategies.
GDPR Articles Cited
The AEPD found that a third party had access to the name, telephone number and address of another customer.
Related Enforcement Actions (10)
Other enforcement actions involving Xfera Moviles S.A. in ES
Fine
€30K
Details
Fine Date
14 February 2020
Authority
Agencia Española de Protección de Datos
Fine Amount
€30,000
Enforcement Tracker ID
ETid-211
About this data
Cite as: Cookie Fines. Xfera Moviles S.A. - Spain (2020). Retrieved from cookiefines.eu
Last updated: