Xfera Moviles S.A. – €39,000 Fine (Spain, 2020)

€39,000Agencia Española de Protección de Datos9 June 2020Spain
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

Xfera Moviles was fined €39,000 after sending an SMS to the wrong customer about a missed payment and service suspension. The company failed to protect personal data, leading to confusion and privacy issues.

What happened

Xfera Moviles sent an SMS about a missed payment to the wrong customer, causing a privacy breach.

Who was affected

The affected individuals were customers who received incorrect SMS notifications about account issues.

What the authority found

The Spanish Data Protection Authority fined Xfera Moviles for not ensuring the confidentiality and accuracy of personal data, violating GDPR.

Why this matters

This case underscores the importance of data accuracy and confidentiality. Companies should double-check customer information before sending sensitive communications to avoid privacy breaches and fines.

GDPR Articles Cited

Art. 5(1)(f) GDPR
Spain enforcementAgencia Española de Protección de Datos actionsAll Xfera Moviles S.A. actions
Full Legal Summary
Detailed

A customer claimed to have received an SMS from Xfera Móviles informing about the non-payment and the resulting suspension of the service in relation to the account of another data subject.

Related Enforcement Actions (10)

Other enforcement actions involving Xfera Moviles S.A. in ES

Fine
Nov 2019· Agencia Española de Protección de Datos

An individual complainant had received an SMS from Xfera Móviles which was to be addressed to a third party and which allowed him to access the accoun...

€60K
Fine
Feb 2020· Agencia Española de Protección de Datos

The AEPD found that a third party had access to the name, telephone number and address of another customer.

€30K
Fine
Mar 2020· Agencia Española de Protección de Datos

The company did not provide the data protection authority with the requested information in a timely manner. The AEPD's request was preceded by a requ...

€5K
Current
Jun 2020

Fine

€39K

Fine
Jun 2020· Agencia Española de Protección de Datos

The data subject received a notice from a debt collection company demanding payments in connection with Xfera Móviles' services, even though the claim...

€75K
Fine
Jul 2020· Agencia Española de Protección de Datos

The company had changed a contract for a mobile phone connection to a new owner, whereby the personal data of a data subject such as his address and t...

€55K
Fine
Jul 2020· Agencia Española de Protección de Datos

A data subject had received a call from another Xfera Móviles customer who stated that the company had charged his bank account with an invoice, discl...

€70K
Fine
Nov 2020· Agencia Española de Protección de Datos

Xfera Móviles had failed to cooperate with the AEPD in the investigation of privacy violations. Xfera Móviles had neither responded to the request for...

€20K
Fine
Dec 2020· Agencia Española de Protección de Datos

The Spanish DPA (AEPD) imposed a fine on Xfera Móviles, S.A. due to insufficient legal basis for data processing. The data subject states that two tel...

€40K
Fine
Feb 2021· Agencia Española de Protección de Datos

The Spanish DPA (AEPD) imposed a fine of EUR 40,000 on Xfera Móviles S.A.. The data subject claimed a violation of its right to information to the AEP...

€24K
Fine
Mar 2021· Agencia Española de Protección de Datos

The Spanish DPA (AEPD) imposed a fine of EUR 150,000 on Xfera Móviles S.A.. The DPA had received two complaints from a data subject. The first complai...

€90K

Details

Fine Date

9 June 2020

Authority

Agencia Española de Protección de Datos

Fine Amount

€39,000

Enforcement Tracker ID

ETid-289

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Xfera Moviles S.A. - Spain (2020). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: