Xfera Moviles S.A. – €55,000 Fine (Spain, 2020)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Xfera Moviles S.A. was fined €55,000 for making a customer's personal data, like their address and phone numbers, accessible without proper protection. This breach of confidentiality and integrity highlights the importance of safeguarding personal information.
What happened
Xfera Moviles S.A. changed a mobile phone contract, making a customer's personal data freely accessible.
Who was affected
The affected individuals were customers whose personal data, such as addresses and phone numbers, were exposed.
What the authority found
The Spanish Data Protection Authority found that Xfera Moviles S.A. violated GDPR's principles of confidentiality and integrity.
Why this matters
This case underscores the need for companies to implement strong data protection measures to maintain confidentiality and integrity. Businesses should ensure that any changes in contracts do not compromise personal data security.
GDPR Articles Cited
The company had changed a contract for a mobile phone connection to a new owner, whereby the personal data of a data subject such as his address and telephone numbers were freely accessible. This constituted a violation of the principles of confidentiality and integrity.
Related Enforcement Actions (10)
Other enforcement actions involving Xfera Moviles S.A. in ES
Fine
€55K
Details
Fine Date
10 July 2020
Authority
Agencia Española de Protección de Datos
Fine Amount
€55,000
Enforcement Tracker ID
ETid-343
About this data
Cite as: Cookie Fines. Xfera Moviles S.A. - Spain (2020). Retrieved from cookiefines.eu
Last updated: