Xfera Moviles S.A. – €70,000 Fine (Spain, 2020)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Xfera Moviles was fined for mistakenly charging a customer's bank account and revealing personal details. This matters because it shows the importance of protecting customer data and avoiding errors. The case highlights the need for strong data security measures.
What happened
Xfera Moviles disclosed personal details due to an error when charging a customer's bank account.
Who was affected
Customers whose personal details were mistakenly disclosed by Xfera Moviles.
What the authority found
The Spanish data protection authority found Xfera Moviles violated GDPR principles of integrity and confidentiality by mishandling personal data.
Why this matters
This case emphasizes the importance of data integrity and confidentiality. Businesses should implement robust systems to prevent data breaches and errors that could expose customer information.
GDPR Articles Cited
A data subject had received a call from another Xfera Móviles customer who stated that the company had charged his bank account with an invoice, disclosing the personal details of the other data subject. This was due to an error on the part of Xfera Móviles and was therefore a violation of the principles of integrity and confidentiality.
Related Enforcement Actions (10)
Other enforcement actions involving Xfera Moviles S.A. in ES
Fine
€70K
Details
Fine Date
20 July 2020
Authority
Agencia Española de Protección de Datos
Fine Amount
€70,000
Enforcement Tracker ID
ETid-350
About this data
Cite as: Cookie Fines. Xfera Moviles S.A. - Spain (2020). Retrieved from cookiefines.eu
Last updated: