BANCO BILBAO VIZCAYA ARGENTARIA, S.A. – €120,000 Fine (Spain, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
BANCO BILBAO VIZCAYA ARGENTARIA, S.A. was fined for signing a data protection form for a customer without their consent. This is important because it emphasizes that companies must obtain explicit permission before handling personal data. Failing to do so can lead to significant fines.
What happened
The bank signed a data protection form for a customer and their spouse without getting their consent.
Who was affected
The affected customer and their spouse.
What the authority found
The authority fined the bank for processing personal data without valid consent.
Why this matters
This ruling serves as a reminder for businesses to always seek consent before processing personal data. Companies should review their practices to ensure compliance with data protection laws.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Spanish DPA has imposed a fine on BANCO BILBAO VIZCAYA ARGENTARIA, S.A. A customer of the bank had lodged a complaint with the DPA because the controller had signed a data protection form for them and their spouse without their consent. The original fine of EUR 200,000 was reduced to EUR 120,000 due to voluntary payment and admission of responsibility.
Related Enforcement Actions (5)
Other enforcement actions involving BANCO BILBAO VIZCAYA ARGENTARIA, S.A. in ES
Fine
€120K
Details
Fine Date
4 April 2025
Authority
Agencia Española de Protección de Datos
Fine Amount
€120,000
Enforcement Tracker ID
ETid-2567
About this data
Cite as: Cookie Fines. BANCO BILBAO VIZCAYA ARGENTARIA, S.A. - Spain (2025). Retrieved from cookiefines.eu
Last updated: