Telecommunications Operator – €1,020 Fine (Bulgaria, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A telecommunications operator in Bulgaria was fined for failing to properly identify customers, which led to the creation of a profile for someone who didn't want one. The data protection authority found this violated rules about processing personal data. This case shows that companies must have strong identification methods to protect user privacy.
What happened
A telecommunications operator failed to implement sufficient identification methods, creating an unwanted customer profile.
Who was affected
An individual who had a customer profile created without their knowledge or consent.
What the authority found
The authority ruled that the operator violated data processing rules by not adequately identifying customers.
Why this matters
This ruling underscores the importance of robust identification processes for companies. It serves as a reminder that failing to protect user privacy can lead to significant penalties.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Bulgarian DPA has imposed a fine of EUR 1,020 on a telecommunications operator. The controller did not implement sufficient identification methodes, resulting in a customer profile being created for an individual who neither knew nor wanted a profile to be made.
Related Enforcement Actions (1)
Other enforcement actions involving Telecommunications Operator in BG
Details
Fine Date
16 March 2023
Authority
Commission for Personal Data Protection
Fine Amount
€1,020
Enforcement Tracker ID
ETid-2884
About this data
Cite as: Cookie Fines. Telecommunications Operator - Bulgaria (2023). Retrieved from cookiefines.eu
Last updated: