BANKINTER, S.A. – €56,000 Fine (Spain, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
BANKINTER, S.A. was fined for accidentally sending a client's investment report to the wrong person. This matters because it shows the importance of safeguarding personal data and ensuring it is only shared with the right people. The error was blamed on a computer mistake.
What happened
BANKINTER, S.A. mistakenly sent a client's investment report to an unauthorized third party.
Who was affected
A client of BANKINTER, S.A. whose investment information was sent to someone else.
What the authority found
The Spanish DPA determined that BANKINTER, S.A. violated GDPR's integrity and confidentiality principles by failing to protect personal data from unauthorized access.
Why this matters
This case emphasizes the need for strong data protection measures to prevent accidental data breaches. Companies should regularly review their systems to avoid similar errors.
GDPR Articles Cited
The Spanish DPA has imposed a fine of EUR 56,000 on BANKINTER, S.A.. The controller had inadvertently sent a report on the data subject's investment portfolio to a third party. The controller states that the mis-sending occurred due to a computer error. For this reason, the DPA determined that the controller had violated the principle of integrity and confidentiality set out in Art. 5 (1) f) GDPR.
Related Enforcement Actions (1)
Other enforcement actions involving BANKINTER, S.A. in ES
Details
Fine Date
18 July 2022
Authority
Agencia Española de Protección de Datos
Fine Amount
€56,000
Enforcement Tracker ID
ETid-1288
About this data
Cite as: Cookie Fines. BANKINTER, S.A. - Spain (2022). Retrieved from cookiefines.eu
Last updated: