BAYARD REVISTAS, S.A. – €31,200 Fine (Spain, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Bayard Revistas S.A. was fined after unauthorized access to their database exposed the personal data of about 470,000 users. The breach was due to a vulnerability in their systems. This serves as a warning to companies to maintain strong security measures to protect user data.
What happened
Unauthorized persons accessed Bayard's database, exposing location and contact data of 470,000 users.
Who was affected
Approximately 470,000 users whose data was stored in Bayard's database.
What the authority found
The Spanish DPA found that Bayard failed to protect user data adequately, violating GDPR's security requirements.
Why this matters
This case emphasizes the importance of robust cybersecurity measures. Companies must regularly update and secure their systems to prevent data breaches and protect user information.
GDPR Articles Cited
The Spanish DPA has imposed a fine on Bayard Revistas S.A.. Unauthorized persons had accessed the Bayard database and thus unauthorizedly siphoned off location and contact data of users of the database. Approximately 470,000 users were affected by the incident. The DPA's investigation determined that a vulnerability in the controller's systems allowed the incident to occur. The original fine of EUR 52,000 was reduced to EUR 31,200 due to voluntary payment and admission of guilt.
Related Enforcement Actions (0)
No other enforcement actions found for BAYARD REVISTAS, S.A. in ES
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
28 September 2022
Authority
Agencia Española de Protección de Datos
Fine Amount
€31,200
Enforcement Tracker ID
ETid-1417
About this data
Cite as: Cookie Fines. BAYARD REVISTAS, S.A. - Spain (2022). Retrieved from cookiefines.eu
Last updated: