BANKINTER, S.A. – €80,000 Fine (Spain, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Spain fined BANKINTER EUR 80,000 for showing one customer's personal data to another due to poor data protection measures. This matters because it highlights the importance of securing personal data to prevent unauthorized access. The bank's fine was reduced from EUR 100,000 after they paid voluntarily.
What happened
BANKINTER displayed a customer's personal data to another customer due to inadequate security measures.
Who was affected
Bank customers whose personal data was improperly shared with other customers.
What the authority found
The Spanish DPA found that BANKINTER failed to protect personal data adequately, violating GDPR's security requirements.
Why this matters
This case underscores the need for businesses to implement strong security measures to protect customer data. It serves as a reminder that inadequate data protection can lead to significant fines.
GDPR Articles Cited
The Spanish DPA has imposed a fine on BANKINTER, S.A.. A person had filed a complaint with the DPA as personal data of a third person were also displayed to them when accessing their bank account. The DPA found that the unauthorized disclosure of the third-party data occurred due to a lack of adequate technical and organizational measures to protect personal data at the bank. The original fine of EUR 100,000 was reduced to EUR 80,000 due to voluntary payment.
Related Enforcement Actions (1)
Other enforcement actions involving BANKINTER, S.A. in ES
Details
Fine Date
15 November 2022
Authority
Agencia Española de Protección de Datos
Fine Amount
€80,000
Enforcement Tracker ID
ETid-1492
About this data
Cite as: Cookie Fines. BANKINTER, S.A. - Spain (2022). Retrieved from cookiefines.eu
Last updated: