Vodafone Romania S.A. – €15,000 Fine (Romania, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Romanian DPA has imposed a fine of EUR 15,000 on Vodafone Romania S.A. Personal data such as names, email addresses and customer numbers were repeatedly disclosed due to inadequate security measures, e.g. the unauthorized sending of invoice details or incorrect use of the “BCC” function. During its investigation, the DPA found that the controller had failed to implement appropriate technical and organizational measures to protect personal data.
GDPR Articles Cited
The Romanian DPA has imposed a fine of EUR 15,000 on Vodafone Romania S.A. Personal data such as names, email addresses and customer numbers were repeatedly disclosed due to inadequate security measures, e.g. the unauthorized sending of invoice details or incorrect use of the “BCC” function. During its investigation, the DPA found that the controller had failed to implement appropriate technical and organizational measures to protect personal data.
Related Enforcement Actions (2)
Other enforcement actions involving Vodafone Romania S.A. in RO
Fine
€15K
Details
Fine Date
20 January 2025
Authority
Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal
Fine Amount
€15,000
Enforcement Tracker ID
ETid-2503
About this data
Cite as: Cookie Fines. Vodafone Romania S.A. - Romania (2025). Retrieved from cookiefines.eu
Last updated: