Spain: Sanctions process against Vodafone for GDPR violations concluded with fine by AEPD

Sanctions process against Vodafone for GDPR violations concluded with fine by AEPD

On 13 October 2021, the Agencia Española de Protección de Datos (AEPD), the Spanish data protection regulator, has concluded its sanctions process against Vodafone. The AEPD found that Vodafone had violated Art.5.1(f) and Art.32, on processing security, of the GDPR, issuing a fine of 50,000 euros.

Original source

Scope

Policy Area

Data governance

Policy Instrument

Data protection regulation

Regulated Economic Activity

infrastructure provider: internet and telecom services

Implementation Level

national

Government Branch

executive

Government Body

data protection authority

Complete timeline of this policy change

Hide details

2021-06-24

under deliberation

The Agencia Española de Protección de Datos (AEPD), the Spanish data protection regulator, has init…

2021-10-13

in force

On 13 October 2021, the Agencia Española de Protección de Datos (AEPD), the Spanish data protection…

Description

Sanctions process against Vodafone for GDPR violations concluded with fine by AEPD

Scope

Complete timeline of this policy change