Spain: Vodafone Spain appealed Data Protection Authority ruling concerning alleged direct marketing violations

On 8 May 2025, Vodafone Spain appealed a decision by the Spanish Data Protection Authority (AEPD), which had imposed fines totalling EUR 20'000 for sending unsolicited commercial emails and failing to include an opt-out mechanism. Vodafone argued that the breach resulted from a recording error: the email address used belonged to another client who had consented to receive such communications but was mistakenly associated with the claimant's details.