Austrian Post

€18.0M($19.4M USD)final

Date Issued

2019-10-23

Regulation

GDPR

Authority

Austrian Data Protection Authority (DSB)

Country

Austria

Violation Type

Non-compliance with lawful basis for data processing

Currency

EUR

Violation Summary

The Austrian Post had sold detailed personal profiles of approximately three million Austrians to various companies and political parties. The profiles contained names, addresses, political predilections, and even intimate details.

Articles Violated

Art. 5 (1) a) GDPRArt. 6 GDPR
View Source Document →

Related Headlines

Avast Antivirus Faces New Privacy Scrutiny in EU Markets Amid Gen Digital Integration Challenges - AD HOC NEWS

AD HOC NEWS · 3/20/2026

The ECJ’s latest decision on corporate fines under the AML Directive – same same, but different? - Freshfields Risk & Compliance

Freshfields Risk & Compliance · 2/18/2026

Europe's GDPR cops dished out €1.2B in fines last year as data breaches piled up - theregister.com

theregister.com · 1/22/2026

Data breaches surge across EU as Luxembourg emerges as major GDPR enforcer - Luxembourg Times

Luxembourg Times · 1/21/2026

Austria highest fines issued for violations of GDPR 2025 - Statista

Statista · 1/8/2026

Other Fines for Austrian Post

DateRegulationAmount (USD)Type
2021-09-28GDPR$10,260,000Failure to implement sufficient measures to ensure information security
2019-10-23GDPR--Non-compliance with lawful basis for data processing