Search Privacy Fines

Browse and filter privacy enforcement fines worldwide.

← Back to Overview

Regulation

Country

Year

Min Fine (USD)

Sort

2,028 fines found

Total: $8.1B

Date	Company	Fine	Regulation	Authority	Country	Type	Summary
2019-11-21	Viaqua Xestión SA	€60K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 6 GDPR
2019-08-16	Avon Cosmetics	€60K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	A client had complained that AVOND COSMETICS hadn’t observed the law when it pro... A client had complained that AVOND COSMETICS hadn’t observed the law when it processed his personal data erroneously. His identity wasn’t properly verified, which led to the erroneous matching of that client with a register of claims. As a result, the client wasn’t able to work with his bank. Moreover, a third-party utilized the client’s personal data unlawfully. Articles: Art. 6 GDPR
2019-11-21	Viaqua Xestión SA	€60K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	A third party had access to and modified the personal data of a customer that wa... A third party had access to and modified the personal data of a customer that was included in a contract. The third party had no legal basis to access the data. Articles: Art. 6 GDPR
2021-03-16	Vodafone Espana	€60K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Failure to comply with data processing principles	-- Articles: Art. 6 (1) GDPR
2020-09-30	Scanshare s.r.l.	€60K	GDPR	Italian Data Protection Authority (Garante)	Italy	Non-compliance with lawful basis for data processing	-- Articles: Art. 5 (1) a) GDPR, Art. 6 GDPR, Art. 9 GDPR, Art. 32 GDPR
2019-10-23	Vodafone Espana	€60K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Failure to implement sufficient measures to ensure information security	-- Articles: Art. 5 (1) f) GDPR
2021-12-02	Irish Teacher Council	€60K	GDPR	Data Protection Authority of Ireland	Ireland	Failure to implement sufficient measures to ensure information security	-- Articles: Art. 5 (1) GDPR, Art. 32 (1) GDPR, Art. 33 GDPR
2020-02-03	Vodafone España, S.A.U.	€60K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 5 GDPR, Art. 6 GDPR
2019-11-19	Corporacion RTVE	€60K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Failure to implement sufficient measures to ensure information security	Corporacion de Radio y Television Espanola lost 6 USB sticks with unencrypted pe... Corporacion de Radio y Television Espanola lost 6 USB sticks with unencrypted personal information and data. Articles: Art. 32 GDPR
2022-07-18	BANKINTER, S.A.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Failure to comply with data processing principles	-- Articles: Art. 5 (1) f) GDPR
2021-09-14	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 6 (1) GDPR
2022-12-13	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 6 (1) GDPR
2023-01-16	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 6 (1) GDPR
2021-09-14	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 6 (1)
2021-09-14	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 6 (1) GDPR
2022-12-13	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 6 (1) GDPR
2022-01-18	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Failure to comply with data processing principles	-- Articles: Art. 6 (1) GDPR
2022-10-31	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Failure to implement sufficient measures to ensure information security	-- Articles: Art. 5 (1) f) GDPR, Art. 32 GDPR
2022-12-13	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 6 (1) GDPR
2021-09-14	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 6 (1) GDPR
2022-07-06	Vodafone Espana, S.A.U.	€56K	GDPR	Spanish Data Protection Authority (AEPD)	Spain	Non-compliance with lawful basis for data processing	-- Articles: Art. 6 (1) GDPR
2020-12-16	Robinson Tours Kft.	€55K	GDPR	Hungarian National Authority for Data Protection and the Freedom of Information (NAIH)	Hungary	Non-compliance with lawful basis for data processing	-- Articles: Art. 25 (1), (2) GDPR, Art. 32 (1) b) GDPR, Art. 34 (1) GDPR
2022-12-15	Azienda Universitaria Friuli Centrale	€55K	GDPR	Italian Data Protection Authority (Garante)	Italy	Failure to comply with data processing principles	-- Articles: Art. 5 (1) a) GDPR, Art. 9 GDPR, Art. 14 GDPR, Art. 35 GDPR, Art. 2-sexies Codice della privacy
2022-12-15	Azienda Universataria Friuli Occidentale	€55K	GDPR	Italian Data Protection Authority (Garante)	Italy	Failure to comply with data processing principles	-- Articles: Art. 5 (1) a) GDPR, Art. 9 GDPR, Art. 14 GDPR, Art. 35 GDPR, Art. 2-sexies Codice della privacy
2022-12-15	Azienda Universitaria Giuliano Isontina	€55K	GDPR	Italian Data Protection Authority (Garante)	Italy	Failure to comply with data processing principles	-- Articles: Art. 5 (1) a) GDPR, Art. 9 GDPR, Art. 14 GDPR, Art. 35 GDPR, Art. 2-sexies Codice della privacy

PreviousPage 19 of 82Next