Search Privacy Fines
Browse and filter privacy enforcement fines worldwide.
2,028 fines found
Total: $8.1B
| Date | Company | Fine | Regulation | Authority | Country | Type | Summary |
|---|---|---|---|---|---|---|---|
| 2019-12-16 | Globus Score SRL | €2K | GDPR | Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) | Romania | Non-cooperation with Data Protection Authority | The company did not comply with measures imposed by the Data Protection Authorit...The company did not comply with measures imposed by the Data Protection Authority. Articles: Art. 58 GDPR |
| 2023-04-28 | ASSOCIACIO DE CAÇADORS D'ALZIRA | €2K | GDPR | Spanish Data Protection Authority (AEPD) | Spain | Failure to comply with data processing principles | --Articles: Art. 5 (1) f) GDPR |
| 2020-01-01 | Unknown | €2K | GDPR | Data Protection Commissioner of Malta | Malta | Failure to implement sufficient measures to ensure information security | --Articles: Art. 32 (1) b) GDPR |
| 2019-12-18 | Telekom Romania | €2K | GDPR | Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) | Romania | Failure to implement sufficient measures to ensure information security | The company did not ensure the accuracy of the processing of personal data. This...The company did not ensure the accuracy of the processing of personal data. This resulted in the disclosure of a client’s personal data to a different client. Articles: Art. 32 GDPR |
| 2021-06-09 | La Santrade S.R.L. | €2K | GDPR | Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) | Romania | Non-cooperation with Data Protection Authority | --Articles: Art. 31 GDPR, Art. 58 GDPR |
| 2021-07-26 | Intersumi S.C. | €2K | GDPR | Spanish Data Protection Authority (AEPD) | Spain | Non-compliance with subjects' rights protection safeguards | --Articles: Art. 13 GDPR |
| 2022-01-01 | Oroklini Muncipal Council | €2K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-cooperation with Data Protection Authority | --Articles: Art. 31 GDPR |
| 2022-06-24 | Parliamentary election candidate | €2K | GDPR | Hellenic Data Protection Authority (HDPA) | Greece | Insufficient fulfilment of data subjects rights | --Articles: Art. 12 GDPR, Art. 11 Law 3471/2006 |
| 2019-10-25 | Louis Aviation Ltd | €2K | GDPR | Cypriot Data Protection Commissioner | Cyprus | Non-compliance with lawful basis for data processing | The national data protection authority determined that the company used the Brad...The national data protection authority determined that the company used the Bradford factor for profiling and monitoring sick leave and that this constituted unlawful processing of personal data. Articles: Art. 6 GDPR, Art. 9 GDPR |
| 2022-06-20 | WIND Ελλάς Τηλεπικοινωνίες ΑΕΒΕ | €2K | GDPR | Hellenic Data Protection Authority (HDPA) | Greece | Insufficient fulfilment of data subjects rights | --Articles: Art. 15 GDPR |
| 2022-06-30 | Continental Automotive Romania SRL | €2K | GDPR | Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) | Romania | Failure to implement sufficient measures to ensure information security | --Articles: Art. 24 GDPR, Art. 32 (1) d) GDPR |
| 2020-03-25 | SOS Infertility Association | €2K | GDPR | Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) | Romania | Non-cooperation with Data Protection Authority | The SOS Infertility Association failed to provide the necessary data to the data...The SOS Infertility Association failed to provide the necessary data to the data protection authority after it had unlawfully processed personal data of its clients. Articles: Art. 58 GDPR |
| 2019-01-01 | Restaurant | €2K | GDPR | Data Protection Authority of Saarland | Germany | Failure to comply with data processing principles | The video surveillance cameras had been misused, clearly not in accord with the ...The video surveillance cameras had been misused, clearly not in accord with the data minimization principle. Articles: Art. 5 (1) c) GDPR |
| 2022-05-20 | Private Individual | €2K | GDPR | Spanish Data Protection Authority (AEPD) | Spain | Non-compliance with lawful basis for data processing | --Articles: Art. 6 (1) GDPR |
| 2021-08-10 | Despacho Tejedor Infantes Consultores Asesores | €2K | GDPR | Spanish Data Protection Authority (AEPD) | Spain | Non-compliance with lawful basis for data processing | --Articles: Art. 5 (1) f) GDPR |
| 2019-05-28 | A mayor | €2K | GDPR | Belgian Data Protection Authority (APD) | Belgium | Several | A mayor was fined for having misused people’s personal data during a political c...A mayor was fined for having misused people’s personal data during a political campaign. Articles: Art. 5 (1) b) GDPR, Art. 6 GDPR |
| 2021-06-04 | Creator Energy S.L. | €2K | GDPR | Spanish Data Protection Authority (AEPD) | Spain | Non-compliance with lawful basis for data processing | --Articles: Art. 6 (1) b) GDPR |
| 2020-04-07 | Ιγνατιάδης Νικόλαος και ΣΙΑ Ε.Ε. | €2K | GDPR | Hellenic Data Protection Authority (HDPA) | Greece | Non-compliance with lawful basis for data processing | --Articles: Art. 5 (1) c) GDPR, Art. 6 (1) f) GDPR |
| 2021-06-09 | S.C. Dreamtime Call S.R.L | €2K | GDPR | Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) | Romania | Non-cooperation with Data Protection Authority | --Articles: Art. 31 GDPR, Art. 58 GDPR |
| 2020-09-03 | Comune di Casaloldo | €2K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 GDPR, Art. 6 GDPR |
| 2023-01-01 | Consorzio Concessioni Reti Gas S.c.a.r.l. | €2K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 (1) a), c) GDPR, Art. 12 GDPR, Art. 13 GDPR |
| 2022-09-22 | Bitfactor SRL | €2K | GDPR | Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) | Romania | Failure to implement sufficient measures to ensure information | --Articles: Art. 25 (1) GDPR, Art. 32 (1), (2) GDPR |
| 2022-05-26 | Turkish City store | €2K | GDPR | Italian Data Protection Authority (Garante) | Italy | Non-compliance with subjects' rights protection safeguards | --Articles: Art. 13 GDPR |
| 2022-12-01 | Store owner | €2K | GDPR | Italian Data Protection Authority (Garante) | Italy | Failure to comply with data processing principles | --Articles: Art. 5 (1) a) GDPR, Art. 13 GDPR |
| 2022-01-12 | BRISTOL LOGISTICS SA | €2K | GDPR | Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP) | Romania | Failure to implement sufficient measures to ensure information security | --Articles: Art. 32 (1) b) GDPR, Art. 32 (2) GDPR |