Wire · founder news, decoded · regulatory
Spain: AEPD fines Vodafone €1,050,000 for unlawful data disclosure and ...
Spain's AEPD fined Vodafone €1,050,000 for GDPR violations including unlawful data disclosure to a third party, fraudulent line activation without authorisation, and failure to implement adequate security measures that allowed impersonation and unauthorised access. The fine breaks down as €150,000 for unlawful processing, €150,000 for unlawful disclosure and data modification, and €750,000 for inadequate security.
This Wire brief sits within Fusion42's coverage of Cybersecurity. Wire is Fusion42's founder-focused intelligence feed: each story is connected to the funds and startups it names — every one with a live profile on Raise or Scout — so founders can follow the capital and the momentum behind the headline rather than just the headline itself. Wire analysis is one of the live surfaces Arthur, Fusion42's AI co-founder, reasons over.
The Wire takeaway
If you run a telecoms or SaaS business handling customer identity, your call centre is now a liability. AEPD's €750,000 penalty for inadequate access controls - not the breach itself, but for not stopping it - means regulators will fine you for each employee who can impersonate a customer.
Read the full story at dataguidance.com →
Topics: Cybersecurity · gdpr · data-protection · enforcement · security-failures · telecom · spain