GDPRTelecommunicationsHigh Severity

Vodafone GmbH

€8,400,000

Authority

North Rhine-Westphalia DPA (LDI NRW)

Country

Germany

Date Issued

September 27, 2021

Industry

Telecommunications

Summary

Vodafone failed to implement adequate technical and organizational security measures, resulting in multiple data breaches affecting customer information.

Violation Types

SecurityData Breach

Articles Violated

Art. 32 GDPRArt. 5 GDPR

View original enforcement decision

View Germany regulatory profile →Search related breaches →

Related Enforcement Actions

Meta Platforms Ireland

DPC · GDPR · May 22, 2023

€1.2B

Amazon Europe Core

CNPD · GDPR · July 16, 2021

€746M

X Corp

DPC · GDPR · December 1, 2023

€550M

Meta Platforms Ireland

DPC · GDPR · September 5, 2022

€405M

Meta Platforms Ireland

DPC · GDPR · January 4, 2023

€390M

Avoid enforcement risk with automated compliance

IQWorks helps organizations automate GDPR compliance before regulators come knocking.

Talk to an Expert