GDPRTelecommunicationsHigh Severity

Vodafone Italia S.p.A.

€5,000,000

Authority

Garante

Country

Italy

Date Issued

April 20, 2021

Industry

Telecommunications

Summary

Vodafone Italia failed to implement adequate security measures leading to a data breach affecting numerous customer records. The company also failed to promptly notify affected data subjects.

Violation Types

Data BreachSecurityData Subject Rights

Articles Violated

Art. 32 GDPRArt. 33 GDPR

View original enforcement decision

Related Enforcement Actions

Meta Platforms Ireland

DPC · GDPR · May 22, 2023

€1.2B

Amazon Europe Core

CNPD · GDPR · July 16, 2021

€746M

X Corp

DPC · GDPR · December 1, 2023

€550M

Meta Platforms Ireland

DPC · GDPR · September 5, 2022

€405M

Meta Platforms Ireland

DPC · GDPR · January 4, 2023

€390M

Avoid enforcement risk with automated compliance

IQWorks helps organizations automate GDPR compliance before regulators come knocking.

Talk to an Expert