Italy’s DPA fines Vodafone €12 million for telemarketing breaches

Yesterday, Italy’s Data Protection Authority, the Garante, issued a fine of €12,250,000 on Vodafone for conducting telemarketing activities without individuals’ consent.

In addition to the fine, the company will have to adopt a series of measures to improve its data protection compliance, including data security measures.

The investigation was prompted by hundreds of complaints about unsolicited telephone calls by Vodafone and its sales network to promote its telephone and Internet services. Contact details were often received from third parties who had not sought the individuals’ consent. Other failings included not enough attention paid to accountability and Data Protection by Design.

Vodafone has also been fined in Spain. In August, the Spanish Data Protection Authority (AEPD) imposed a fine of €75,000 on Vodafone Spain for marketing breaches, and €36,000 in October for data processing breaches.

See Garante - Aggressive telemarketing. From the Privacy Garante, a fine to Vodafone for €12,250,000 (in Italian)