Spain's data protection authority, the Agencia Española de Protección de Datos, issued a 6 million euro fine to CaixaBank for violations of the EU General Data Protection Regulation. It's the highest fine to date issued by the AEPD. The bank breached Articles 6, 13 and 14 of the GDPR with its improper data processing practices and collection of user data without explicit consent. In addition to the fine, CaixaBank will need to bring its data processing into compliance within six months.
22 Feb. 2021
AEPD fines bank 6M euros over data processing
RELATED STORIES
The Global Digital Compact: Uniting nations on digital governance
CPPA to initiate formal ADMT rulemaking process as executive director set to depart
What to know about the new Canadian government PIA standard
Notes from the IAPP Canada: 'The Debaters' battle it out over privacy
A view from DC: What does a second Trump presidency mean for privacy, AI governance?