German Telecommunications Company Fined 9.5 Million Euros for GDPR Violation
German Federal Data Protection Supervisory Authority (BfDI) imposed a 9.55 million Euro fine on the telecommunications company 1&1 Telecom GmbH.
The BfDI found that the authentication procedures used by 1&1’s customer helpline were insufficient and failed to satisfy the requirements of Art. 32 GDPR. The company announced that it will challenge the order, arguing that the size of the fine is disproportionate.