Generali pays EUR4 million Spanish GDPR fine over cyberattack handling

( January 27, 2025, 12:21 GMT | Official Statement) -- MLex Summary: Insurance company Generali España has paid a fine of 4 million euros imposed by the Spanish data watchdog for violating the EU's General Data Protection Regulation. The fine was related to a cyberattack that exposed personal data, including names and bank details. Generali initially didn't notify the affected individuals, the watchdog said. After investigation, it was determined that the company failed to perform necessary data protection risk assessment, the regulator said. The fine was initially 5 million euros, but due to prompt payment, it was reduced by 20 percent. The decision is attached in Spanish. ...

Prepare for tomorrow’s regulatory change, today

MLex identifies risk to business wherever it emerges, with specialist reporters across the globe providing exclusive news and deep-dive analysis on the proposals, probes, enforcement actions and rulings that matter to your organization and clients, now and in the longer term.

Know what others in the room don’t, with features including:

Daily newsletters for Antitrust, M&A, Trade, Data Privacy & Security, Technology, AI and more
Custom alerts on specific filters including geographies, industries, topics and companies to suit your practice needs
Predictive analysis from expert journalists across North America, the UK and Europe, Latin America and Asia-Pacific
Curated case files bringing together news, analysis and source documents in a single timeline

Experience MLex today with a 14-day free trial.

Start Free Trial

Already a subscriber? Click here to login

Generali pays EUR4 million Spanish GDPR fine over cyberattack handling

Prepare for tomorrow’s regulatory change, today

Documents

Related Sections