Vodafone Hit With Forty-Five Million Euros Fine Over GDPR Violations In Germany

Germany’s Federal Commissioner for Data Protection and Freedom of Information (BfDI) has imposed a 45 million euros (USD 51.2 million) fine on Vodafone for breaches of data protection rules.

The fine includes 15 million euros for failing to adequately monitor partner agencies that allegedly arranged fraudulent contracts and altered customer terms without consent. An additional 30 million euros was imposed for security issues in Vodafone’s customer authentication systems, which allowed unauthorised access to eSIM profiles. Vodafone acknowledged the lapses and said its systems and processes have since been reviewed and strengthened. The company stated that the incidents stemmed from inadequate data protection checks. BfDI said the action aims to prevent future violations and promote trust in digital services under the EU’s GDPR framework.