Show all guides
Europe
GDPR

Telecommunications Operator Fined €4.5 Million for GDPR Violations

Last update:
Nov 14, 2025
The Croatian Personal Data Protection Agency levied a €4.5 million administrative fine against a telecommunications operator. This action followed ex officio proceedings which revealed multiple infringements of the General Data Protection Regulation by the operator, acting as a data controller. Key violations included the unauthorized transfer of personal data to third countries without proper legal instruments or transparent notification to data subjects, unlawful processing of employee identity cards and criminal background checks, and insufficient prior due diligence on a data processor.

The full guidelines can be found
here

Related Guides

Imgur withdraws from the UK after ICO warning over data practices

October 2, 2025

Imgur blocked UK access after the ICO raised concerns about its data handling, especially children’s data. The move highlights how UK GDPR compliance costs can drive global platforms to withdraw from stricter privacy markets.
Europe
GDPR

Italy fines OpenAI €15 million for privacy violations

December 17, 2024

Italy’s data protection authority fined OpenAI €15 million for GDPR violations related to ChatGPT’s data use and lack of age verification controls.
Europe
GDPR
The information provided on this website does not, and is not intended to, constitute legal advice; instead, all information, content, and materials available on this site are for general informational purposes only