Greece
KARAMBELAS KONSTANTINOS & CO. E.E.
40,000 €
GDPR enforcement action by Hellenic Data Protection Authority (HDPA) on 2025-06-25.
Rank · Sector
#233
of 366 in Media, Telecoms and Broadcasting
Rank · Greece
#23
of 93
Rank · All fines
#836
of 3,042
Case details
- Authority
- Hellenic Data Protection Authority (HDPA)
- Date
- 2025-06-25
- Controller / Processor
- KARAMBELAS KONSTANTINOS & CO. E.E.
- Sector
- Media, Telecoms and Broadcasting
- Quoted Articles
- Art. 29 GDPR, Art. 32 GDPR
- Type of violation
- Insufficient technical and organisational measures to ensure information security
Summary
The Greek DPA has imposed a fine of EUR 40,000 on KARAMBELAS KONSTANTINOS & CO. E.E. The processor, which was processing data for a telecommunications provider (ETid: 2878), failed to implement sufficient technical and organisational measures to ensure data security. This resulted in multiple SIM cards being registered in a third person's name.
Open original source
Links to the regulator's original publication or another source.
Related fines
Greece
2022-07-13
20,000,000 €
ETid-1268
Clearview Al Inc.
Industry and Commerce
Greece
2022-01-27
6,000,000 €
ETid-1024
Cosmote Mobile Telecommunications S.A.
Media, Telecoms and Broadcasting
Greece
2022-01-27
3,200,000 €
ETid-1025
OTE Group
Media, Telecoms and Broadcasting
Greece
2024-02-28
2,995,140 €
ETid-2284
Hellenic Post (ΕΛΛΗΝΙΚΑ ΤΑΧΥΔΡΟΜΕΙΑ ΑΝΩΝΥΜΗ ΕΤΑΙΡΕΙΑ)
Transportation and Energy
Greece
2025-06-25
550,000 €
ETid-2878
Vodafone – PANAFON A.E.E.T.
Media, Telecoms and Broadcasting
Greece
2024-05-27
400,000 €
ETid-2556
Ministry of Interior (Greece)
Public Sector and Education