Has imposed a fine of euros on a telephone company. Digi Spain Telecom, which issued a duplicate SIM card to a fraudster who impersonated. The Spanish Data one of its clients and who used the mobile phone. to make several transfers from its bank account. The AEPD considers that the company did not act with the necessary diligence to avoid fraud and that it violated article 6 of the Data Protection Regulation regarding the legality of processing the client’s personal data.
The claimant realized
That he did not have coverage, he contacted the operator, who told him that a duplicate. Later he verified that the. Password had been Whatsapp Number List changed in his. Bank application and that several. The scammer had surpassed the security policy established by. DIGI for the identification of clients who contact by telephone.
Providing name surname
The last four digits of their bank account. An image of the ID was not required. Paradoxically, the person. Who did not pass the security check, on the first attempt, was the real ATB Directory owner of the account who did not have the security. . Have the digits of his bank account. The fraudulently activated line was active for 16 hours. The Spanish Data Protection Agency considers that the issuance of a duplicate card to a person. Who had usurped the identity of a client is irregular and article.