- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Kyle Brasseur2023-11-10T15:13:00
Axpo Italia, a producer and trader of renewable energy products, was penalized under the General Data Protection Regulation (GDPR) by the Italian data protection authority (Garante) for processing inaccurate and outdated personal data of customers.
Garante assessed a fine of 10 million euros (then-U.S. $10.5 million) against Axpo on Sept. 28. The penalty was announced in an Oct. 23 newsletter. The company said in an emailed statement to Compliance Week on Nov. 1 that it cooperated with the regulator’s investigation and reserved the right to potentially appeal the ruling.
Garante said it received complaints from customers about the activation of Axpo electricity and gas contracts registered in their name without their knowledge. The customers became aware of the accounts after receiving closure letters from previous suppliers or payment reminders of unpaid invoices, according to the regulator’s translated newsletter.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec.
Annual Membership best value
Subscribe now for $365
Our lowest price ($1 per day) for one year.
Register for free
Receive the CW newsletter and access CPE webcasts.
The Czech Republic’s data protection authority issued a fine of 351 million Czech koruna (U.S. $15 million) against antivirus software vendor Avast for alleged violations of the General Data Protection Regulation.
The Italian data protection authority announced a fine of €2.8 million (U.S. $3 million) against UniCredit for alleged violations of the General Data Protection Regulation regarding insufficient security measures the bank had in place during a cyberattack.
Debt collector EOS Matrix said it will challenge a General Data Protection Regulation penalty levied against it by the Croatian data protection authority after finding the data in question in the case does not match the data in its database.
RTX Corp., the parent company of Raytheon, disclosed in a public filing it has reserved $1.24 billion to resolve legacy legal matters with the Department of Justice, Securities and Exchange Commission, and Department of State.
The U.K. Financial Conduct Authority issued a fine of $4.5 million (3.5 million pounds) against a U.K.-based subsidiary of crypto platform Coinbase for providing services to high-risk customers in violation of FCA rules.
Admera Health agreed to pay more than $5.5 million to resolve allegations first brought by two whistleblowers that it paid kickbacks to third-party contractors, the Department of Justice said.
