A major German health insurance company has been fined €1.3 million by the Data Privacy Office of Rheinland-Pfalz for violations of privacy laws and a lack of internal controls. Back in the 1980s and 1990s, the company’s sales representatives allegedly bribed public sector employees to obtain address data of employees who were likely  to become civil servants, to enable the company to use this data to market insurance contracts to these employees. The fine imposed was accepted by the management board of the insurance company to avoid any court proceedings.

Data Privacy Office of Rheinland-Pfalz press release (in German)