ASEFA

ASEFA operates as an insurance provider in Spain and is a wholly owned subsidiary of the French mutual insurer SMABTP. Its headquarters are located in Madrid, reflecting a strategic focus on the Spanish market while being backed by the parent’s international mutual structure. The company offers a portfolio of insurance products that includes construction and all‑risk coverage, as evidenced by its role in the insurance program undertaken for the FC Barcelona Camp Nou redevelopment. In addition to construction risks, ASEFA underwrites policies for commercial liability, property, and other lines commonly requested by corporate and institutional clients. Its service model encompasses policy issuance, claims management, and risk advisory activities conducted under Spanish insurance law and EU regulatory frameworks. Being part of a mutual organization, ASEFA’s approach emphasizes long‑term stability and the interests of its policyholder members rather than external shareholders.

As a subsidiary of SMABTP, ASEFA draws on the financial strength and reinsurance capacity of a large French mutual while maintaining operational autonomy in Spain. The Camp Nou project illustrates its capacity to handle complex, high‑value infrastructure risks, a distinguishing attribute in its market positioning. The company is subject to supervision by the Spanish Directorate General of Insurance and Pension Funds and must comply with Solvency II‑equivalent requirements applicable to EU insurers. Structurally, ASEFA’s ownership is direct: SMABTP holds 100 % of its share capital, and SMABTP itself is owned by its policyholders as a mutual entity. In early June 2025, the Qilin ransomware group claimed responsibility for a cyberattack that disrupted part of ASEFA’s IT infrastructure. Although the attack forced the temporary shutdown of its website and the suspension of full digital functionality pending a security audit, core insurance operations such as policy underwriting and claims processing remained operational. Corporate email services were restored quickly, while the attackers asserted they had exfiltrated more than 200 GB of data, including internal documents, financial records, legal agreements, passport scans, and specifics of the Camp Nou insurance program. Security researchers warned that the exposed information could be used for identity theft, contractual fraud, and corporate espionage, creating reputational and operational risks for ASEFA and its clients.