Private individual – €5,000 Fine (Spain, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A private individual in Spain was fined EUR 5,000 for sending an email that revealed the addresses of all recipients. This breach of privacy happened because the email was sent using an open distribution list. It highlights the importance of protecting personal information when communicating online.
What happened
The individual sent an email with personal data to multiple recipients using an open distribution list.
Who was affected
Recipients of the email who could see each other's email addresses were affected.
What the authority found
The Spanish data protection authority found that the individual violated rules on data protection by exposing personal information.
Why this matters
This case serves as a reminder for everyone to use secure methods when sharing personal information via email. It emphasizes the need for careful handling of personal data to avoid privacy breaches.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Spanish DPA has imposed a fine of EUR 5,000 on a private individual. The controller sent an e-mail with personal data to several recipients in an open distribution list. This made it possible for the recipients to view the e-mail addresses of all other recipients.
Related Enforcement Actions (20)
Other enforcement actions involving Private individual in ES
Fine
€5K
Details
Fine Date
16 March 2023
Authority
Agencia Española de Protección de Datos
Fine Amount
€5,000
Enforcement Tracker ID
ETid-1689
About this data
Cite as: Cookie Fines. Private individual - Spain (2023). Retrieved from cookiefines.eu
Last updated: