AUDAX RENOVABLES, S.A. – €12,000 Fine (Spain, 2021)

€12,000Agencia Española de Protección de Datos17 June 2021Spain
final
ePrivacy
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

Audax Renovables called a customer for marketing despite the customer opting out through the Robinson List. The Spanish data protection authority found that the company ignored the customer's right to refuse marketing calls. This ruling highlights the need for companies to respect opt-out requests.

What happened

Audax Renovables made marketing calls to a customer who had opted out of such communications.

Who was affected

A customer who opted out of marketing communications through the Robinson List.

What the authority found

The Spanish data protection authority ruled that Audax Renovables violated Article 21 of GDPR by ignoring the customer's opt-out request.

Why this matters

This case shows that companies must honor opt-out requests from customers. Businesses should ensure their marketing practices comply with regulations to avoid penalties.

GDPR Articles Cited

AI-verified

Art. 21(GDPR)
View original scraped data
Art. 21(GDPR)

Original data from scraper before AI verification against source document.

National Law Articles

AI-identified

Art. 48(1)(b) LGT
Source verified 5 April 2026
national law identified
Spain enforcementAgencia Española de Protección de Datos actionsAll AUDAX RENOVABLES, S.A. actions
Full Legal Summary
Detailed

A data subject lodged a complaint with the Spanish DPA (AEPD) against an energy company. The company had called them for commercial reasons, despite the data subject having signed up for the Robinson List a few months before. A Robinson List is an opt-out list for people who do not wish to receive marketing communications. The AEPD remarked that the [https://www.boe.es/buscar/act.php?id=BOE-A-2014-4950 Spanish Telecommunications Act] (LGT) forbids, in its Article 48(1)(b), commercial communications when the subject has opposed to them. The DPA also related this prohibition to Article 21 GDPR, which gives the data subject the right to oppose to the processing of their personal data. The controller alleged that the LGT was not applicable to the case, since the main activity of the energy company is not related to telecommunications. However, the DPA argued that Article 48(1)(b) GDPR is applicable to commercial communications, regardless of the main activity of the company that carries out such communications. Therefore, the AEPD concluded that the controller had ignored the right to oppose to the processing of the data subject, exercised via the inclusion in the Robinson List, and therefore violated Article 48(1)(b) GDPR. The DPA fined the controller €12,000.

Violations (1)

Cookies Placed Before Consent
critical

Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.

Art. 6(1) GDPR

Related Enforcement Actions (0)

No other enforcement actions found for AUDAX RENOVABLES, S.A. in ES

This is the only recorded action for this entity in this jurisdiction.

Similar Cases

Enforcement actions with similar violations

Minister for Legal Protection

2022 · DPA RbOverijssel

Data Subject versus Telecommunications Company

2025 · DPA OLGKoblenz

Legal Person

2023 · Úřad pro ochranu osobních údajů

€4K

CNIL

2019 · Court of Justice of the European Union

Details

Fine Date

17 June 2021

Authority

Agencia Española de Protección de Datos

Fine Amount

€12,000

GDPRhub ID

gdprhub-3591

Sources

About this data

Data: GDPRhub (noyb.eu)
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. AUDAX RENOVABLES, S.A. - Spain (2021). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: