MISTORE CANARIAS, S.L. – €5,000 Fine (Spain, 2022)

€5,000Agencia Española de Protección de Datos3 May 2022Spain
final
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

MISTORE CANARIAS, S.L. was fined €5,000 for sharing a customer's personal data with other companies without permission. This matters because it shows businesses must respect customer privacy and get consent before sharing data. The ruling highlights the importance of protecting personal information during transactions.

What happened

MISTORE CANARIAS, S.L. shared a customer's personal data with three other companies without her consent.

Who was affected

A customer who made a purchase from MISTORE CANARIAS, S.L. and had her personal data shared without consent.

What the authority found

The Spanish DPA found that MISTORE CANARIAS, S.L. violated GDPR by sharing personal data without a valid legal basis, such as consent.

Why this matters

This case emphasizes the need for businesses to obtain clear consent before sharing customer data with third parties. It serves as a reminder for companies to review their data-sharing practices to ensure compliance with privacy laws.

GDPR Articles Cited

Art. 6(1) GDPR
Spain enforcementAgencia Española de Protección de Datos actionsAll MISTORE CANARIAS, S.L. actions
Full Legal Summary
Detailed

The Spanish DPA (AEPD) has imposed a fine of EUR 5,000 on MISTORE CANARIAS, S.L.. A person who had made a purchase from the company had filed a complaint against the company with the DPA. According to the person, her personal data such as surname, first name and bank account details were collected during the purchase. In the course of the purchase, she was offered products from three other companies, which she rejected. Nevertheless, the controller transmitted her data to the three companies without her consenting to such transmission.

Related Enforcement Actions (0)

No other enforcement actions found for MISTORE CANARIAS, S.L. in ES

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

3 May 2022

Authority

Agencia Española de Protección de Datos

Fine Amount

€5,000

Enforcement Tracker ID

ETid-1152

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. MISTORE CANARIAS, S.L. - Spain (2022). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: