JAÉN SENTIDO Y COMÚN – €2,000 Fine (Spain, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A Spanish organization was fined EUR 2,000 for exposing email addresses in a mass email. They sent an email to 241 people without hiding the recipients' addresses. This case highlights the need for businesses to protect personal information when communicating via email.
What happened
JAÉN SENTIDO Y COMÚN exposed recipients' email addresses by using an open distribution list.
Who was affected
Recipients of an email sent by JAÉN SENTIDO Y COMÚN whose email addresses were visible to others.
What the authority found
The Spanish authority found that the organization violated GDPR by not protecting the confidentiality of email addresses.
Why this matters
This ruling underscores the importance of using blind carbon copy (BCC) in mass emails to protect privacy. Organizations should ensure they handle personal data securely to avoid similar breaches.
GDPR Articles Cited
The Spanish DPA has imposed a fine of EUR 2,000 on JAÉN SENTIDO Y COMÚN. The controller had sent an e-mail to 241 people in an open distribution list, making the email addresses of all recipients visible to the other recipients.
Related Enforcement Actions (0)
No other enforcement actions found for JAÉN SENTIDO Y COMÚN in ES
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
4 August 2022
Authority
Agencia Española de Protección de Datos
Fine Amount
€2,000
Enforcement Tracker ID
ETid-1323
About this data
Cite as: Cookie Fines. JAÉN SENTIDO Y COMÚN - Spain (2022). Retrieved from cookiefines.eu
Last updated: