FREE SUN ENERGY S.L. – €6,000 Fine (Spain, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
FREE SUN ENERGY was fined for sending a customer's invoice to the wrong person, exposing personal data. The Spanish authority found this violated GDPR's security requirements. This case underscores the need for businesses to protect customer information and handle it securely.
What happened
FREE SUN ENERGY sent a customer's invoice to another person, revealing personal data.
Who was affected
Customers whose invoices and personal data were mistakenly sent to others.
What the authority found
The Spanish authority found the company violated GDPR by not securing personal data properly, leading to a data breach.
Why this matters
This case emphasizes the importance of secure data handling practices to prevent breaches. Businesses should ensure their systems protect customer information to avoid similar fines.
GDPR Articles Cited
The Spanish DPA has imposed a fine on FREE SUN ENERGY S.L.. A customer of the company had filed a complaint with the DPA because instead of receiving their invoice, they had received that of another customer containing that customer's personal data. The original fine of EUR 10,000 was reduced to EUR 6,000 due to voluntary payment and admission of guilt.
Related Enforcement Actions (0)
No other enforcement actions found for FREE SUN ENERGY S.L. in ES
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
12 July 2022
Authority
Agencia Española de Protección de Datos
Fine Amount
€6,000
Enforcement Tracker ID
ETid-1356
About this data
Cite as: Cookie Fines. FREE SUN ENERGY S.L. - Spain (2022). Retrieved from cookiefines.eu
Last updated: