Decision Technologies Limited (DTL) – €105,300 Fine (United Kingdom, 2020)
The UK's ICO fined Decision Technologies Limited €105,300 for sending over 14 million marketing emails without proper consent. This case emphasizes the need for clear and informed consent before sending marketing communications.
What happened
Decision Technologies Limited sent over 14 million marketing emails without obtaining specific and informed consent from recipients.
Who was affected
Recipients of the marketing emails sent by Decision Technologies Limited through third-party services.
What the authority found
The ICO found that Decision Technologies Limited violated the Privacy and Electronic Communications Regulations by not obtaining freely given, specific, and informed consent for its marketing emails.
Why this matters
This case serves as a warning to companies to ensure they have explicit consent for marketing emails, as regulators are enforcing compliance with consent requirements under privacy laws.
National Law Articles
Between June 2017 and June 2018, a price comparison and technology company, Decision Technologies Limited ('DTL'), used the email marketing services of two companies (referred to as 'Aggregators') to carry out a marketing campaign on his behalf. In particular, these Aggregators, in turn, used different List Owners to effectively transmit the communications required by DTL. Although DTL has done due diligence on the Aggregators, he has neither had any contacts nor compliance information from the List Owners against the PECR. During this time period, the Aggregators, through the List Owners, sent more than 14 million emails to their subscribers. The ICO had to determine whether the DTL has correctly acted in compliance with the PECR, particularly with reference to Regulation 22, which requires a specific and informed consent to send emails for marketing purposes. First, the ICO had to assess the approach adopted by the List Owners for the mentioned marketing activity. Second, the ICO needs to see if DTL, or the category of organisations in which he is part of, is mentioned in the 'opt-in' box of List Owners. The ICO found various non-compliant behaviours during its investigation on the List Owners. In particular, it found that some of these services did not have a specific and separate 'opt-in' box for marketing purposes, but consider it as a condition of the service. Also, when the ICO found a specific consent for marketing purposes, most of them did not mention DTL or its category of industry (e.g. price comparison industry) in the list of partners that could use the data of subscribers for its own marketing campaign. The ICO therefore confirmed the violation of the PECR, as that it did not find a ' freely given, specific and informed' expression of consent of the data subjects involved in the marketing campaign. Lastly, the DPA highlighted that, even if the behaviour of DTL was not deliberate, it would appear to be negligent, keeping into account that DTL shoul
Related Enforcement Actions (0)
No other enforcement actions found for Decision Technologies Limited (DTL) in UK
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
1 July 2020
Authority
Information Commissioner's Office
Fine Amount
€105,300
90,000 GBP
GDPRhub ID
gdprhub-2522About this data
Cite as: Cookie Fines. Decision Technologies Limited (DTL) - United Kingdom (2020). Retrieved from cookiefines.eu
Last updated: