RESTEXPERIENCE, S.L. – €5,000 Fine (Spain, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Spanish data protection authority fined RESTEXPERIENCE, S.L. EUR 5,000 for accidentally emailing tax information of 36 people to 11 unauthorized recipients. This breach of privacy highlights the importance of securing personal data to prevent unauthorized access.
What happened
RESTEXPERIENCE, S.L. accidentally sent an email with tax information of 36 individuals to 11 unauthorized people.
Who was affected
The affected individuals were those whose tax information was mistakenly shared with unauthorized recipients.
What the authority found
The authority found that RESTEXPERIENCE, S.L. failed to protect personal data, violating GDPR's integrity and confidentiality principles.
Why this matters
This case underscores the need for businesses to implement strong data protection measures to avoid accidental data leaks. It serves as a reminder that even small errors can lead to significant privacy breaches and penalties.
GDPR Articles Cited
The Spanish DPA has fined RESTEXPERIENCE, S.L. EUR 5,000. The controller had accidentally sent an email containing tax information of 36 individuals to 11 unauthorized individuals. The DPA considered this to be a breach of the principle of integrity and confidentiality. It also found that the company had failed to implement appropriate technical and organizational measures to protect personal data.
Related Enforcement Actions (0)
No other enforcement actions found for RESTEXPERIENCE, S.L. in ES
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
19 October 2022
Authority
Agencia Española de Protección de Datos
Fine Amount
€5,000
Enforcement Tracker ID
ETid-1446
About this data
Cite as: Cookie Fines. RESTEXPERIENCE, S.L. - Spain (2022). Retrieved from cookiefines.eu
Last updated: