WUNSCHURLAUB S.L. – €1,800 Fine (Spain, 2023)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
WUNSCHURLAUB S.L. was fined EUR 1,800 for storing user passwords in plain text on its website, which is a security risk. The Spanish Data Protection Authority reduced the fine after the company admitted responsibility and paid voluntarily. This case highlights the need for strong data security measures.
What happened
WUNSCHURLAUB stored user passwords in plain text on its website, violating GDPR's security requirements.
Who was affected
Users of the website www.meine-auszeit-jetzt.de whose passwords were stored insecurely.
What the authority found
The Spanish DPA fined WUNSCHURLAUB for inadequate data security practices, specifically for storing passwords in plain text, violating GDPR's security standards.
Why this matters
This case underscores the importance of implementing robust security measures to protect personal data. Companies should ensure they use encryption and other safeguards to prevent unauthorized access to sensitive information.
GDPR Articles Cited
The Spanish DPA has fined WUNSCHURLAUB S.L. for storing passwords in plain text on its website www.meine-auszeit-jetzt.de. The DPA considered this to be a violation of Art. 32 GDPR. The original fine of EUR 3,000 was reduced to EUR 1,800 due to voluntary payment and admission of responsibility.
Related Enforcement Actions (0)
No other enforcement actions found for WUNSCHURLAUB S.L. in ES
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
28 February 2023
Authority
Agencia Española de Protección de Datos
Fine Amount
€1,800
Enforcement Tracker ID
ETid-1756
About this data
Cite as: Cookie Fines. WUNSCHURLAUB S.L. - Spain (2023). Retrieved from cookiefines.eu
Last updated: