ENDESA ENERGIA, S.A.U. – €200,000 Fine (Spain, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
ENDESA ENERGIA, S.A.U. received a EUR 200,000 fine from the Spanish data protection authority for mistakenly linking two unrelated customers, which led to one customer's energy supply being cut off. This incident shows how important it is for companies to handle personal data accurately.
What happened
ENDESA ENERGIA, S.A.U. mistakenly linked two unrelated parties, causing a third party to lose their energy supply contract.
Who was affected
A third party whose energy supply contract was terminated due to the error made by ENDESA ENERGIA, S.A.U.
What the authority found
The authority determined that ENDESA ENERGIA, S.A.U. violated data protection rules by mishandling personal data.
Why this matters
This ruling emphasizes the need for energy companies and others to ensure accurate data management to prevent negative impacts on customers. It serves as a warning that errors can lead to significant financial penalties.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Spanish DPA has imposed a fine of EUR 200,000 on ENDESA ENERGIA, S.A.U. The controller mistakenly linked two unrelated parties, resulting in a third party having its energy supply contract terminated.
Related Enforcement Actions (0)
No other enforcement actions found for ENDESA ENERGIA, S.A.U. in ES
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
17 July 2025
Authority
Agencia Española de Protección de Datos
Fine Amount
€200,000
Enforcement Tracker ID
ETid-2842
About this data
Cite as: Cookie Fines. ENDESA ENERGIA, S.A.U. - Spain (2025). Retrieved from cookiefines.eu
Last updated: