Company – €1,000 Fine (Spain, 2022)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
A Spanish company was fined EUR 1,000 for not informing customers about how their personal data would be used when booking appointments. This is important because businesses must be transparent about data use to comply with privacy laws.
What happened
The company failed to inform customers about how their personal data would be processed when booking appointments.
Who was affected
Customers who provided personal data for appointment bookings.
What the authority found
The Spanish DPA ruled that the company did not properly inform customers about data processing, violating GDPR's transparency requirements.
Why this matters
This fine serves as a reminder that businesses must clearly communicate how they use personal data. Transparency is key to building trust and complying with privacy regulations.
GDPR Articles Cited
The Spanish DPA (AEPD) has imposed a fine of EUR 1,000 on a company. The company had requested various personal data from customers for appointment bookings. The DPA found that the controller failed to properly inform the data subjects about the processing of the data in accordance with Art. 13 GDPR.
Related Enforcement Actions (3)
Other enforcement actions involving Company in ES
Fine
€1K
Details
Fine Date
28 June 2022
Authority
Agencia Española de Protección de Datos
Fine Amount
€1,000
Enforcement Tracker ID
ETid-1245
About this data
Cite as: Cookie Fines. Company - Spain (2022). Retrieved from cookiefines.eu
Last updated: