Curenergía Comercializador de último recurso – €75,000 Fine (Spain, 2019)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
Curenergía was fined €75,000 in Spain for using a former customer's personal data to sign them up for an electricity contract without their permission. The company used details like the customer's name and address without a valid reason. This case stresses the importance of having a legal basis before processing personal data.
What happened
Curenergía used a former customer's personal data to enter into an electricity contract without consent.
Who was affected
A former customer whose personal data was used by Curenergía without permission.
What the authority found
The Spanish data protection authority ruled that Curenergía lacked a valid legal basis for processing the customer's data, violating GDPR.
Why this matters
This fine highlights the risks companies face when using personal data without proper consent. Businesses should ensure they have a clear legal basis for data processing to avoid penalties.
GDPR Articles Cited
An individual filed a complaint against the company alleging that the company had used its personal data as a former customer, such as first and last name, VAT identification number and address, to enter into an electricity supply contract.
Related Enforcement Actions (0)
No other enforcement actions found for Curenergía Comercializador de último recurso in ES
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
28 November 2019
Authority
Agencia Española de Protección de Datos
Fine Amount
€75,000
Enforcement Tracker ID
ETid-141
About this data
Cite as: Cookie Fines. Curenergía Comercializador de último recurso - Spain (2019). Retrieved from cookiefines.eu
Last updated: