Details:
| Summary | The Spanish DPA has imposed a fine of EUR 12,000 on the website operator CHATWITH.IO WORLDWIDE, S.L. During its investigation, the DPA found that the controller had failed to adequately comply with its information obligations under Art. 13 GDPR. For example, there was a lack of detailed information on the purposes of processing personal data on the website. Furthermore, the design of a cookie banner used so-called dark patterns, with the pop-up giving users only the choice between consent and access to the settings page. This meant that it was not possible for users to simply refuse the use of cookies, but that they could only do so via the settings menu and many clicks. The fine is made up of EUR 5,000 for the violation of Art. 5 (1) a) GDPR, EUR 5,000 for the violation of Art. 13 GDPR and EUR 2,000 for the violation of the national law Art. 22 LSSI. |
| Link: | link |
| Related articles: | Art. 5 (1) a) GDPR, Art. 13 GDPR, Art. 22 (2) LSSI |
| Type: | Non-compliance with general data processing principles |
| Fine: | EUR 12,000 |
| Sector | Industry and Commerce |
All data is based on The CMS’s Law GDPR Enforcement Tracker Source: https://www.enforcementtracker.com/