Spain: AEPD fines MyHeritage €16,000 for LSSI violation
Background to the decision
In particular, the AEPD initiated a sanctioning procedure against MyHeritage, following a complaint by the Organisation of Consumers and Users ('OCU') which indicated a series of potential breaches of data protection regulations by MyHeritage, who are responsible for offering genealogical services, including DNA analysis and comparisons. The complaint was subsequently forwarded to MyHeritage, and following lack of response, the AEPD decided, on 30 November 2020, to process said claim.
Findings of the AEPD
As a result of the cookie violation, the AEPD fined MyHeritage €20,000, which was subsequently reduced to €16,000 following use of two reductions for the voluntary payment of the fine, and imposed a warning for the infringement of Article 13 of the GDPR.
You can read the decision, only available in Spanish, here.