Easylife fined $1.5M under GDPR for profiling customers
The U.K. Information Commissioner’s Office (ICO) fined catalog retailer Easylife 1.35 million pounds (U.S. $1.5 million) for marketing health-related products to individuals without their consent.
Easylife used the personal information of 145,400 customers in an attempt to predict their medical conditions for targeted marketing campaigns in violation of Article 5 of the U.K. General Data Protection Regulation (GDPR), the ICO stated in a press release Thursday. The alleged misconduct occurred from August 2019 through August 2020 and included the processing of special category data, which is largely prohibited under the GDPR.
Easylife was further fined £130,000 (U.S. $145,000) resulting from a separate ICO investigation into more than 1.3 million predatory marketing calls made in violation of the Privacy and Electronic Communications Regulations (PECR).