Watchdog fines Morrisons for spamming opt-out customers

Supermarket coughs up £10,500 for asking customers to opt-in to marketing emails

Morrisons

The Information Commissioner's Office (ICO) has fined Morrisons supermarket 10,500 for sending out spam to its customers, despite them opting out of receiving marketing emails.

The UK data protection watchdog found that the chain had knowingly sent 130,671 emails to people holding a Morrisons store card who had preciously opted out of receiving such emails.

The emails were sent to customers in the tail-end of 2016 and included the subject line, "Your Account Details." The email in question then asked recipients to change their marketing preferences so they could then receive discounts and earn extra points from using their card. Opting in would also mean Morrisons could send newsletters detailing the company's latest news and information.

"It is vital that the public can trust companies to respect their wishes when it comes to how their personal information is used for marketing," ICO deputy commissioner Simon Entwisle said.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

"These customers had explicitly told Morrisons they didn't want marketing emails about their More card. Morrisons ignored their decision and for that we've taken action."

The ICO added that fining businesses that misuse the UK's systems of opting in or out to marketing materials will go some way to ensure all companies adhere to the new General Data Protection Regulation (GDPR) guidelines planned to come into force in 2018. The GDPR will force companies to require clear opt-in consent from customers to use their personal data for particular purposes.

Under GDPR, any company that possesses personal customer information must ensure it's fair and lawfully processed, processed for limited purposes, any use of that customer data is for adequate, relevant and not excessive reasons, is always up to date and accurate, isn't kept longer than deemed necessary, is processed within the customer's rights, is secure and never transferred to any other country without being adequately secured.

Featured Resources

What you need to know about migrating to SAP S/4HANA

Factors to assess how and when to begin migration

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

Testing for compliance just became easier

How you can use technology to ensure compliance in your organisation

Download now

Best practices for implementing security awareness training

How to develop a security awareness programme that will actually change behaviour

Download now
Advertisement

Recommended

Visit/data-insights/data-management/354423/eu-us-data-transfer-tools-used-by-facebook-ruled-legal
data management

EU-US data transfer tools used by Facebook ruled legal

19 Dec 2019
Visit/backup/33385/arcserve-udp-9240dr-review-beef-up-your-backups
backup

Arcserve UDP 9240DR review: Beef up your backups

4 Apr 2019

Most Popular

Visit/policy-legislation/data-governance/354496/brexit-security-talks-under-threat-after-uk-accused-of
data governance

Brexit security talks under threat after UK accused of illegally copying Schengen data

10 Jan 2020
Visit/microsoft-windows/32066/what-to-do-if-youre-still-running-windows-7
Microsoft Windows

What to do if you're still running Windows 7

14 Jan 2020
Visit/hardware/laptops/354533/dell-xps-13-new-9300-hands-on-review-chasing-perfection
Laptops

Dell XPS 13 (New 9300) hands-on review: Chasing perfection

14 Jan 2020
Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020