The Information Commissioner’s Office (ICO) has fined food delivery company HelloFresh £140,000 for a campaign of 79 million spam emails and 1 million spam texts over a seven-month period.
The marketing messages were sent based on an opt-in statement which did not make any reference to the sending of marketing via text. Whilst there was a reference to marketing via email, this was included in an age confirmation statement which was likely to unfairly incentivise customers to agree.
Customers were also not given sufficient information that their data would continue to be used for marketing purposes for up to 24 months after cancelling their subscriptions.
An investigation by the ICO began in March 2022 following complaints made directly to the regulator, as well as to the 7726 spam message reporting service. As part of this investigation, it was also discovered that the company continued to contact some individuals even after they had requested this to stop.
Following the investigation, we found that the company (Grocery Delivery E-Services UK Limited) contravened regulation 22 of the Privacy and Electronic Communications Regulations 2003 and it has now been served with a fine of £140,000.
Andy Curry, Head of Investigations at the Information Commissioner’s Office, said:
“This marked a clear breach of trust of the public by HelloFresh. Customers weren’t told exactly what they’d be opting into, nor was it clear how to opt out. From there, they were hit with a barrage of marketing texts they didn’t want or expect, and in some cases, even when they told HelloFresh to stop, the deluge continued.
“In issuing this fine, we are showing that we will take clear and decisive action where we find the law has not been followed. We will always protect the right of customers to choose how their data is used.
“The investigation that led to this fine began following complaints filed by the public, both to the ICO and to the 7726 service. This shows just how important it is that if you are being contacted with nuisance calls, texts or emails, that you report it straight away.”
Andrew Stevens, Principal at Quadient, commented,
“HelloFresh’s fine shines a light on the importance of communicating with customers in a meaningful way and on their preferred channel. Every piece of communication is an opportunity for organisations to show how they can provide timely and relevant advice and information. However, issues such as nuisance calls have become a growing problem in recent years and a huge bugbear for consumers.
“Our Freedom of Information request to the ICO on nuisance calls suggested that organisations were making better progress in stamping out spam calls in 2022. The ICO received 56,015 complaints about nuisance calls and texts in 2022, less than half of the 131,491 received in 2021 and fewer than in any year since 2019. However, HelloFresh’s fine shows that that businesses aren’t out of the woods yet as the drop is likely caused by consumers giving up complaining about spam calls.
“Companies need to ensure that every call and text brings value, rather than proving a nuisance and an expensive waste of a call center employee’s time. This means they need to take a personalised approach and listen to consumers about how they want to be contacted. An organisation might be calling with crucial information that will save the consumer money, but if the customer doesn’t want to be contacted over the phone, the call won’t be well received, if it’s even answered.
“Ultimately, the organisations that aren’t able to stamp out these spam calls and texts will be hit with huge financial penalties. 14 complaints to the ICO might seem like a drop in the ocean against the 56,015 complaints received last year, but HelloFresh have racked up penalties in the hundreds of thousands as a consequence.”