CCPA fines SpiceJet ₹1 lakh for dark patterns on booking platform

Share:
Audio Loading voice…
CCPA fines SpiceJet ₹1 lakh for dark patterns on booking platform

Synopsis

India's consumer watchdog has fined SpiceJet ₹1 lakh for using pre-ticked checkboxes to auto-enrol flyers into its loyalty programme and harvest marketing consent — and notably, the airline continued the practice in a tweaked form even after receiving a regulatory notice. It is the first major dark-pattern enforcement action against an Indian carrier.

Key Takeaways

The CCPA imposed a ₹1 lakh penalty on SpiceJet Limited on 17 July for dark-pattern violations.
SpiceJet automatically enrolled users in the SpiceClub Loyalty Programme via a pre-ticked checkbox during booking.
Promotional consent for SMS, WhatsApp, and email was also obtained through default-selected options.
Even after a CCPA notice, SpiceJet replaced the original design with another pre-ticked checkbox — continuing the same practice in a different form.
The airline attributed the issue to a technical error and was directed to submit a permanent corrective undertaking.
The ruling invokes unfair trade practices , unfair contracts , and misleading representations under the Consumer Protection Act, 2019 .

The Central Consumer Protection Authority (CCPA) on Friday, 17 July imposed a penalty of ₹1 lakh on SpiceJet Limited for deploying deceptive interface designs — commonly called 'dark patterns' — on its flight booking platform. The authority found that SpiceJet automatically enrolled consumers into its loyalty programme and obtained consent for promotional communications through pre-selected checkboxes, without requiring any affirmative action from users.

What the CCPA Found

The order was passed by the CCPA under Chief Commissioner Nidhi Khare and Commissioner Anupam Mishra. The authority determined that SpiceJet's booking interface used design elements that impaired consumer choice, in violation of the Consumer Protection Act, 2019.

Specifically, consumers were automatically enrolled in the SpiceClub Loyalty Programme via a pre-ticked checkbox during the booking process. Separately, users were treated as having consented to receive promotional messages — through SMS, WhatsApp, and email — because the relevant option was selected by default.

Airline's Response and Continued Non-Compliance

During proceedings, SpiceJet attributed the issue to a technical error. However, the CCPA noted that even after it issued a formal notice, the airline replaced the original pre-ticked design with another pre-ticked checkbox for future communications — effectively continuing the same practice in a different form.

The airline was subsequently directed to submit an undertaking confirming that corrective measures had been implemented and would remain in place permanently.

Regulatory Findings and Legal Basis

The Ministry of Consumer Affairs, Food and Public Distribution confirmed the penalty order, stating that such practices 'undermine consumer autonomy, impair informed decision-making and are inconsistent with the principles of fair and transparent consumer engagement.'

The CCPA held that SpiceJet's conduct amounted to unfair trade practices, unfair contracts, and misleading representations under the Consumer Protection Act, 2019. The ruling marks a significant enforcement action under India's evolving dark-pattern regulatory framework.

Broader Context: India's Crackdown on Dark Patterns

This is not an isolated action. The CCPA has been stepping up scrutiny of digital platforms and e-commerce players for manipulative design practices since the Guidelines for Prevention and Regulation of Dark Patterns, 2023 came into effect. SpiceJet's case is among the first in the aviation sector, signalling that airlines and travel booking platforms are now firmly within the regulator's crosshairs.

The aviation sector's heavy reliance on ancillary revenue — through add-ons, loyalty enrolments, and promotional upsells — makes it particularly susceptible to such regulatory challenges. With consumer grievances in online travel booking rising steadily, further enforcement actions against other carriers cannot be ruled out.

Point of View

But the precedent is significant: the CCPA has now put the aviation sector on notice that pre-ticked consent boxes constitute an enforceable violation, not a grey-area UX choice. What stands out is SpiceJet's conduct after the notice — swapping one pre-ticked box for another is not remediation, it is repackaging. The regulator caught it. The real question is whether the penalty quantum — too small to sting a listed airline — is proportionate enough to deter sector-wide replication. India's dark-pattern rules are still finding their enforcement teeth; this case will test whether the CCPA escalates fines for repeat or continued non-compliance.
NationPress
17 Jul 2026

Frequently Asked Questions

What are dark patterns and why did CCPA penalise SpiceJet?
Dark patterns are deceptive interface designs that manipulate users into actions they did not intend — such as pre-ticked checkboxes that enrol them in programmes or marketing lists without explicit consent. The CCPA penalised SpiceJet ₹1 lakh on 17 July for using exactly such designs on its flight booking platform, in violation of the Consumer Protection Act, 2019.
What specific practices on SpiceJet's platform were flagged?
The CCPA identified two key violations: automatic enrolment in the SpiceClub Loyalty Programme through a pre-selected checkbox, and default consent for promotional communications via SMS, WhatsApp, and email without requiring any affirmative user action.
Did SpiceJet fix the issue after receiving a CCPA notice?
Not immediately. According to the CCPA, after the notice was issued, SpiceJet replaced the original pre-ticked design with another pre-ticked checkbox for future communications — effectively continuing the same practice in a different form. The airline was then directed to submit a permanent corrective undertaking.
What was SpiceJet's explanation for the dark-pattern design?
SpiceJet told the CCPA during proceedings that the issue arose from a technical error. The authority accepted the explanation for the purposes of the penalty order but still required the airline to confirm in writing that corrective steps had been implemented permanently.
What is the legal basis for the CCPA's action against SpiceJet?
The CCPA invoked the Consumer Protection Act, 2019, holding that SpiceJet's conduct amounted to unfair trade practices, unfair contracts, and misleading representations. The action also draws on the CCPA's Guidelines for Prevention and Regulation of Dark Patterns, 2023.
Nation Press
The Trail

Connected Dots

Tracing the thread behind this story — newest first.

8 Dots
  1. Latest 3 hours ago
  2. 1 month ago
  3. 1 month ago
  4. 1 month ago
  5. 2 months ago
  6. 7 months ago
  7. 11 months ago
  8. 1 year ago
Google Prefer NP
On Google