OCI CINE, S.L. – €18,000 Fine (Spain, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
OCI CINE, S.L. was fined €18,000 for not keeping customer data secure. This meant some customers could see other people's information by mistake. This case shows that companies must take data security seriously to protect their customers' privacy.
What happened
OCI CINE, S.L. failed to implement proper security measures, allowing customers to access unrelated data.
Who was affected
Customers of OCI CINE, S.L. whose personal data was exposed due to security issues.
What the authority found
The Spanish DPA found that OCI CINE, S.L. did not meet the required data security standards under GDPR.
Why this matters
This ruling highlights the importance of strong data security practices for businesses. Companies need to ensure they have adequate measures in place to protect customer information.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Spanish DPA imposed a fine of EUR 18,000 on OCI CINE, S.L. The controller had implemented insufficient technical and organisational measures to ensure data security, resulting in customers having temporary access to the data of unrelated customers. The original fine of EUR 30,000 was reduced to EUR 18,000 due to immediate payment and admission of responsibility by the controller.
Related Enforcement Actions (1)
Other enforcement actions involving OCI CINE, S.L. in ES
Details
Fine Date
13 June 2025
Authority
Agencia Española de Protección de Datos
Fine Amount
€18,000
Enforcement Tracker ID
ETid-2741
About this data
Cite as: Cookie Fines. OCI CINE, S.L. - Spain (2025). Retrieved from cookiefines.eu
Last updated: