HOLY MARY CATHOLIC SCHOOL, S.L. – €12,000 Fine (Spain, 2026)

€12,000Agencia Española de Protección de Datos1 March 2026Spain
reduced
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

HOLY MARY CATHOLIC SCHOOL in Spain was fined €12,000 for not properly using Google Workspace for Education. The school failed to ensure that students only accessed the tools they needed for their studies and did not inform parents adequately. Schools must be careful to protect student data and follow privacy guidelines when using online tools.

What happened

The school inadequately implemented Google Workspace for Education, allowing students access to unnecessary tools.

Who was affected

Students and their parents at HOLY MARY CATHOLIC SCHOOL were affected by the school's actions.

What the authority found

The authority ruled that the school did not comply with GDPR requirements for data protection and transparency.

Why this matters

This ruling emphasizes that educational institutions must take privacy seriously when using technology. Schools should conduct thorough assessments and inform families about data use.

GDPR Articles Cited

AI-verified

Art. 35(GDPR)
Art. 5(1)(a) GDPR
Art. 6(1) GDPR
View original scraped data
Art. 5(1) a) GDPR
Art. 6(1) GDPR
Art. 35(GDPR)

Original data from scraper before AI verification against source document.

Source verified 23 April 2026
verified correct
Spain enforcementAgencia Española de Protección de Datos actionsAll HOLY MARY CATHOLIC SCHOOL, S.L. actions
Full Legal Summary
Detailed

The Spanish DPA has imposed a fine of EUR 12,000 on the HOLY MARY CATHOLIC SCHOOL, S.L. The controller, an educational institute, used Google Workspace for Education within its school environment. While the use of the tool may be justifiable under the GDPR, the controller failed to implement it adequately. The controller was unable to ensure that pupils only had access to the tools necessary for study purposes. The controller also failed to adequately inform data subjects and their parents, and to carry out a sufficient DPIA. The original fine of EUR 20,000 was reduced to EUR 12,000 due to immediate payment and admission of responsibility by the controller.

Related Enforcement Actions (0)

No other enforcement actions found for HOLY MARY CATHOLIC SCHOOL, S.L. in ES

This is the only recorded action for this entity in this jurisdiction.

Details

Fine Date

1 March 2026

Authority

Agencia Española de Protección de Datos

Fine Amount

€12,000

Enforcement Tracker ID

ETid-1230

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. HOLY MARY CATHOLIC SCHOOL, S.L. - Spain (2026). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: