Unknown – €600 Fine (Spain, 2025)

€600Agencia Española de Protección de Datos15 April 2025Spain
reduced
Fine

General GDPR enforcement action

This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.

The Spanish DPA imposed a fine on an unknown data controller. The controller stored full copies of personal IDs for verification purposes. In this case, storing all the information found on an ID was unnecessary and infringed upon the principle of data minimization. The original fine of EUR 1,000 was reduced to EUR 600 due to immediate payment and admission of responsibility by the controller.

GDPR Articles Cited

Art. 5(1)(c) GDPR
Spain enforcementAgencia Española de Protección de Datos actionsAll Unknown actions
Full Legal Summary

The Spanish DPA imposed a fine on an unknown data controller. The controller stored full copies of personal IDs for verification purposes. In this case, storing all the information found on an ID was unnecessary and infringed upon the principle of data minimization. The original fine of EUR 1,000 was reduced to EUR 600 due to immediate payment and admission of responsibility by the controller.

Related Enforcement Actions (5)

Other enforcement actions involving Unknown in ES

Fine
Dec 2020· Agencia Española de Protección de Datos

The Spanish DPA (AEPD) imposed a fine of 10,000 EUR on a company for violating Art. 5 GDPR. The company sent an e-mail to a third party with the dismi...

€10K
Fine
Mar 2021· Agencia Española de Protección de Datos

The Spanish DPA (AEPD) imposed a fine of EUR 9,000 on a website operator. The controller had published photos of the data subject on its website witho...

€9K
Fine
Jul 2021· Agencia Española de Protección de Datos

The Spanish DPA (AEPD) has imposed a fine of EUR 1,000 on a company. The controller had used the personal data of a third party in order to obtain a m...

€1K
Fine
Sept 2021· Agencia Española de Protección de Datos

The Spanish DPA (AEPD) has imposed a fine of EUR 3,000 on a company. The company had requested various personal data from customers for appointment bo...

€3K
Fine
Jun 2023· Agencia Española de Protección de Datos

The Spanish DPA has imposed a fine of EUR 2,000 on a controller for failing to provide data subjects with sufficient information to exercise their rig...

€2K
Current
Apr 2025

Fine

€600

Details

Fine Date

15 April 2025

Authority

Agencia Española de Protección de Datos

Fine Amount

€600

Enforcement Tracker ID

ETid-2623

Sources

About this data

Data: CMS GDPR Enforcement Tracker
Licensed under CC BY-NC-SA 4.0
AI-verified and classified

Cite as: Cookie Fines. Unknown - Spain (2025). Retrieved from cookiefines.eu

Report Inaccuracy

Last updated: