UK DUAA right to complain enforces in -- days · 19 June 2026 EU AI Act high-risk enforces in -- days · 2 August 2026
OBEXGATE
Free AI Risk Assessment Does OBEXGATE apply to you?

Enforcement Intelligence

GDPR Enforcement Risk in Spain Public Sector and Education

Real enforcement patterns. Operational governance signals. Practical remediation paths.

Analyse your AI governance risk

Free AI Risk Assessment Informational Meeting

Enterprise-grade AI governance without the enterprise team. Português, Français, Deutsch, Español, and English. 89 Articles, 4 Continents, within your budget and expertise level. Runtime AI Governance. For a demo: hello@obexgate.com

Enforcement Summary

Total finesEUR 731K
Enforcement actions26
Largest fineEUR 500K
Most common violationInsufficient legal basis for data processing
Primary regulatorSpanish Data Protection Authority (aepd)
Risk signal70

Top Violations

Structured violation patterns are shown only when supplied in the enforcement dataset.

Insufficient legal basis for data processing

Count
10

Non-compliance with general data processing principles

Count
9

Insufficient fulfilment of data subjects rights

Count
3

Insufficient cooperation with supervisory authority

Count
2

Insufficient technical and organisational security measures

Count
1

Common Patterns

Operational patterns that repeat across enforcement records.

Real Examples

Examples are shown only when source-backed records are supplied.

Trade association

Regulator
Spanish Data Protection Authority (aepd)
Date
2025-04-15
Fine amount
EUR 500K
Source
Source
Governance lesson
Insufficient legal basis for data processing

Language school

Regulator
Spanish Data Protection Authority (aepd)
Date
2023-11-17
Fine amount
EUR 72K
Source
Source
Governance lesson
Non-compliance with general data processing principles

Private school

Regulator
Spanish Data Protection Authority (aepd)
Date
2025-06-20
Fine amount
EUR 24K
Source
Source
Governance lesson
Insufficient legal basis for data processing

Enforcement Pattern › Governance Control › Runtime Evidence

OBEXGATE Remediation Positioning

OBEXGATE turns enforcement patterns into operational controls and runtime evidence.

Enforcement Pattern Governance Control Runtime Evidence

Source and Update Positioning

Source datasetSpanish Data Protection Authority (AEPD)
Last updated2026-06-02

Language alternates

Related OBEXGATE links

Information contained is not medical advice, legal advice, or a guarantee of success. Regulatory requirements change and should be verified against current published guidance, legislation, and regulator materials.