Spain: Spanish Data Protection Agency imposed a total fine of EUR 950'000 on Yoti for violating General Data Protection Regulation

Spanish Data Protection Agency imposed a total fine of EUR 950'000 on Yoti for violating General Data Protection Regulation

On 10 March 2026, the Spanish Data Protection Agency (AEPD) fined Yoti EUR 950’000 following an investigation into its role as an intermediary in identity and age-verification processes. The fine includes EUR 500’000 for processing special category …

Scope

Policy Area

Data governance

Policy Instrument

Data protection regulation

Regulated Economic Activity

software provider: other software

Implementation Level

national

Government Branch

executive

Government Body

data protection authority

Complete timeline of this policy change

Hide details

2023-12-12

under deliberation

On 12 December 2023, the Spanish Data Protection Agency (AEPD) opened an inquiry into Yoti regardin…

2026-03-10

in force

On 10 March 2026, the Spanish Data Protection Agency (AEPD) fined Yoti EUR 950’000 following an inv…

Description

Spanish Data Protection Agency imposed a total fine of EUR 950'000 on Yoti for violating General Data Protection Regulation

Scope

Complete timeline of this policy change