With the entry into force of the European Data Protection Regulation (EU2016 / 679) and the modification of Spanish legislation at the end of 2018 (Organic Law 3/2018, of December 5), it is mandatory for any company that manages personal data Comply with the established prescriptions. In the event of non-compliance, the Spanish Data Protection Agency (AEPD), which actively monitors compliance with said law, can impose large penalties.
For this reason, it is essential to manage this type of information in accordance with regulations to convey a good image, fulfill the ethical duty to protect them and avoid problems derived from possible complaints. The only way to achieve this goal is to create implementation plans and work methodologies that are consistent with detailed and comprehensive analyzes that detect vulnerabilities and evaluate the impact that our data processing will have on those who have submitted them to us. It is essential and essential that these works are totally personalized with respect to our company and avoid general solutions that can cause serious problems. LOPD is a very broad regulation, but it is not very complex to adapt to it if you have the advice of experienced professionals.
LOPDGDD and LSSICE
Useful links to laws and official organisms