Medical services for employees


Management of employee health surveillance.

Legal basis

  • Consent of the data subject
  • Compliance with a legal obligation to which the controller is subject pursuant to Law 31/1995, of 8 November, on Labor Risk Prevention.

Categories of data subjects

  • Employees
  • Students/Trainees

Categories of personal data

  • Identification data: Name, surname, ID number, family, social security number, electronic personal register number, residence card
  • Contact data: Phone number, e-mail, postal address
  • Professional and academic data: Professional position
  • Personal characteristics data: Nationality, age, image, date and place of birth
  • Special categories of data: Health and race

Retention period

Personal data shall be retained for the time necessary to fulfil the purpose for which they were collected and to allocate any liability arising from said purpose and from the processing of the data.

Security measures

Security measures provided for in Annex II of Royal Decree 3/2020, of 8 January, which regulates the National Security Scheme in the field of Electronic Administration.


  • External medical services providers
  • Social Security institutions
  • Courts of Justice
  • Other competent public authorities

International transfer of data


Data controller

Banco de España
NIF: Q2802472G

Data Protection Officer

Division of Governance and Transparency
Contact formOpens in a new window

Exercise of rights and complaints

You can check whether it is mandatory for you to provide your personal data, as well as the procedure to exercise your rights, withdraw your consent if applicable and lodge a complaint before the Data Protection Officer or the Spanish Data Protection Agency at our Privacy Policy