Purpose
- Processing of requests to exercise the rights provided for in Articles 15 to 22 of the General Data Protection Regulation
- Processing of data protection queries
- Processing of claims submitted to the Data Protection Officer (DPO) and before the Spanish data protection supervisor (AEPD)
Legal basis
Compliance with a legal obligation to which the controller is subject:
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC
- Organic Law 3/2018, of 5 December, on personal data protection and guarantee of digital rights
Categories of data subjects
- Applicants/petitioners
- Claimants
Categories of personal data
- Identification data: Name, surname, ID number, signature
- Contact data: Phone number, e-mail, postal address
- Other: Representation or power of attorney details
Retention period
Personal data shall be retained for the time necessary to fulfil the purpose for which they were collected and to allocate any liability arising from said purpose and from the processing of the data.
Security measures
In accordance with the First Additional Provision of the Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights, the security measures implemented at Banco de España correspond to those provided for in the National Security Scheme.
Recipients
- Courts of Justice
- Other competent public authorities (Spanish Data Protection Agency)
International transfer of data
N/A
Data controller
Banco de España
NIF: Q2802472G
Data Protection Officer
Exercise of rights and complaints
You can check whether it is mandatory for you to provide your personal data, as well as the procedure to exercise your rights, withdraw your consent if applicable and lodge a complaint before the Data Protection Officer or the Spanish Data Protection Agency at our Privacy Policy