PAe - the new law of personal data protection and guarantee of digital rights
the accesskey _ mod _ content

The new law of personal data protection and guarantee of digital rights

12 December 2018

Published in the BOE of 6 December, the Organic Law 3/2018 responds to the need for a standard for adaptation of Spanish legislation to the General regulation of data protection and the objective of providing legal certainty.

The Act 3/2018, 5 December, of protection of personal data and guarantee of digital rights (Opens in new window) pursues adapt the Spanish legal system to Reglamento (UE) 2016/679 del Parlamento Europeo y el Consejo, de 27 de abril de 2016, relativo a la protección de las personas físicas en lo que respecta al tratamiento de sus datos personales y a la libre circulación de estos datos (Opens in new window) , and completing its provisions; and ensure the digital rights of citizenship under the terms established in Article 18.4 of the constitution.

This Act consists of ninety-seven articles structured in ten titles, twenty-two additional provisions, six transitional provisions, a derogation provision and sixteen final provisions, and therefore it is an extensive text.

Desde el punto de la administración digital, cabe destacar el Título X que recoge los derechos digitales y libertades del entorno de Internet tales como la neutralidad de la Red y el acceso universal o los derechos a la seguridad y educación digital ,así como los derechos al olvido, a la portabilidad y al testamento digital, junto con el derecho a la desconexión digital en el marco del derecho a la intimidad en el uso de dispositivos digitales en el ámbito laboral y la protección de los menores en Internet; más la garantía de la libertad de expresión y el derecho a la aclaración de informaciones en medios de comunicación digitales.

We highlight below, in particular, two issues. First, the First Additional Provision that concerning the safety measures in the Public sector provides that the National security Scheme will include actions to be implemented in case of treatment of personal data; that those responsible listed in Article 77.1 applied to treatment of personal data security measures that correspond to those provided by the quoted National security scheme ; and that when a third party to perform a service under concession, directs management or contract, security measures will match those of the public administration of origin and conform to the national security Scheme.

En segundo lugar, la disposición final duodécima modifica los apartados 2 y 3 del artículo 28 de la Law 39/2015, 1 October, Common Administrative procedure of public administrations (Opens in new window) with the interesting nuance that paragraph 2 begins with a formulation in terms of “ individuals have the right not to provide documents that are already in power of the officiating Administration … ”.

  • Citizen
  • Open government
General access point
General access point