Innovation and Technology

Última revisión

In order to promote and disseminate knowledge about risk management for the rights and freedoms of natural persons, the AEPD (Spanish Data Protection Authority) develops resources and tools to promote compliance with the RGPD, focusing attention on supporting SMEs and entrepreneurs.

Breaking news regarding accountability

 

Basic tools for accountability compliance

The AEPD has developed tools and help material to assist with compliance with general data protection regulation for small businesses, entrepreneurs and developers, and other types of controllers. This section lists those tools that are common to all types of processings. In the section "Guides, reports and technical notes" you can find specific material that extends their scope to specific treatments, technologies or controllers.

In any case, controllers and processors should not forget to verify that they comply with all the requirements and obligations that guarantee compliance with GDPR and national rules on data protection.

Risk management

The following resources support the obligation to carry out a risk analysis of personal data processings:

 

Data Privacy Impact Assessment

The following resources support the obligation to carry out a data privacy impact assessment of personal data processings:


Data Protection by Design and by Default

The following resources support the obligation to take into account, from the initial stages of definition and analysis of the processing, appropriate technical and organisational measures for ensuring, by design and by default, data protection principles implementation:

 

Personal Data Breach Management

The following resources support the obligation to implement incident recording and notification mechanisms in order to properly manage any possible security breache that may arise during personal data processing.

 

Application sectors and technologies

In order to respond to sectors of activity or technologies that incorporate singularities in data processing, referenced is made below to resources of interest, both national and international, that can serve as support to comply with the principle of accountability. At this time, published materials and resources cover the following areas:

 

Anonimity

Guidelines and technical surveys

International recommendations and guidelines

 

Artificial Inteligence and automated decisions

Guidelines and technical surveys

International recommendations and guidelines

 

Big data

International recommendations and guidelines

 

Biometrics

Guidelines and technical surveys

International recommendations and guidelines

 

Blockchain

Posts 

 

Cloud computing

International recommendations and guidelines

 

Covid-19 Pandemic

Guidelines and technical surveys

Posts

International recommendations and guidelines

 

Data protection by design and by default

Guidelines and technical surveys

Posts

International recommendations and guidelines

 

Encryption and privacy 

Posts

International recommendations and guidelines

 

Governance and data protection policies

Posts

International recommendations and guidelines

 

Internet and mobile systems

Guidelines and technical surveys

Posts

 

Internet of Things (IoT) and Connected Systems

Guidelines and technical surveys

Posts

International recommendations and guidelines

 

Personal data breach and security

Guidelines and technical surveys

Tools

Templates and forms

Posts

International recommendations and guidelines

 

Public Administrations

Guidelines and technical surveys

Templates and forms

International recommendations and guidelines

 

Risk management 

Guidelines and technical surveys

Tools

Templates and forms

Posts

International recommendations and guidelines

 

Telecommuting

Guidelines and technical surveys

Posts

International recommendations and guidelines