As we mentioned in a previous post, on November 21, a law was passed in which political parties would be able to make use of our data. The objective was to bombard with information and propaganda based on the ideology of the citizen.
The Spanish Data Protection Agency (AEPD) published a report analyzing the processing of personal data that political parties can do with the new LOPD. The statement issued by the AEPD was as follows:
“This modification was introduced during the parliamentary procedure of the LOPD and, since the draft Law submitted by the Government was not found, it was not subject to a mandatory report by the Agency”
In case of non-compliance by political parties, they could be forced to pay sanctions of up to 20 million euros. These penalties are included in the General Data Protection Regulations.
The director of the data protection authority calls for personal and material reinforcements to deal with the claims made to the agency. The evolution suffered by the LOPD incorporates new improvements that help the user to be more protected.
The AEPD imposes ten guarantees for compliance with data protection regulations to guarantee transparency:
- Adopt technical and organizational measures
- Designate a data protection delegate
- Process a record of data processing activities
- Evaluation of the impact that data protection can have
- Consult the AEPD before doing a treatment
- Adopt rigorous security measures
- When the data is processed by a third party, it must offer the same security guarantees that are required of political parties.
- They must provide citizens with the information they possess about them
- Check that the data were obtained lawfully
- Adopt appropriate measures to protect the rights, freedoms of citizens