Skip to main content
Information for the interested party on data protection

5.83. Visits and staff from the AEAT and service companies

Description of the activity

Maintaining Security at the AEAT headquarters by controlling access to the AEAT buildings.

Purpose

To guarantee the safety of people, goods and facilities.

Registration and control of visits.

Legitimation

Access control to the AEAT buildings is carried out following certain security protocols that culminate with the authorization of access to the building by personnel not belonging to it.

In this way, all personnel not belonging to a building are subject to various identity checks and radiological inspections of both personnel (carried out using metal detectors) and the belongings they carry and intend to bring into the building (carried out using X-ray inspection equipment).

Taxpayers who access public service areas are only subject to personal and personal checks.

In any case, data collection from a person entering a building is done for security reasons. The data collected is the minimum necessary to correctly identify the person who enters the building, whether for the first time or occasionally.

This is based on article 32 “Security guards and their specialty” of Law 5/2014 on Private Security, which establishes:

"1. Security guards will perform the following functions:

a) To exercise surveillance and protection of property, establishments, places and events, both private and public, as well as the protection of persons who may be present therein, carrying out the necessary checks, searches and precautions to fulfil its mission.

b) Carry out identity checks, checks on personal items, packages, merchandise or vehicles, including the interior of these, at the entrance or inside buildings or properties where they provide services, without, in any case, being able to retain personal documentation, but to prevent access to said buildings or properties. The refusal to show identification or to allow the inspection of personal objects, packages, merchandise or the vehicle will empower us to prevent individuals from accessing or ordering them to abandon the property or building that is the object of their protection.”

According to this, and in accordance with the provisions of article 6.1.f of the Regulation, the consent of the interested parties is not necessary, since art. 51 of Law 4/2014 recognizes the right to "provide themselves with private security measures aimed at the protection of persons and property and ensuring the normal development of their personal or business activities."

The reason for access is not distinguished since the generic concept is the access to the building by a person who is not registered as a regular user and, therefore, to authorize their access, the affiliation of the person who is going to access must be known in a reliable and undoubted manner and the veracity of the reason for their access must be verified.

Interested parties

  • Visitors, staff serving the AEAT and any other employee, public or private, who performs their duties in buildings of the AEAT

Details

  •  NIF / DNI / NIE /PASSPORT, Name and Surname
  • Date and time of entry and exit, person to visit, reason for the visit
  • Vehicle data, if applicable
  • Biometric data (fingerprint), if applicable
  • Information regarding notifications or court rulings

Treatments

  • Collection
  • Record
  • Storage
  • Structuring
  • Modification
  • Update
  • Copy
  • Analysis
  • Enquiry
  • Extraction
  • Promotion
  • Interconnection
  • Limitation
  • Suppression
  • Destruction
  • Other

Recipients

Not foreseen

Expected deadlines for deletion

The data collected will be deleted within a maximum period of one month.

International transfers

Not foreseen

Profiling

Does not apply

Technical/organizational measures

All data processed has been evaluated through a risk analysis, obtaining the list of technical and organizational measures to be applied.

These measures have been applied in accordance with the approved adaptation plan.