-
General regulations:
- [CAT | ES | EN | FR ] Charter of fundamental rights of the European Union (art. 7 and 8)
- [CAT | ES | EN ] Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
- [ ES | EN ] Regulation (EU) 2022/868 of the European Parliament an of the Council, of 30 May 2022, on European data governance and amending Regulation (EU) 2018/1724 (Data Governance Act)
Police and criminal justice sector:
- [ ES | EN ] Directive (EU) 2016/680 of the European Parliament and the Council, of 27 April 2016, on the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data, and repealing Council Framework Decision 2008/977/JHA
- [ ES | EN ] Directive (EU) 2016/681 of the European Parliament and of the Council, of 27 April 2016, on the use of passenger name record (PNR) data for the prevention, detection, investigation and prosecution of terrorist offences and serious crime
- [ ES | EN ] Council Decision (EU) 2016/920 of 20 May 2016 on the signing, on behalf of the European Union, of the Agreement between the United States of America and the European Union on the protection of personal information relating to the prevention, investigation, detection, and prosecution of criminal offences
Electronic communications:
- [ ES | EN | FR ] Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002, concerning the processing of personal data and the protection of privacy in the electronic communications sector
- [ ES | EN | FR ] Regulation (UE) 2021/1232 of the European Parliament and of the Council of 14 July 2021, on a temporary derogation from certain provisions of Directive 2002/58/EC as regards the use of technologies by providers of number-independent interpersonal communications services for the processing of personal and other data for the purpose of combating online child sexual abuse
- [ ES | EN ] Commission Regulation (EU) No 611/2013 of 24 June 2013 on the measures applicable to the notification of personal data breaches under Directive 2002/58/EC of the European Parliament and of the Council on privacy and electronic communications
- [ CAT | ES ] Directive 2006/24/EC of the European Parliament and of the Council of 15 March 2006, on the retention of data generated or processed in connection with the provision of publicy available electronic communications services or of public communications networks and amending Directive 2002/58/EC