Contact
Public sector entities have the obligation to publish, in electronic format, an up-to-date inventory of the processing they carry out. For example, you can see the APDCAT inventory here (online automatic translation done by a third party).
If you have exercised before the controller any of the rights you have that allow you to control your data (access, rectification, erasure, objection, restriction of processing and portability) and you have not received a response or the response has been partially or fully negative, you can file a complaint with the Catalan Data Protection Authority.
https://apdcat.gencat.cat/ca/seu_electronica/tramits/reclamacio/
If other rights have been infringed or there have been actions contrary to data protection regulations, you can report this to the Catalan Data Protection Authority.
https://apdcat.gencat.cat/ca/seu_electronica/tramits/denuncia/
Anyone who has suffered material or immaterial damages as a result of a breach of data protection regulations has the right to receive compensation from the controller or processor.
If the party responsible for the damage is a public administration, the latter shall be subject to the material liability envisaged in Law 40/2015 of 1 October on the legal regime of the public sector.
If the party responsible for the damage is a private entity, liability may be demanded before courts with ordinary jurisdiction, i.e. before a civil court.