Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 governs the protection of natural persons with regard to the processing of personal data and the free movement of such data (GDPR).
Adif processing activity registry
In accordance with article 31.2 of Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights (LOPD), Adif, in its capacity as Responsible party, or where appropriate those in charge of the processing, and within the proactive responsibility measures that we are implementing, we publish on our website the inventory of the personal data processing activities that we carry out, identifying, among other information, who processes the data, for what purpose and what legal basis legitimizes the processing.
Rights of data subjects
Request to exercise rights
The affected party will directly exercise the rights of access, opposition, rectification, deletion and limitation of their personal data against the person responsible for the file through the corresponding application forms.
Such requests will be available in all departments or addresses where rights can be exercised, as well as at the following addresses: Adif website, "About Adif" section, "Transparency" section.
Right to information
Adif, as the party responsible for processing personal data, shall adopt all the technical and organisational means required to ensure the safety of all personal data provided, avoiding any altering, loss and unauthorised processing of, or access to said data. ADIF shall process these data in accordance with the conditions specified in this section and pursuant to that which is set forth in the specific conditions of the service in question.
You may exercise these rights by sending a written request to the "Data Controller", whose contact details you will find in the section "Who is responsible for processing your personal data?". If you wish to clarify any aspect related to the processing of your data, you may contact our Data Protection Officer at the following email address: email@example.com
If you are not satisfied with the response from ADIF regarding the exercise of your rights, you may file a complaint with the Spanish Data Protection Agency (www.agpd.es) or with any other supervisory authority for data protection in the European Union.