Professional diseases
Article 6(1)(b) GDPR: processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
Article 6(1)(c) GDPR: processing is necessary for compliance with a legal obligation to which the controller is subject:
- Occupational Hazards Prevention Act.
Royal Decree 1299/2006, of 10 November, Social Security occupational diseases table
In certain cases, processing may be based on Article 6(1)(a) GDPR.
The legal basis in the case of special categories is Article 9(2)(b) GDPR: processing is necessary for the purposes of carrying out the obligations and exercising specific rights of the controller or of the data subject in the field of employment law.
(*) Foreigner identification number, passport number or residence card number
Security measures corresponding to Schedule A of UNE-EN/IEC 27001 - Information Security Management Systems.
Article 6 GDPR, on the legal basis for processing at: - Ministry of Employment, through the CEPROSS application
- External entities responsible for managing the MATEPS occupational accidents
- Work inspection.
- Occupational and health authority
- Courts