Personal data protection is a fundamental right, recognised by the Spanish Constitution, which grants the right holder the faculty to manage his/her data. SMEs, as agents that handle and process personal data, are obliged to make sure that the fundamental right to protection of personal data of individuals is respected.

In the current context—characterised by the increasing awareness of the population regarding the protection of personal data, a Spanish business network made up of over 99% of small enterprises and a new legal framework (since the entry into force of the regulations implementing the Data Protection Act in April 2008)—, it is necessary a study offering a diagnosis of the current situation of the Spanish SMEs regarding the knowledge and adaptation of regulations on personal data protection. The study pays special attention to the aspects of the new regulations that affect non-automated filing systems.

It also offers a perspective on the level of compliance with regulations by SMEs, identifying the obstacles encountered by small enterprises in the process of adaptation, as well as the benefits for business. Finally, it gives recommendations to the administration and private sector, with the aim of increasing the compliance rate and eliminating or minimising the possible barriers faced by SMEs.

Currently, the complete report and partial report of the study are only available in Spanish. We apologize for the inconvenience.