Instructions and recommendations

The APDCAT draws up instructions, recommendations and other provisions to guide the correct application of data protection regulations. The instructions are mandatory, while the recommendations are non-binding.


DPD

Recommendation 2/2023 of the Catalan Data Protection Authority regarding the appointment of a Data Protection Officer

AI technology

Recommendation 1/2023 of the Catalan Data Protection Authority regarding the use of ChatGPT and its impact on personal data protection

DNI

Guidance for the provisional application of the seventh additional provision of the LOPDgDD (publication of the National Identity Document number)

Mitjans electrònics

Recommendation 1/2008 on the dissemination of information containing personal data via the Internet

Història clínica

Interpretive criteria on the Application of the regulatory standards and processing of claims regarding individuals' access to the traceability of their medical records

Multes

Resolution publishing Guidelines 04/2022 of the European Data Protection Board on the calculation of administrative fines under the GDPR

Imatge de recurs

List of types of processing operations that must undergo a Data Protection Impact Assessment (DPIA)

Seu electrònica

Resolution of June 26, 2015, establishing the electronic headquarters and electronic registry of the APDCAT

Segell

Resolution of the director of the Catalan Data Protection Authority on the advertising of the electronic seal system used by the APDCAT

Last update: 19.02.2026