The General Data Protection Regulation in the Spanish System: The Data Protection Officer

Robert Rubió, Head of Legal, Union for the Mediterranean, Spain

The new General Data Protection Regulation (GDPR) is set to replace the Directive 95/46/EC, effective May 25, 2018. In accordance with the principle of primacy of the EU law, the GDPR shall be directly applicable in each Member State and will lead to a greater degree of data protection harmonization across EU Members. The GDPR contains a number of new protections for EU data subjects and obligations, among them, a significant impact over national systems, as it requires in certain cases the mandatory designation of a Data Protection Officer (DPO). Thus, emphasis is put on the importance of the new position of DPO and consequences over the Spanish national system.

Read full paper Subscribe to the IICJ
Spain Data Protection Government October 2017 Vol.10, No. 41, Autumn 2017

Robert Rubió


IP & IT Master at ESADE and Public Management Master at Barcelona University. Mr Rubió is Head of the Legal Service of the Union for the Mediterranean, where he also performs the duties of DPO. Certified DPO at European level, Mr Rubió started his career as IT lawyer before joining the public service as legal advisor. Member of the Barcelona Bar Association, where he is an active member of the International Law and Information Technology Law sections.

Union for the Mediterranean


The Union for the Mediterranean (UfM) is an intergovernmental organisation bringing together the 28 European Union Member States and 15 countries from the Southern and Eastern shores of the Mediterranean. It provides a unique forum to enhance regional cooperation and dialogue in the Euro-Mediterranean region.

Spain Data Protection Government October 2017 Vol.10, No. 41, Autumn 2017

© International In-House Counsel Journal. ISSN 1754-0607. All rights reserved. Registered in England Company Number: 6187841. VAT Registration Number: 946 7381 82. | Terms & Conditions .