Article 20.1 of the Organic Law 15/1999 of 13 December on the Protection of Personal Data and Articles 52 to 54 of its Implementing Regulation, approved by Royal Decree 1720/2007 of 21 December that the creation, modification or deletion of automated files of the Public Administrations may be made only by means of a general provision published in the "Official Gazette of the State" or "Official Journal".

By the Order of 27 July 1994, the personal data files of the State Tax Administration Agency were regulated, containing in two annexes the relationship and description of the different automated files; The Order was partially amended by the Order of 4 August 1995.

The Order of 21 December 1999, subsequently, came to replace the Annexes of the Order of 27 July 1994, and was amended by Order HAC/2632/2002 of 16 October 2002 amending and approving the files from the State Tax Administration Agency, and whose unique additional provision entitles its Director General to create, modify or delete files owned by it.

Since the publication of the Order of 21 December, new circumstances have arisen which require the additional collection of new data, therefore the modification of any of the files listed in Annex II of the itself for its adequacy to the current situation.

By virtue of that authorization, I have:

First.

The file of Annex II of the Order of 21 December 1999 is amended, approving the list of automated files of personal data of the State Tax Administration Agency, number 6 "Security".

Second.

This Resolution will enter into force on the day following its publication in the "Official State Gazette".

Madrid, July 2, 2015. -Director General of the State Tax Administration Agency, Santiago Menéndez Menéndez.

ANNEX

Non-Tax Files

(Annex II of the Order of 21 December 1999)

6. Security.

The purpose of the file and intended uses for it:

Maintenance of Security at the headquarters of the State Administration of Tax Administration (AEAT) through the control of access to the buildings of the AEAT.

Persons or collectives required to supply the data:

Visitors, staff at the service of the AEAT and any other employee, public or private, who perform their duties on the buildings of the AEAT.

People referred to by the data:

Visitors, staff at the service of the AEAT and any other employee, public or private, who perform their duties on the buildings of the AEAT.

Data Collection Procedure:

For visitors, by application for National Identity Document or Tax Identification Number, Foreign Identity Number or Passport, and Personal Data. For the rest, by using the access control card.

Basic file structure and treatment system:

DNI/NIF/NIE or passport, address, date, time of entry and exit, person to visit, reason for the visit and data of the vehicle, if any.

Automated data system.

Authority of the Agency responsible for the File:

EAAT's Special Economic Management/Delegations Service.

Service or Unit to which the rights of access, rectification, cancellation and opposition may be exercised:

Deputy Director of the Internal Regime of the Economic Management/Regional Dependencies of Human Resources and Economic Management of the Special Delegations of the AEAT.

Level of security measures:

Basic level.