Processing of personal data relating to the health of the data subject in a pandemic situation
This study offers a systematic, exhaustive and updated investigation of the declaration of the state of alarm and the processing of personal data relating to the health of citizens affected and/or potentially affected by the exceptional situation resulting from COVID-19. Specifically, it analyses the distinction between the state of alarm and the states of exception and siege and the possible effect on the fundamental right to the protection of personal data in exceptional health crisis situations and the effects that this declaration may have on the applicable regulations, issued, at a Community level. Next, and taking into consideration all the general and sectorial regulations applicable to data protection and health, we proceed to the analysis of the legitimate bases and the exceptions that, applicable to situations of health emergency such as the present one, enable the processing, taking into account the nature of the person who intervenes as the controller, making special emphasis on the public interest pursued by the Public Administrations and on the vital interest of the interested party.