Data Protection

New EU Data Protection Rules – Should Serbian Companies Be Worried?

The new EU data protection framework, set to come into force on May 24, 2018 in the form of the General Data Protection Regulation (GDPR) is directly binding in all Member States, however its scope goes beyond the boundaries of the EU – affecting foreign companies that deal with personal data of EU citizens.  National Data Protection authorities of EU member states already have certain powers over foreign enterprises, as seen in the landmark Costeja case (C‑131/12) where Google Inc., an American company, was forced to protect a Spanish national’s right to the respect of his private life.  The GDPR […]

Details
26 Apr, 2017

New Data Protection Enforcement: Is Your Business Ready for It?

Businesses beware – imposing fines of up to 10% of the company’s Serbia-originated annual income in respect to enforcing Data Protection compliance will be one of the measures available to the Commissioner1  as of June 1, 2017, when the new Administrative Procedure Act is set to come into force. The changes to the Administrative Enforcement Procedure are going to allow this Data Protection Authority to enforce its decisions by fining companies in an amount considerably higher than the maximum enforcement-related fine of RSD 200,000.00 (approx. EUR 1,600.00) allowed by the current statute. This means that all companies will, if ordered […]

Details
26 Apr, 2016

EU Data Protection Reform Adopted

As announced by one of our previous publications, the new rules on personal data protection were adopted at the European Union (“EU”) level on April 14, 2016.  Referred to as “the culmination of over four years of hard work” in the joint statement of the European Commission (“Commission”) First Vice-President, Vice-President in charge of the Digital Single Market and Commissioner for Justice, Consumers and Gender Equality, the new policy aims to extend the citizens’ right to personal data protection, enhance legal certainty for businesses by unifying the regulation within the EU and allow for improved cooperation of Member States’ criminal […]

Details
24 Dec, 2015

EU Announces Sweeping Data Protection Reform

In a trilogue meeting held on 15 December 2015 the European Parliament, the European Commission and the European Council reached a political agreement to reform EU Data Protection policy.  The new policy has been in the works since 2011, but only now have the European Council and the European Parliament managed to reach an agreement on key issues.  The final text is expected to be formally adopted in early 2016, and its rules applicable two years thereafter.  During this period, 28 member states will be required to amend their existing data protection legislation, or to pass new legislation, whereas the […]

Details