Data Regulation

Schrems, Facebook and Data Privacy

Why Schrems?  The EU’s trust in the processing of personal data seems to be shaken. With the famous case Maximillian Schrems v Facebook Ireland Limited pending before the Austrian Supreme Court (“Court“) for a while now, Maximillian Schrems requested the Court to refer four questions to the Court of Justice of the European Union (“CJEU“) concerning the lawful use of personal data of all Facebook users from the EU.   So, who is Maximilian Schrems? Maximillian Schrems is a law student from Austria and a personal data protection activist who has been extremely vocal about data protection before EU authorities. […]

Details
13 May 2021

TikTok May Have Gone Too Far in Child Data Collection

What do Facebook, WhatsApp and TikTok have in common?  Well, they are social media giants, with billions of users all around the world.  But there is something else that these platforms have in common that is worthy of attention.  Lately, they have all been “hunted down” by regulators over their data policies.  So, we wanted to take the time to say a few words on the TikTok case. What makes the TikTok case special?  As most of you already know, TikTok is a social media platform used to make short-form videos that last between 15 and 60 seconds.  The videos […]

Details
28 Apr 2021

What does the New Act on Archival Material and Archival Activity bring?

In addition to numerous novelties and changes in Serbian legislation, the beginning of this year was also marked by the legal regulation of archiving materials and similar documentation, which attracted significant attention.  The new Archival Material and Archival Activity Act (the “Act“) is not only an important step towards improving the protection of archival material and regulating archival activity but also towards developing awareness of the importance of preservation of archival material, since that helps “protect” the history of our country. Until recently Serbia did not have a specific act that would comprehensively regulate the issue of archival material and […]

Details
23 Nov 2020

Are Major High-Tech Companies “Skirting the Law” in Serbia Regarding Personal Data Protection?

Although it has been more than a year since the new Personal Data Protection Act (“Act”) entered into force in Serbia, some of its provisions are not yet fully applicable.  One clear-cut example is Article 44 of the Act, which requires foreign companies (therefore those who does not have a registered business seat in Serbia) to appoint a Personal Data Protection Representative for Serbia (“Representative”). Who is the Representative? This provision, (as well as the majority of the Act’s provisions), was adopted from Article 27 of the General Data Protection Regulation (“GDPR”) and refers to any personal data controller and […]

Details
05 Nov 2018

The First Major GDPR Case Is Underway!

Not so long ago, on May 25, 2018 the General Data Protection Regulation (GDPR) came into force. The GDPR has been a subject of great interest and discussion, even prior to its implementation, due to its application on entities all over the world – inside or outside the European Union (EU). Although the GDPR has, practically, changed the legal framework in relation to the rules on data protection, and introduced a whole set of new obligations while imposing massive fines for non-compliance, the real implications of the application of the GDPR are yet to be seen, especially on non-EU entities. […]

Details