Data Protection: What Do Operators Need To Know in 2024?
Main Page

Data Protection: What Do Operators Need To Know in 2024?

24 July 2024

****Dear Ladies and Gentlemen!****

The authorities in Russia and the rest of the world have recently been paying more and more attention to data protection issues. This is evidenced by the numerous laws adopted in this regard, the increased activities of the Russian Federal Service for Supervision of Communications, Information Technology and Mass Media (Roskomnadzor), despite a moratorium on scheduled inspections, and the serious amendments that are expected to be introduced to broaden liability for violations of data protection laws.

For example, in a report that Roskomnadzor issued for 20231,we can see that a total of RUB 266,324,329 in administrative fines were imposed last year compared with RUB 109,579,160 in 20222. This means that, despite the moratorium on scheduled inspections, Roskomnadzor more than doubled its efforts to hold individuals accountable for violations of legislation on the protection of personal data in 2023 compared with the previous period.

Russian data protection laws impose numerous requirements on operators, and companies must expend enormous resources and be highly vigilant in the processing of personal data to comply with them. As a result, internal teams and DPOs often have questions about which requirements are most critical and pose the greatest risk to business. The list of requirements may vary depending on the size of the business and the company’s industry, business model, and other factors, however, there are issues that will be crucial for most operators.

In this brochure, we have highlighted such issues for the current period and invite you to learn more about them:

  • The importance of written consent;

  • Inspections by Roskomnadzor;

  • Requirements for online resources;

  • The "extraterritorial" principle of the application of the personal data law;

  • Localization trend;

  • Cross-border data transfer;

  • Anonymous data;

  • Personal data breaches;

  • Notification of a personal data breach;

  • Personal liability of management and imposition of criminal liability.

You can download the brochure here.

gosdoklad_za_2023_ 03042024.pdf (rkn.gov.ru)

2022_RKN_goskontrol.pdf

Download the text as a PDF file
Download

We hope that the information provided herein will be useful for you.

If any of your colleagues would also like to receive our newsletters, please send them the link to complete a Subscription Form .
Learn more about our practices:
Data Protection and Cybersecurity


Note: please be aware that all information provided in this letter is based on an analysis of publicly available information as well as our understanding and interpretation of legislation and law enforcement practices. Neither ALRUD Law Firm nor the authors of this letter bear any liability for the consequences of any decisions made in reliance upon this information.

If you have any questions, please, do not hesitate to contact us.

Anastasia Petrova
Of Counsel
Maria Ostashenko
Partner

Sincerely,
ALRUD Law Firm

Lesnaya st., 7, 12th fl., Moscow, Russia, 125196
Т: +7 495 234 96 92, Т: +7 495 926 16 48, info@alrud.com
alrud.com
Your message
has beem successfully sent!
Continue
You have successfully subscribed!
Continue
We use cookies to offer better performance of the website and fulfill some other purposes specified in the Privacy Policy. By way of ticking the box you provide your consent to use of cookies. Otherwise, we will only use technical cookies, which are necessary for proper functioning of the website.
Accept