Government Resolution No
Posted: Sat Feb 08, 2025 7:09 am
Valery Pushchin noted that the proposal of experts representing business to narrow the scope of FSB Order No. 378 (on the mandatory use of technical measures to protect personal data) to state, municipal and other budgetary personal data operators is causing stiff resistance from regulators: they want to have legal grounds for holding any business entities liable, regardless of their form of ownership and size, simply because they have chosen “inappropriate”, uncertified means of protecting personal data.
146 of 13.02.2019 "Rules for the Organization and Implementation of State Control and Supervision over the Processing of Personal Data" expanded the powers of Roskomnadzor to access personal data ecuador mobile database systems (PDNIS) in the viewing and information retrieval mode during on-site inspections to assess the legality of personal data processing activities, and to involve the prosecutor's office in the event of obstruction of such inspections. Control over personal data operators without interacting with them was introduced through systematic monitoring of their compliance with requirements when posting information on the Internet. Based on the results of observations, the operator may be required to eliminate the violation or provide an explanation; if there is no response to the regulator's actions, the latter may draw up an administrative protocol.
Another evidence of the tightening of regulation of the handling of personal data is the draft amendments to the Code of Administrative Offenses of the Russian Federation, presented in the summer of 2018, which provide for fines for the lack of proper control by personal data operators over the actions of personal data processors who are entrusted with this processing.
According to Valery Pushchin, in 2018, the first inspection reports appeared, conducted by the FSB and FSTEC in private commercial organizations to determine their compliance with technical measures to protect information, including those applicable to personal data. Fortunately, the inspections were not widespread, and experts have not yet assessed their validity or the possibility of appealing them.
146 of 13.02.2019 "Rules for the Organization and Implementation of State Control and Supervision over the Processing of Personal Data" expanded the powers of Roskomnadzor to access personal data ecuador mobile database systems (PDNIS) in the viewing and information retrieval mode during on-site inspections to assess the legality of personal data processing activities, and to involve the prosecutor's office in the event of obstruction of such inspections. Control over personal data operators without interacting with them was introduced through systematic monitoring of their compliance with requirements when posting information on the Internet. Based on the results of observations, the operator may be required to eliminate the violation or provide an explanation; if there is no response to the regulator's actions, the latter may draw up an administrative protocol.
Another evidence of the tightening of regulation of the handling of personal data is the draft amendments to the Code of Administrative Offenses of the Russian Federation, presented in the summer of 2018, which provide for fines for the lack of proper control by personal data operators over the actions of personal data processors who are entrusted with this processing.
According to Valery Pushchin, in 2018, the first inspection reports appeared, conducted by the FSB and FSTEC in private commercial organizations to determine their compliance with technical measures to protect information, including those applicable to personal data. Fortunately, the inspections were not widespread, and experts have not yet assessed their validity or the possibility of appealing them.