Protection of personal data in Russia and the EU / SPIBA discussion
Regulators and courts in different parts of the world are paying ever-increasing attention to whether companies are observing the rules when they process personal data.
More and more frequently, the legislation of different countries is being supplemented by provisions laying claim to extra-territorial effect, as clearly exemplified by the General Data Protection Regulation (GDPR) adopted in the European Union. A breach of the GDPR can trigger colossal fines for companies not only in the EU but worldwide.
On 17 October at Mertens House in Saint Petersburg, SPIBA’s Legal Committee organized a discussion devoted to the protection of personal data in Russia and the EU.
Aleksei Gribanov, an Associate in the Intellectual Property and Information Technologies Practice at Borenius Russia, told those present about the fundamentals of companies’ obligations under the GDPR.