The document summarizes new Russian laws regarding the processing and storage of personal data of Russian citizens. Key points include:
- From January 1, 2015, all personal data of Russian citizens must be stored on databases located in Russia, with some exceptions.
- The law broadly defines personal data in a manner similar to the EU's definition. Personal data includes any information that can directly or indirectly identify an individual.
- Companies will need to notify authorities of the location of databases storing personal data and could face fines or blocking of websites for non-compliance.
- There is debate around whether some personal data can still be stored abroad if it is also stored in Russia, or if all personal data of Russian citizens
Data Localisation Legislation - Dansk Industri - December 2014DIITEK
Slides from Data Localization and Hybrid Cloud meeting, December 3, 2014, Industriens Hus, Copenhagen.
http://itek.di.dk/Arrangementer/Pages/DataLocalizationandHybridCloud.aspx
Accountor together with Vineyard organized a business breakfast on the theme: “NEW PERSONAL DATA LEGISLATION HAS COME INTO FORCE IN RUSSIA: WHAT ARE THE PRACTICAL IMPLICATIONS FOR FOREIGN COMPANIES?” in Helsinki on 15th of October.
Data Localisation Legislation - Dansk Industri - December 2014DIITEK
Slides from Data Localization and Hybrid Cloud meeting, December 3, 2014, Industriens Hus, Copenhagen.
http://itek.di.dk/Arrangementer/Pages/DataLocalizationandHybridCloud.aspx
Accountor together with Vineyard organized a business breakfast on the theme: “NEW PERSONAL DATA LEGISLATION HAS COME INTO FORCE IN RUSSIA: WHAT ARE THE PRACTICAL IMPLICATIONS FOR FOREIGN COMPANIES?” in Helsinki on 15th of October.
Bulletin - US-EU Data Privacy Safe Harbor Program InvalidatedCohenGrigsby
On October 6, 2015, the European Court of Justice ("ECJ") invalidated the safe harbor program negotiated between the United States Department of Commerce and the European Commission pursuant to which safe harbor-registered United States companies have processed personal data transferred from the EU within the United States since 2000 (the "Safe Harbor").
Overview of the Egyptian Personal Data Protection LawFatmaAkram2
Egypt has recently enacted the first Personal Data Protection Law (PDPL), which has been published in the Official Gazette on 15 July 2020 and has entered into force on 16 October 2020. The PDPL reflects many of the requirements of the EU’s General Data Protection Regulation (GDPR). The Executive Regulations of the PDPL shall be issued within six (6) months from the entry into force of the PDPL. Organizations shall comply with the provisions of the PDPL and its Executive Regulations within a grace period of one (1) year from the issuance of the Executive Regulations.
The PDPL covers almost all aspects of personal data protection stated under the GDPR. In this presentation, you will find a summary of the important data protection provisions stipulated under the PDPL, and the similarities and differences between the GDPR and the PDPL.
Breve sintesi della "Personal Information Protection Law" cineseEdoardo Ferraro
Breve sintesi sui punti essenziali della legge cinese in tema di protezione dei dati personali. Con una veloce bibliografia sugli articoli più interessanti sul punto e la traduzione inglese della legge.
RTI request to Department of Legal Affairs, Ministry of Law and Justice, Government of India dated 14.08.2016
Department of Legal Affairs, Ministry of Law and Justice, Government of India refused to forward or reply and returned the RTI request dated 16.08.2016
The object of analysis in the present text is the issue of surveillance and data retention in Poland. The analysis of this issue follows from a critical stance taken by NGOs and state institutions on the scope of operational control wielded by the Polish police and special services – it concerns, in particular, the employment of " itemised phone bills and phone tapping. " Besides the quantitative analysis of surveillance and the scope of data retention, the text features the conclusions of the Human Rights Defender referred to the Constitutional Tri-bunal in 2011. It must be noted that the main problems concerned with the employment of surveillance and data retention are caused by: (1) a lack of specification of technical means which can be used by individual services; (2) a lack of specification of what kind of information and evidence is in question; (3) an open catalogue of information and evi-dence which can be clandestinely acquired in an operational mode. Furthermore, with re-gard to the access granted to teleinformation data by the Telecommunications Act, attention should be drawn to the wide array of data submitted to particular services. Also, the text draws on open interviews conducted mainly with former police officers with a view to highlighting some non-formal reasons for " phone tapping " in Poland. This comes in the form of a summary.
First Appeal to Department of Legal Affairs, Ministry of Law and Justice, Government of India dated 03.09.2016. Department of Legal Affairs, Ministry of Law and Justice, Government of India remained silent since 03.09.2016 to till date.
This is the fifth edition of the I·CONnect-Clough Center Global Review of Constitutional Law. This 2020 Global Review assembles detailed but relatively brief reports on constitutional developments and cases in 63 jurisdictions during the past calendar year. The reports are authored by academic and/or judicial experts, and often the reports are co-authored by judges and scholars. The reports in this first-of-its-kind volume offer readers systematic knowledge that, previously, has been limited mainly to local networks rather than a broader readership. By making this information available to the larger field of public law in an easily digestible format, we aim to increase the base of knowledge upon which scholars and judges can draw. We expect to repeat the project every year with new annual reports, and we hope over time that coverage will grow to an even wider range of countries. We invite scholars and jurists from the presently non-covered jurisdictions to contact us about contributing a report in next year’s Global Review.
The Rights of the Data Subject encompasses all rights or interests over to personal information that has been collected, processed, and analyzed. Non-compliance with the rights results in liabilities, particularly on indemnity for damages.
Noggin - World's first marketplace for Personal DataNoggin Asia
Direct marketing is expensive; and customer details are usually unknown. Customer on other hand is worried about personal data. Noggin is a marketplace to connect these two. Discover us at www.nogginasia.com. Consumers can earn by sharing personal data
Bulletin - US-EU Data Privacy Safe Harbor Program InvalidatedCohenGrigsby
On October 6, 2015, the European Court of Justice ("ECJ") invalidated the safe harbor program negotiated between the United States Department of Commerce and the European Commission pursuant to which safe harbor-registered United States companies have processed personal data transferred from the EU within the United States since 2000 (the "Safe Harbor").
Overview of the Egyptian Personal Data Protection LawFatmaAkram2
Egypt has recently enacted the first Personal Data Protection Law (PDPL), which has been published in the Official Gazette on 15 July 2020 and has entered into force on 16 October 2020. The PDPL reflects many of the requirements of the EU’s General Data Protection Regulation (GDPR). The Executive Regulations of the PDPL shall be issued within six (6) months from the entry into force of the PDPL. Organizations shall comply with the provisions of the PDPL and its Executive Regulations within a grace period of one (1) year from the issuance of the Executive Regulations.
The PDPL covers almost all aspects of personal data protection stated under the GDPR. In this presentation, you will find a summary of the important data protection provisions stipulated under the PDPL, and the similarities and differences between the GDPR and the PDPL.
Breve sintesi della "Personal Information Protection Law" cineseEdoardo Ferraro
Breve sintesi sui punti essenziali della legge cinese in tema di protezione dei dati personali. Con una veloce bibliografia sugli articoli più interessanti sul punto e la traduzione inglese della legge.
RTI request to Department of Legal Affairs, Ministry of Law and Justice, Government of India dated 14.08.2016
Department of Legal Affairs, Ministry of Law and Justice, Government of India refused to forward or reply and returned the RTI request dated 16.08.2016
The object of analysis in the present text is the issue of surveillance and data retention in Poland. The analysis of this issue follows from a critical stance taken by NGOs and state institutions on the scope of operational control wielded by the Polish police and special services – it concerns, in particular, the employment of " itemised phone bills and phone tapping. " Besides the quantitative analysis of surveillance and the scope of data retention, the text features the conclusions of the Human Rights Defender referred to the Constitutional Tri-bunal in 2011. It must be noted that the main problems concerned with the employment of surveillance and data retention are caused by: (1) a lack of specification of technical means which can be used by individual services; (2) a lack of specification of what kind of information and evidence is in question; (3) an open catalogue of information and evi-dence which can be clandestinely acquired in an operational mode. Furthermore, with re-gard to the access granted to teleinformation data by the Telecommunications Act, attention should be drawn to the wide array of data submitted to particular services. Also, the text draws on open interviews conducted mainly with former police officers with a view to highlighting some non-formal reasons for " phone tapping " in Poland. This comes in the form of a summary.
First Appeal to Department of Legal Affairs, Ministry of Law and Justice, Government of India dated 03.09.2016. Department of Legal Affairs, Ministry of Law and Justice, Government of India remained silent since 03.09.2016 to till date.
This is the fifth edition of the I·CONnect-Clough Center Global Review of Constitutional Law. This 2020 Global Review assembles detailed but relatively brief reports on constitutional developments and cases in 63 jurisdictions during the past calendar year. The reports are authored by academic and/or judicial experts, and often the reports are co-authored by judges and scholars. The reports in this first-of-its-kind volume offer readers systematic knowledge that, previously, has been limited mainly to local networks rather than a broader readership. By making this information available to the larger field of public law in an easily digestible format, we aim to increase the base of knowledge upon which scholars and judges can draw. We expect to repeat the project every year with new annual reports, and we hope over time that coverage will grow to an even wider range of countries. We invite scholars and jurists from the presently non-covered jurisdictions to contact us about contributing a report in next year’s Global Review.
The Rights of the Data Subject encompasses all rights or interests over to personal information that has been collected, processed, and analyzed. Non-compliance with the rights results in liabilities, particularly on indemnity for damages.
Noggin - World's first marketplace for Personal DataNoggin Asia
Direct marketing is expensive; and customer details are usually unknown. Customer on other hand is worried about personal data. Noggin is a marketplace to connect these two. Discover us at www.nogginasia.com. Consumers can earn by sharing personal data
This talk was presented at the 2016 Cloud Identity Summit. It was in the Rise of the Identity-enabled Personal Information Economy Track. It puts forward 6 Diagrams to make Sense of the overall Personal Data Ecosystem including What is Personal Data? What Happens to Personal Data? What are Market Models and how is it regulated?
This presentation was presented as the pre-opening talk at Identity North 2016 in Toronto. It covers the big question - What is Identity? Key Concepts and Terms. Contextualizing Identity for Enterprise, Government and in the Commons.
General Data Protection Regulation (GDPR) | Privacy Law in India |Bivas Chatterjee
This PPT deals with Privacy Law in India and GDPR. It also deals with GDPR compliance and result of non compliance for companies specially Indian companies dealing with European Citizen's personal data. It also deals with GDPR in connection with the use of Bitcoin, cloud, Artificial Intelligence, Big Data and IOT. So Enjoy reading and also be connected with my blog at cyberchatterjee.blogspot.com .
The DollarPesa User Agreement is a legally binding document that outlines the terms and conditions under which users can access and utilize the DollarPesa platform. It clearly defines the rights and responsibilities of both parties, ensuring a safe and secure environment for all users. It covers various aspects such as account registration, privacy policies, acceptable use policies, and limitations of liability. By agreeing to this User Agreement, users commit to adhering to the rules and regulations set forth by DollarPesa and acknowledge the platform's commitment to protecting their data and providing a seamless experience
All product and company names mentioned herein are for identification and educational purposes only and are the property of, and may be trademarks of, their respective owners.
2014-04-16 Protection of Personal Information Act Readiness WorkshopPaul Jacobson
These are my slides for my presentation at the Protection of Personal Information Act Readiness Workshop at the OR Tambo Protea Hotel on 16 April 2014. My focus was on understanding data processing constraints; identifying key risk areas and the benefits of better data protection frameworks.
Asia Counsel Vietnam summarises the long awaited Decree 13 on data protection. We provide useful steps to get prepared and comply with the new provisions which will take effect on 1 July 2023.
Обзор заработных плат в сфере фармацевтического производства в Москве.Awara Direct Search
Цель этого обзора заработных плат – дать общее представление об особенностях рынка труда и уровне средних заработных плат в сфере фармацевтического производства в Москве.
Цель этого обзора зарплат – дать представление об особенностях рынка труда и уровне средних заработных плат в Санкт-Петербурге в период санкций и девальвации рубля.
Исследование Совокупного Налогового Бремени на Оплату Труда – 2014Awara Direct Search
Что мы хотели узнать? Какую часть из всех денежных средств, которые направлены на выплату заработной платы, работники в действительности получают на руки за вычетом налогов и всех отчислений на социальное страхование? Конкретный вопрос, который мы ставили перед собой: Каковыми должны быть совокупные расходы работодателя на оплату труда, чтобы работник получил на руки X евро (долларов США)?
Обзор заработных плат в области подбора персонала в КазаниAwara Direct Search
Цель этого обзора заработных плат – дать общее представление об особенностях рынка труда и уровне средних заработных плат в сфере строительства в Казани.
Обзор заработных плат в области подбора персонала в Санкт-ПетербургеAwara Direct Search
Цель этого обзора заработных плат – дать общее представление об особенностях рынка труда и уровне средних заработных плат в области HR в Санкт-Петербурге
Car Accident Injury Do I Have a Case....Knowyourright
Every year, thousands of Minnesotans are injured in car accidents. These injuries can be severe – even life-changing. Under Minnesota law, you can pursue compensation through a personal injury lawsuit.
NATURE, ORIGIN AND DEVELOPMENT OF INTERNATIONAL LAW.pptxanvithaav
These slides helps the student of international law to understand what is the nature of international law? and how international law was originated and developed?.
The slides was well structured along with the highlighted points for better understanding .
How to Obtain Permanent Residency in the NetherlandsBridgeWest.eu
You can rely on our assistance if you are ready to apply for permanent residency. Find out more at: https://immigration-netherlands.com/obtain-a-permanent-residence-permit-in-the-netherlands/.
ALL EYES ON RAFAH BUT WHY Explain more.pdf46adnanshahzad
All eyes on Rafah: But why?. The Rafah border crossing, a crucial point between Egypt and the Gaza Strip, often finds itself at the center of global attention. As we explore the significance of Rafah, we’ll uncover why all eyes are on Rafah and the complexities surrounding this pivotal region.
INTRODUCTION
What makes Rafah so significant that it captures global attention? The phrase ‘All eyes are on Rafah’ resonates not just with those in the region but with people worldwide who recognize its strategic, humanitarian, and political importance. In this guide, we will delve into the factors that make Rafah a focal point for international interest, examining its historical context, humanitarian challenges, and political dimensions.
WINDING UP of COMPANY, Modes of DissolutionKHURRAMWALI
Winding up, also known as liquidation, refers to the legal and financial process of dissolving a company. It involves ceasing operations, selling assets, settling debts, and ultimately removing the company from the official business registry.
Here's a breakdown of the key aspects of winding up:
Reasons for Winding Up:
Insolvency: This is the most common reason, where the company cannot pay its debts. Creditors may initiate a compulsory winding up to recover their dues.
Voluntary Closure: The owners may decide to close the company due to reasons like reaching business goals, facing losses, or merging with another company.
Deadlock: If shareholders or directors cannot agree on how to run the company, a court may order a winding up.
Types of Winding Up:
Voluntary Winding Up: This is initiated by the company's shareholders through a resolution passed by a majority vote. There are two main types:
Members' Voluntary Winding Up: The company is solvent (has enough assets to pay off its debts) and shareholders will receive any remaining assets after debts are settled.
Creditors' Voluntary Winding Up: The company is insolvent and creditors will be prioritized in receiving payment from the sale of assets.
Compulsory Winding Up: This is initiated by a court order, typically at the request of creditors, government agencies, or even by the company itself if it's insolvent.
Process of Winding Up:
Appointment of Liquidator: A qualified professional is appointed to oversee the winding-up process. They are responsible for selling assets, paying off debts, and distributing any remaining funds.
Cease Trading: The company stops its regular business operations.
Notification of Creditors: Creditors are informed about the winding up and invited to submit their claims.
Sale of Assets: The company's assets are sold to generate cash to pay off creditors.
Payment of Debts: Creditors are paid according to a set order of priority, with secured creditors receiving payment before unsecured creditors.
Distribution to Shareholders: If there are any remaining funds after all debts are settled, they are distributed to shareholders according to their ownership stake.
Dissolution: Once all claims are settled and distributions made, the company is officially dissolved and removed from the business register.
Impact of Winding Up:
Employees: Employees will likely lose their jobs during the winding-up process.
Creditors: Creditors may not recover their debts in full, especially if the company is insolvent.
Shareholders: Shareholders may not receive any payout if the company's debts exceed its assets.
Winding up is a complex legal and financial process that can have significant consequences for all parties involved. It's important to seek professional legal and financial advice when considering winding up a company.
A "File Trademark" is a legal term referring to the registration of a unique symbol, logo, or name used to identify and distinguish products or services. This process provides legal protection, granting exclusive rights to the trademark owner, and helps prevent unauthorized use by competitors.
Visit Now: https://www.tumblr.com/trademark-quick/751620857551634432/ensure-legal-protection-file-your-trademark-with?source=share
1. Processing of Personal Data.
What’s new?
by Anton Kabakov
Hellevig, Klein & Usov
November 21, 2014
1
2. 2 2
From 1.1.2015 all Russian citizens’
personal data should be stored
only in Russia!
3. 3 3
Amendments to the law:
Russian citizens’ personal
data need to be recorded,
compiled, stored, refined
(updated, modified), extracted
using databases located in
Russia with certain
exceptions.
4. 1. What is considered to be “personal data” and what is
not?
2. Is it currently allowed to transfer personal data abroad?
3. What are the changes to the law and what do they really
state?
4. When these changes are expected to come into force?
4 4
5. • Russian definition of "personal data" is "broad" and borrowed from
European Union law
5 5
Russia
(Art. 3 (1)(1) of the Federal Law On Personal Data
dated July 27, 2006)
European Union
(Art. 2 Directive 95/46/EC of the European Parliament and of
the Council of 24 October 1995 on the protection of
individuals with regard to the processing of personal data
and on the free movement of such data)
Any information related to directly
or indirectly identified or identifiable
natural person.
Any information relating to an identified
or identifiable natural person. An
identifiable person is one who can be
identified, directly or indirectly, in
particular by reference to an identification
number or to one or more factors specific
to his physical, psychological, mental,
economic, cultural or social identity.
6. Vadim Ampelonsky (official representative of state controlling body
- Roskomnadzor): "The minimum set of personal data necessary for
the identification of the person is a combination of the first and last
name and photograph of the subject”.
(http://lenizdat.ru/articles/1124854/).
Physiological and biological features of a person on the basis of
which one can identify him (Part 1, Art. 11 of the Law On Personal
Data).
Can a person be identified by the IP-address of his computer, his e-mail
account, or Skype account?
6 6
Which data are sufficient to
identify a person?
7. 7 7
Mr. Homer JMayr. SHimoMmprs.e oSrn iJm,a Sypa sSfoiemntyp Isnosnpector at the
Springfield Nuclear Power Plant
8. Information considered to be personal data identifying a person:
Passport data
Fingerprinting information
Name together with photograph
Name together with the date of birth, and information about the parents
and their dates of birth
Information not sufficient to identify a person and not considered personal
data:
Solely the name or registered address of the person
Blood group, etc.
Nationality
8 8
9. Public
Biometric
Special ("sensitive"), i.e., data relating to racial or ethnic
origin, political opinions, religious or philosophical beliefs,
health, private life
Depersonalized? Is it still personal data if the natural
person is not any longer identifiable?
NEW REGULATION WILL APPLY TO ALL KINDS OF PERSONAL
DATA
9 9
Kinds of personal data.
10. 10
Law On Personal Data:
Cross-border transfer of personal data to foreign states that are parties to
the Convention for the Protection of Individuals with regard to Automatic
Processing of Personal Data, as well as other foreign countries ensuring
adequate protection of the rights of subjects of personal data is carried out
in accordance with this federal law, and may be prohibited or limited in
order to protect the constitutional system of the Russian Federation,
morality, health, rights and lawful interests of citizens, national defense
and state security.
Convention on the Protection of Individuals with regard to
Automatic Processing of Personal Data:
A party shall not prohibit or subject to special authorization cross-border
flows of personal data going to the territory of another party, for the sole
purpose of protecting privacy.
11. a) Parties to the on the Protection of Individuals with regard to Automatic
b) Ensuring adequate protection of the rights of the subjects of the personal
11
Sure, if personal data is transferred in foreign countries:
Processing of Personal Data (which Russia is a party to) OR
Ministry of
Labor guidelines
Amendments to
Administrative Offenses
and Criminal Codes
data OR
c) Any of the countries with the written consent of the individual
Exceptions: Race, political opinion, religious convictions or other beliefs, health or
private life, criminal record.
12. Russian citizens’ personal data will need to
be recorded, compiled, stored, refined
(updated, modified), extracted using
databases located in Russia.
12 12
Companies will be required to notify the
state agency of the location database with
personal data.
State authorities will be entitled to block
the site violating the law On Personal Data.
13. When are these changes expected to come into force?
Who fall under its scope? Territorial or extraterritorial
principle of operation of the new law?
Are all categories of personal data of Russian citizens (public,
biometric, special) prohibited from being stored using a
database located abroad?
Will it not be possible to store personal data abroad
duplicating if on the Russian databases (mirrors)?
If personal data is stored on mobile device (phone, laptop)
how to comply with the requirement to keep it in Russia?
13 13
14. Personal data may recorded and stored abroad in cases where
processing of personal data is necessary for inter alia:
achieving the goals of an international treaty of the Russian
Federation or the law, for fulfillment of operator’s obligations /
function set out by law
Does this mean that mandatory HR information may be stored
abroad as previously?
14
15. If data is transferred cross border, apparently it
will be stored abroad.
As long as cross-border transfer of personal data
is allowed, there could be no prohibition to
store data abroad.
It is possible to have solely mirror-databases in
Russia 15
16. Questions Responses
How do the restrictions correlate
with the Convention of the Council
of Europe?
Can be personal data be stored in
Russia and abroad?
Can one store depersonalized
personal data abroad?
Opinion of Roskomnadzor:
- Personal data may be transmitted
abroad. After use it must be
deleted;
- Personal data may not be stored
abroad.
Opinion of presidential
administration: No. It must be stored
only in Russia.
Technically, yes.
16
17. A public authority may require the hosting
provider to block the site on the basis of a
court decision.
Fine on the offending company of up to RUB
10,000
17 17
18. 18
Individual files a claim
together with the court
decision to state
Получение
объяснений
Применение
дисциплинарного
взыскания
agency
Court rules that site
violates Law on Personal
Data
Hosting provider sends
notice to owner of
resource
State agency
sends notice to
hosting provider
Owner of resource must
remove the violation
Hosting provider limits
access
19. 19
State agency opens access
Owner of resource or
hosting provider contacts
Применение
дисциплинарного
взыскания
state agency
Owner of resource
removes violation/
Court cancels earlier
decision
20. American and European models of cross-border transfer of personal data
The Russian model for cross-border transfer of personal data leans toward
that of the EU.
20 20
USA European Union
There are no restrictions on
cross-border transfer of
personal data
Is not a country that
provides the appropriate
level of protection of
personal data from the EU
perspective
Safe Harbor Regulations
Cross-border transfer of personal data is
allowed only in countries that ensure an
adequate level of protection of these data
Requirements for the cross-border transfer
of personal data can be applied to their
subsequent transfer (art. 40 of the Proposal
for a General Data Protection Regulation)
Planned transition from territorial to
extraterritorial model (item 19 of the
Preamble of the Proposal for a General Data
Protection Regulation)
21. Recommendation:
Notify state authorities of personal data processing. If the
company plans to process personal data, we recommend that
prior to the entry into force of the law it notify the state authority.
In that case, it does not need to specify the location of the
databases with personal data.
Duplicate personal data in Russia, keeping original data abroad?
Transfer depersonalized data abroad?
Audit HR documents to identify those which may be stored
21
abroad
Duplicate personal data stored on mobile devices on servicers
located in Russia?
22. • Measures must be necessary and sufficient to protect personal data against unauthorized access,
destruction, copying, distribution or other misuse.
• The operator independently determines the composition and the list of measures that are
necessary and sufficient to fulfill the requirements of the Law.
22 22
Legal and organizational Technical
Consent to process personal data,
Local policy documents in relation to the
processing of personal data,
Evaluation of the harm that may be caused to
citizens in the case of the processing of their
personal data in violation of the law,
Ensure unlimited access to policy documents of
the operator in respect of the processing of
personal data which meet the requirements for
the protection of personal data.
Accounting for machine storage devices of
personal data,
Application of approved procedures for
assessment of means of information protection,
Recovery of personal data, modified or destroyed
by unauthorized access to it.
23. 15.1.2012 23
Offices in 3 countries:
Russia
Ukraine
Finland
150 professionals
at your service
Partnerships:
AEB
AmCham
AHK
SVKK
SPIBA