What is GDPR?
GDPR is a general regulation for all EU member states which tell us how to use personal data. It sets new standards in the field of personal data protection. GDPR has established a drastically higher level of responsibility for organizations that collect and process personal data. High penalties, reaching as high as 20 million euros or 4% of the total annual turnover in the previous financial year, or 10 million euros or 2% of the total annual turnover in the previous financial year, are enough reason to coordinate without delay GDPR implementation.
When determining the level of punishment, into consideration it will be taken of the extent to which the organization has shown an effort to comply with the requirements of the regulation. GDPR is applied in the EU from May 25, 2018.
GDPR is also mandatory for all organizations whose headquarters are located outside the EU if they process personal data of EU citizens, which is the case with all organizations in Serbia that offer their goods or services to EU citizens. These are telecommunication operators, financial institutions and banks, hotels and other catering facilities, insurance companies, pharmaceutical companies, media, etc.
What are the most important obligations for organizations according to GDPR?
- High protection of citizens’ rights
- Clear, unequivocal, voluntary and informed consent
- Appointment of a data protection officer (DPO)
The importance of applying GDPR standards in organizations
Compliance with GDPR implies raising awareness of management and employees about the importance of new regulations for the sustainability of operations and formatting a competent team in charge of harmonization with GDPR. Organizations that want to implement GDPR in their business should prepare a record of personal data processing activities, then establish a global data protection and data management policy, prepare solutions for cross-border data transfer, update the leakage plan, etc.
It is also necessary to prepare notifications for users and for the owners of personal data, to precisely define the data processor’s obligations, to appoint a data protection person, to implement adequate technical and organizational protection measures, and to consider the consequences of non-compliance with GDPR.
The “ GDPR and the use of Artificial Intelligence applied to Data Protection standards” in Belgrade, February 26, 2019
A consciousness of management and governance structures, as well as employees in organizations that collect and process personal data is necessary for the many provisions of GDPR to be applied in everyday business, as well as to ensure full compatibility with GDPR. For all organizations that process personal data in the field of activity, we are organizing the event on “GDPR and the use of artificial intelligence applied to data protection standards” in Belgrade, on February 26, 2019, starting at 9:00 am, find out more at the event website.
This is the first practical meeting in terms of data protection with all-inclusive practical solutions for GDPR implementation in Serbia. Lecturers at the gathering are partner Marija Zdravković, from law office Moravcevic Vojnovic and Partners in cooperation with Schoenherr, as well as Zoran Jovanović, an expert on the application of artificial intelligence in data protection law.
Among other things, the meeting will discuss examples related to GDPR and its practical application, as well as methods and possibilities for implementing GDPR using artificial intelligence. The event is organized by Confida and German-Serbian Chamber. Confida is international tax advisory, consulting and accounting company with a network of companies in Austria and South East Europe making it a strong partner both locally and internationally.
Apply at https://gdpr-serbia.rs/.