Continue reading on DataGuidance with:
Free Member
Limited ArticlesCreate an account to continue accessing select articles, resources, and guidance notes.
Already have an account? Log in
EU - Russia: GDPR v. Russian Law on Personal Data
In this report, OneTrust DataGuidance provides a means of analyzing and comparing data protection requirements and recommendations under the General Data Protection Regulation (GDPR) and the Federal Law of 27 July 2006 No. 152-FZ on Personal Data (the Law on Personal Data).
The report examines and compares the scope, main definitions, legal bases, data controller and processor obligations, data subject rights, and enforcement capacities of the Law on Personal Data with the GDPR.
You can access the latest version of the report here.
What is the Law on Personal Data?
The Law on Personal Data aims to guarantee protection for individuals' personal data and apply to organizations that collect, use, or share such data.
Key highlights
The Law on Personal Data and the GDPR share similar fundamental concepts and approaches within the realm of data protection, such as:
- the use of legal bases when processing;
- the appointment of data protection officers; and
- the approach to cross-border data transfer obligations.
However, despite their similarities, the Law on Personal Data and the GDPR also differ sometimes in their approach, such as:
- their considerations of children's personal data;
- penalties, both financial and otherwise; and
- controller and processor obligations.