The newly amended draft of the Russian Code of Administrative Offenses now comprises a new corpus delicti - failure to comply with the obligation to observe the confidentiality of personal data. Fines vary from 40-100 thousand rubles (for officials) or 100-300 thousand rubles (for individual entrepreneurs) to 300-500 thousand rubles (for legal entities).
The current law provides administrative responsibility for not ensuring the safety of personal data during its unautomated processing. Fines are almost ten times smaller: 4-10 thousand rubles for officials, 10-20 thousand rubles for individual entrepreneurs and 25-50 thousand rubles for companies. The new Code draft keeps this rule as well.
Besides, violation of personal data confidentiality may lead to other unfavorable consequences, for instance, civil liability. Civil liability occurs in case of pecuniary and non-pecuniary damages of individuals. Employers are responsible for violating the rules for employees’ personal data management.
|
NAZALI TAX & LEGAL |