On 30 May 2025, turnover fines for leaks of personal data (PDN) in companies will come into force in Russia. Previously, the legislation did not provide for negotiable fines, and violations were classified as data processing without the consent of citizens (part 2 of Article 13.11 of the CAO). As of 30 May, personal data operators will be subject to high fines under the CAO RF for actions (inaction) that caused the illegal transfer of this information. Stricter penalties will be applied for failure to submit a number of notifications to Roskomnadzor.
Nikolay Goncharov, Director of Cyber Security Monitoring Department at Security Vision, told TAdviser what companies should do if there is a data leak, and how in the new conditions the speed of the company's response to this incident will affect the size of the fine and reputation.
Read more in the material.
.jpg)
.png)
 (2).png 2.png)
.jpg)
