Commentary Addressing Risks and Opportunities Through the Lifecycle of Data, Technology, Advertising and Innovation

Data Counsel

Home | Data Counsel

Authors: <a href="http://www.bakerlaw.com/gonzaloszeballos/">Gonzalo Zeballos</a>, <a href="http://www.bakerlaw.com/jamesasherer/">James Sherer</a>, and <a href="http://www.bakerlaw.com/alanmpate/">Alan Pate</a> Ukraine privacy law is undergoing a dramatic shift with its introduction of new legislation, &ldquo;On Amending Certain Legislative Acts of Ukraine Regarding Improving the <a href="http://zakon4.rada.gov.ua/laws/show/383-vii">System of Personal Data Protection</a>,&rdquo; enacted on July 3, 2013, with an enter-into-force date of January 1, 2014. This legislation abolishes the current State Service of <a href="http://www.lexology.com/library/detail.aspx?g=fc6dbbd9-60a5-4715-8466-0921d33787ec">Ukraine on Personal Data Protection</a>, transferring its functions to the <a href="http://www.mondaq.com/x/265946/Data+Protection+Privacy/Getting+The+Deal+Through+Data+Protection+Privacy+2014">Human Rights Commissioner of the Parliament of Ukraine (Ombudsman)</a>. The overall shift to Ombudsman oversight and the creation of an independent authority for data protection issues brings Ukraine closer to compliance with European data protection standards, <a href="http://www.globalregulatoryenforcementlawblog.com/2013/09/articles/data-security/eastern-european-data-protection-update-ukraine-kazakhstan/">even though Ukraine is not a member state</a>. Further changes incorporate the designation of &ldquo;High Risk Data,&rdquo; the processing of which carries requirements of notification to the Ombudsman, and consent requirements for the transfer of individuals&rsquo; data, with failures and breaches subject to civil and criminal penalties, including imprisonment of up to 5 years.

International Privacy – 2013 Year in Review – Ukraine