TrustArc Blog

Enforcing the Russian Localization Law

September 01, 2016

Screenshot 2016-09-01 11.13.59

The Russian Data Localization Law came into effect a year ago today on September 1st, 2015. On February 12th, 2016 the Ministry of Telecom and Mass Communications of the Russian Federation (MinComSvyaz) issued Guidance that addresses the comments received from public, and provided guidance on how to comply with the Law.

Since the Russian Data Localization Law came into effect last September 302 inspections have been conducted to check compliance and Roskomnadzor (the Russian Data Protection Authority) has reported that the inspections revealed few minor infractions and indicated that they expect violations would be corrected promptly and that no fines would be imposed on the offending companies. Roskomnadzor has published the list of the planned audit for 2016. According to the list the next subjects will include Microsoft, Hewlett-Packard and Samsung in addition to any unplanned audits. The results of the inspections will be published and discussed.

The September TRUSTe Client Advisory Note was prepared by Maria Elterman J.D., CIPP/US and provides an overview of the MinComSvyaz guidance including: scope of application, definition of Personal data, cross-border data transfers, timing and enforcement. The Advisory also includes a list of 5 steps to help your company comply with the Russian Data Localization Law.

If you would like a copy of this latest Client Advisory Note then look out for your copy via e-mail today or contact TRUSTe at 1-888-878-7830.