BDK Advokati holds seminar on EU General Data Protection Regulation

BDK Advokati's data protection team held a seminar on 14 March 2017 on the General Data Protection Regulation (GDPR) for representatives of close to twenty Serbian companies and Serbian subsidiaries of multinational companies.

On 25 May 2018, the GDPR will become applicable in the European Union (EU). GDPR's reach extends to undertakings headquartered or operating outside the Union, when they process personal data of EU subjects. Quite a few companies in Serbia will be exposed to GDPR. By adjusting their data protection policies and day-to-day practice to the requirements set by GDPR, these companies minimize the risk of exposing themselves to large fines which courts in EU member states may impose for violation of GDPR provisions.

With the goal of making their transition towards the new regulation easier, our team specializing in data protection & privacy – Bogdan Ivanišević, Ana Jankov, Milica Basta, Pablo Pérez Laya and Marko Popović – presented to the companies attending the seminar the key characteristics of GDPR, principles of lawful data processing under GDPR, data subjects' rights, controller's obligations (including records keeping, impact assessment, prior consultation with supervisory authorities, designation of the data protection officer, and breach notification), certification and codes of conduct, and transfer of personal data to third countries.

Learning about the GDPR is also of importance to the Serbian companies which do not process personal data of individuals in the EU. Serbian laws and regulations are increasingly based on the rules previously approved in the EU, so the upcoming changes in the data protection law in Serbia will assuredly mirror many of the aspects contained in GDPR.

For more information on GDPR, and other data protection-related matters, please contact

Photos from the seminar, in the gallery below, were taken by Imre Szabo.