Obligatory depersonalization of personal data is abolished
On 6 September, 2014 the Regulation of the Government of the Russian Federation No. 911 was published by which the alterations in Regulation of the Government of the Russian Federation No. 211 of 21.03.2012 were introduced. This document abolishes the obligation of the personal data operators of state and municipal authorities to carry out depersonalization of personal data processed by informational systems.
The Regulation of the Government of the Russian Federation was published at the official website of legal information pravo.gov.ru on 10 September, 2014 and will be effective since 18 September, 2014.
We would like to remind you that in accordance with the Regulation of the Government of the Russian Federation No. 211 a personal data operator being a state or municipal authority was obliged to depersonalize personal data in any case of its processing by informational systems.
The practice of law enforcement has demonstrated that processing of personal data by state or municipal informational systems does not always require the depersonalization of information. The need of applying such protection measure appears in extraordinary circumstances which are stipulated by Russian legislation. These cases include the need of public and local government authorities to put the documents which contain personal data, e.g. depersonalizing copies of judicial acts, on open access.
Therefore, most of informational systems contained personal data is the subject to personal data safety risks at neutralization of which depersonalization institute is directed. However, the previous normative legal base is obliged to depersonalize personal data in all the informational systems regardless of the level of danger.
In May, 2014 Roskomnadzor initiated the improvement of depersonalization institute the result of which has been the publication of the Regulation of the Government No. 911.
Time of the publication: 19.09.2014 16:17
Last modified: 19.09.2014 16:17