On the occasion of the one year anniversary since the adoption in the EU of the General Data Protection Regulation (GDPR), the personal data commissioner in Cyprus has released information on its application in Cyprus.
In the past year the office:
– has received 424 complaints of which 135 concerned spam messages. A large part also involved non authorized access to or circulation of private data, failure to comply with right to access and complaints regarding the legality of CCTV
– has received 49 notifications of violations of personal data
– has issued 16 decisions, for nine of which fines totaling €36,900 were imposed
– has received statements from official responsible for personal data from 442 organisations of the public sector and 828 of the private sector
– has carried out 9 investigations without a prior complaint
The office is also the chief supervision authorities for 12 cases of cross-border cooperation of the 416 registered on the system and which concern companies which have their main base in Cyprus
As of May 2018, with the entry into application of the General Data Protection Regulation, there is one set of data protection rules for all companies operating in the EU, wherever they are based.
Stronger rules on data protection mean
- people have more control over their personal data
- businesses benefit from a level playing field
