Personal Data Protection

The new law for personal data protection transposing the EU’s General Data Protection Regulation (GDPR)  in North Macedonia is effective as of February 2020, and the transition period for compliance ends in August 2021!

With the new changes, unlawful collection or storage of personal data as well as a personal data breach could cost your organization a financial penalty of up to 4% of the total annual turnover.

Number of new obligations have been introduced with the new law, such as:

  • obligation to apply personal data protection in the design and implementation of every service, product or business process  
  • obligation to maintain a record of processing activities
  • obligation for transparency and effective response to data subject rights to access, correct, erase, port and object to their data processing;
  • obligation to perform a privacy impact assessment for high risk data processing activities;
  • obligation to notify the data protection authority of data protection breaches

The new requirements are complex and ask for a risk-based approach, therefore companies must begin remediation efforts to ensure compliance. 

Our team of experts with extensive experience in personal data protection, IT security and risk management, is ready to help you with all the challenges ahead. 



Contact us

Kiril  Papazoski

Kiril Papazoski

Attorney-at-law , Papazoski and Mishev Law Firm, Macedonia

Tel: +389 23140 940

Ivan Mishev

Ivan Mishev

Attorney-at-law , Papazoski and Mishev Law Firm, Macedonia

Tel: +389 23140 940

Follow us