ILN Data Privacy Paper

Czech Republic measures may apply under the GDPR in case of breach of rules for processing of personal data (please see above). Unsolicited/harassing phone calls (i.e., also marketing phone calls without consent unless the exception applies) are considered misdemeanour under the Act on Electronic communications. The Czech Telecommunication Office supervises compliance with the Czech Act on Electronic Communications, and has the authority to issue binding decisions, including prohibitions or orders and fines for violations. Legal entities may be fined up to CZK 50,000,000 (approximately EUR 2,022,000) or 10 % of the total worldwide annual turnover of the preceding financial year for unsolicited/harassing phone calls in violation of the Act on Electronic Communications.

Conclusion The Czech has implemented the GDPR mainly by the Act on Processing of Personal Data as mentioned above. There are also other laws that deal with the same or similar issues as the GDPR, but the GDPR stays the main law in the area of data protection and there are only very few additional requirements to and derivations from the GDPR in the Czech Republic. Republic As for the new legislation, it is expected that the new act on cyber security (likely to be effective in October 2024 in the Czech Republic) implementing the NIS 2 Directive will substantially broaden the number of entities to which this new Czech law will apply (from approx. 400 entities under the current law to approx. 6 000 entities under the new law).

THIS IS NOT LEGAL ADVICE. This document provides general information on the current relevant legislation in the Czech Republic as of January 19, 2024. We remain at your entire disposal to analyse specific cases.

Contact Us

+420 246 085 300 www.peterkapartners.com/ hradil@peterkapartners.cz Karlovo námÄ›stí 671/24 110 00 Praha 1

Made with FlippingBook - PDF hosting