Valery Stepanov, Head of the Information Security Competence

tanjimajuha20 · Post by **tanjimajuha20** » Sun Jan 26, 2025 10:45 am

lya Tikhonov, Head of Compliance and Audit Departments of the Information Security Department of Softline Group, reminds that organizations are required to justify to the regulator the need to transfer personal data abroad. At the same time, cross-border transfer to the territory of states where adequate protection of the rights of personal data subjects is not ensured may be limited or prohibited, which may cause serious losses to the business or even lead to its shutdown.

Center at T1 Integration, points italy cell phone number list out that the document does not specify the criteria on the basis of which Roskomnadzor representatives will make decisions on restricting or prohibiting cross-border data transfer. The document also states that the operator is obliged to ensure that the subject's rights are sufficiently protected, but does not specify the tools to implement this requirement. However, Resolution No. 6 does not introduce major changes, but rather specifies the procedure and appoints those responsible at each stage of the process.

As shown by the study conducted by the integrator KROK on the eve of the entry into force of the first portion of innovations provided for in the amended legislation on the protection of personal data, only 4% of Russian companies are fully prepared to comply with the new requirements. Alexander Buravtsov, Security Director of MyOffice, commenting on the results obtained by KROK specialists, drew attention to the fact that the new procedure for cross-border transfer, along with a serious revision of many familiar regulations for processing personal data and the emergence of new ones, creates a large front of work for IT and information security in companies. In addition to notifying Roskomnadzor and collecting data on foreign counterparties, it will be necessary to audit internal documents in this area, take into account and apply the new requirements for the collection of personal data. All this will require serious labor