IDC Names Securiti a Worldwide Leader in Data Privacy
ViewElegant Consumer Frontend, Fully Automated Backend, Privacy Regulation Intelligent Everywhere.
Looks like this email is already registered with an existing account.
Looks like there was an error completing your request, Please contact us here for further support.
Please do not close this window while we process your request
Issued on 27 July 2006, the Russian Federal Law on Personal Data (No. 152-FZ) remains one of the oldest data protection laws in effect today. Moreover, it is one of the few laws enacted before the EU's landmark General Data Protection Regulation (GDPR).
Since 2006, various amendments to the law have introduced provisions such as personal data localization requirements and, most critically, data subject rights related to data processing. The recent amendments to the Federal Law on Personal Data require the data subject’s consent for making personal data available to the public and for any subsequent dissemination as well as data localization requirements.
The Russian Federal Law on Personal Data (No. 152-FZ) applies to federal government bodies, government bodies of the constituent entities of the Russian Federation, other government bodies, local government bodies, and other municipal bodies, legal entities and individuals that use automation tools or if the processing is similar to automated processing. It applies to any legal entity including any foreign entity with a legal presence in Russia that collects personal data in Russia.
By offering features that include PI data discovery, DSR automation, documented accountability, and AI-process automation, among others, Securiti offers you seamless compliance with Russian Federal Law N 152-FZ.
.
Request a demo today to learn how Securiti can aid you and your organization's compliance efforts.
Articles 14, 14(7)
Automation of the data access requests allows you to ensure the entire process is seamlessly compliant with the law while also freeing up critical human resources to be used elsewhere.
Articles 14, 14(7)
A centralized portal allows you to keep track of all data access requests being made and monitor how efficient your fulfillment of these requests is.
Article 14(1)
All rectification requests received can be processed automatically via the central portal.
Article 14(1)
All erasure requests received can be processed automatically via the central portal.
Articles 9, 10, 12(1)(4), 15
Using the central portal, you can keep a real-time track of all data subjects' given consent related to various permissions. Additionally, the portal allows you to ensure compliance with all consent requirements and avoid any illegal transfers, sharing, or selling of data not consented by the users.
Articles 7, 19
You can ensure regular assessments of your internal practices to achieve complete compliance with the law. These assessments can highlight any gaps or deficiencies in internal practices. You can then remedy these accordingly.
Article 12
You can extend these readiness assessments to your third parties and vendors and their business practices to ensure they're fully compliant with the law's stipulations as well.
Articles 9, 10, 12(1) (4), 15
Easily track and monitor all incoming and outgoing data transfers in real-time, especially cross-border data transfers, to ensure data processing activities are compliant with the law.
Article 9
Monitor all first-party and third-party cookies your organization uses via the central portal and ensure they are fully compliant with the law.
Article 22
Keep track of all your vendors' data processing activities related to your database to ensure their practices are compliant with the law.
Like all major data protection laws in effect today, the Russian Federal Law N 152-FZ ensures all users have certain rights, such as the following:
All data subjects have the right to request access to all data collected on them by a data controller.
Other information the data subject may receive includes the following:
Data subjects have the right to request an operator to rectify, block or destroy their personal data if the personal data is incomplete, out-of-date, inaccurate, unlawfully obtained, or is not needed for the stated purpose of the processing.
The processing of personal data for direct marketing purposes is allowed under the strict condition that the data subject has given prior consent. Direct marketing may include the processing of data in order to promote goods, works, services on the market by making direct contacts with a potential consumer using communication means, as well as for the purposes of political campaigning.
A data subject has the right to request an operator to cease sending them promotions of this sort, and the operator must comply with such a request immediately.
In consent-based data processing, the data subject has a right to withdraw consent at any time. In the case of consent withdrawal, controllers must cease the processing of the personal data or arrange for it to be terminated (if the processing is carried out by another person acting on behalf of the controller) and if the storage is no longer required for the purposes of processing data, destroy the data or ensure its destruction within a period not exceeding thirty days from the date of receipt of the said revocation.
Publicly disseminated data is a category of personal data, access to which an unlimited number of persons is provided by the data subject by giving consent to the processing of personal data for distribution. Data subject’s consent is required to distribute or allow the personal data to be disseminated.
Data subjects have the right to request to prohibit the use of automated decision-making based on their collected data if it affects their rights or interests.
An operator may only proceed with automated decision-making with the data subject's prior consent and must cease this activity if the data subject requests an end to it.
The Federal Law 152-FZ requires data operators that collect personal data of Russian citizens to ensure that recording, systematization, accumulation, storage, clarification and extraction of personal data is done using databases located in Russia.
The Federal Service for Supervision of Communications, Information Technology, and Mass Media (Roskomnadzor) is the relevant supervisory body.
Federal Law N 152-FZ requires all data processing organizations to appoint a data protection officer (DPO).
Federal Law 152-FZ provides compensation for moral harm and administrative and regulatory fines. The fine of citizens may be in the amount of four thousand to twelve thousand rubles for any violation of the data protection legislation.
At Securiti, our mission is to enable enterprises to safely harness the incredible power of data and the cloud by controlling the complex security, privacy and compliance risks.
Copyright © 2023 Securiti · Sitemap · XML Sitemap
info@securiti.ai
Securiti, Inc.
300 Santana Row
Suite 450
San Jose, CA 95128