News 

The "special" category of personal data includes "biometric data," which refers to personal data related to an individual's physical, physiological, or behavioral characteristics. This data is obtained through specific technical treatments such as ultrasound, thermal,...

Genetic data refers to personal data relating to the genetic, hereditary, or acquired characteristics of a natural person, resulting from the analysis of a biological sample from the individual in question, particularly the analysis of chromosomes, deoxyribonucleic...

Every security breach that accidentally or unlawfully results in the destruction, loss, alteration, unauthorized disclosure, or access to transmitted, stored, or otherwise processed personal data is a "personal data breach" or data breach. A personal data breach, if...

"Third party" refers to a natural or legal person, a public authority, a service, or another organization that is not one of the following: the data subject, the data controller, the data processor, individuals authorized to process personal data under the direct...

📌 Recipient means a natural or legal person, public authority, agency, or another body, to which the personal data are disclosed, whether a third party or not. 📌 Recipients may receive personal data to carry out processing on behalf of the data controller or to...

On the occasion of the fifth anniversary of the General Data Protection Regulation (GDPR), a legal regulation directly applicable in the EU since 25 May 2018, the Agency in cooperation with the Croatian Employers’ Association, organised a consultation “5 years of...

Due to great interest in the topic of the entrepreneurs, the Agency is organizing another event on Wednesday, May 24, 2023, entitled “5 years of GDPR application: problems, solutions, fines and examples of good practice”, this time in cooperation with Croatia...

The Croatian Personal Data Protection Agency together with the Croatian Chamber of Commerce and the University of the North, on May 5, 2023, organized an event titled “5 years of application of the GDPR: problems, solutions,...

“Data Controllers” may be natural or legal persons, SMEs, public authorities, organisations, or other bodies which, alone or jointly with others, use personal data for the specific purposes. The GDPR strongly emphasises the “accountability” of the data controller....