Czechia

Summary

Law: Act No. 110/2019 Coll. on Personal Data Processing ('the Act') and the General Data Protection Regulation (Regulation (EU) 2016/679) ('GDPR')

Regulator: Office for Personal Data Protection ('UOOU')

Summary: The Act is the main piece of privacy regulation in Czechia and transposes the GDPR. The Act establishes the UOOU as the supervisory authority regarding data protection, designating the UOOU with supervisory responsibilities, including performing audits, publishing Standard Contractual Clauses ('SCCs'), investigating complaints in relation to breaches of obligations laid down by law, and imposing fines. Article 89(3) of the Act No. 127/2005 Coll. Of 22 February 2005 on Electronic Communications and on Amendment to Certain Related Acts ('the Electronic Communications Act') implements the Directive on Privacy and Electronic Communications (2002/58/EC) (as amended) ('the ePrivacy Directive'). Czechia has, since the 2009 amendment of the ePrivacy Directive, retained the 'opt-out' system, meaning that the Electronic Communications Law does not reflect the 'opt-in' consent requirement under the amended ePrivacy Directive. In relation to Data Protection Impact Assessments ('DPIA'), the UOOU has issued both a list of activities which require a DPIA (i.e. a blacklist) and a list of activities which do not require a DPIA (only available in Czech here).

Browse more content in Czechia

All Guidance Notes

All News

All Insights

News

25 April 2024

Czechia: ÚOOÚ publishes its control plan for 2024

25 April 2024

Czechia: ÚOOÚ publishes its 2023 annual report

24 April 2024

Czechia: ÚOOÚ fines Avast CZK 351M for GDPR violations

12 April 2024

Denmark: Digitization Minister signs cooperation agreement with Czech Republic on the European digital identity wallet

08 April 2024

Czechia: Legislative Council returns comments on draft cybersecurity law

22 March 2024

International: Czech Republic announces first dialogue with US on cybersecurity and emerging technologies

14 February 2024

Czechia: UOOU announces adoption of methodology for camera systems

01 February 2024

Czechia: NÚKIB reports on increased cyber incidents in 2023 due to AI advances

22 January 2024

International: Czech and Israel sign MoU on cybersecurity

27 December 2023

Czechia: NÚKIB submits draft cybersecurity law to legislative council

13 November 2023

Czechia: ÚOOÚ welcomes amendment to law governing data box holders' inclusion in public register

11 September 2023

Czechia: NÚKIB publishes guide for supplier management in relation to cybersecurity risk assessment

Insights

June 2023

Czech Republic: FAQs related to cookie bars and consent

Cookies have become an integral part of web browsing. However, the use of cookies has raised several privacy and security concerns. Under Czech law, website operators are required to obtain visitors' consent before storing non-technical cookies on their devices. In this Insight article, Tomáš Matějovský, Daniel Szpyrc, and Jakub Kabát, from CMS Cameron McKenna Nabarro Olswang, advokáti, v.o.s., delve into practical strategies for implementing cookie consent mechanisms. They also provide an overview of frequently asked questions (FAQs) regarding cookie banners and consents, only available in Czech, and recently published by the Czech Office for Personal Data Protection (UOOU).

June 2022

Czech Republic: Cybersecurity

April 2022

Czech Republic: Health and Pharma Overview

April 2022

Czech Republic: Data Protection in the Financial Sector

March 2022

Czech Republic: Recent development concerning cookies and telemarketing in the Czech Republic

We recently published an article about the amendment to Act No. 127/2005 Coll. Of 22 February 2005 on Electronic Communications ('the Electronic Communications Act'), which introduced a significant change to the use of cookies and telemarketing. The key change consists of replacing the opt-out regime with an opt-in one, our previous article summarised the change and its implications for businesses. However, since the amendment came into force, many questions have been asked and specific situations in daily practical life have challenged the authorities, lawyers, experts, and others connected to law and business. Daniel Szpyrc, Jakub Kabát, and Tomáš Matějovský, from CMS Cameron McKenna Nabarro Olswang, advokáti, v.o.s., discuss the most recent developments in this article.

October 2021

Czech Republic: New cookies and telemarketing regulation coming soon

Act No. 127/2005 Coll. Of 22 February 2005 on Electronic Communications and on Amendment to Certain Related Acts ('the Electronic Communications Act') regulates the use of cookies and telemarketing in the Czech Republic. This regulation will soon be amended as the Czech Parliament has introduced a conceptual change from an opt-out to opt-in regime regarding cookies and telemarketing. This change requires a new technical solution to be found and legal policies updated. Daniel Szpyrc, Jakub Kabát, and Tomáš Matějovský, from CMS Cameron McKenna Nabarro Olswang, advokáti, v.o.s., provide insight into the new legislation and how businesses can start preparing.

Czechia

Summary

Browse more content in Czechia

News

Insights

Get the Latest News

Thanks for signing up!

Company

Our Policies

Your Rights

Follow us