What has changed in the CAO RF?The fines under the general composition (paragraph 1) of Article 13.11 of the CAO RF have been increased, namely, now the upper limit of liability for an official (for example, the CEO of the company or the head of the HR department, provided that he is responsible for the processing of personal data in the company) is 100,000 (one hundred thousand) rubles, and for the company itself - 300,000 (three hundred thousand) rubles.
New elements of offenses (parts 10-18 of Article 13.11 of the CAO RF) have also been introduced. From May 30, 2025, only companies (not their officials) and individual entrepreneurs will be punished under separate offenses for:
- failure to notify Roskomnadzor, if such notification is mandatory, including on the fact of unlawful or accidental transfer of personal data with fine of up to 3,000,000 (three million) rubles;
- unlawful dissemination of personal data: