🇨🇿Česká republika
General Data Protection Regulation Compliance in Czech Republic
GDPR governs the processing of personal data of EU residents. It requires lawful basis for processing, data subject rights, breach notification, and accountability measures.
How does GDPR apply in Czech Republic?
GDPR applies in Czech Republic under EU law with the same obligations as across the bloc — maximum fine €20M or 4% of global turnover. The national supervisory authority is the ÚOOÚ (Úřad pro ochranu osobních údajů), which handles enforcement, complaints, and notifications. Deadline: In force since May 25, 2018.
- Supervisory authority: ÚOOÚ (Úřad pro ochranu osobních údajů)
- Maximum fine: €20M or 4% of global turnover
- Key deadline: In force since May 25, 2018
| Supervisory authority | ÚOOÚ (Úřad pro ochranu osobních údajů) |
| Maximum fine | €20M or 4% of global turnover |
| Key deadline | In force since May 25, 2018 |
| Sectors affected | All sectors processing EU personal data |
Source: ÚOOÚ (Úřad pro ochranu osobních údajů)Reviewed:
Deadline
In force since May 25, 2018
Max Fine
€20M or 4% of global turnover
Sectors Affected
All sectors processing EU personal data
Key GDPR Obligations for Czech Republic Businesses
- Maintain records of processing activities (ROPA)
- Conduct Data Protection Impact Assessments
- Appoint a Data Protection Officer (if required)
- Implement data subject rights procedures
- Report breaches within 72 hours
Does GDPR apply to your Czech Republic business?
Find out in 2 minutes with our free regulation checker.
Check now — freeGDPR in Other Countries
For informational purposes only. This is not legal advice — consult qualified legal counsel.