NEWS

Role of DPO in Serbian Data Protection

The DPO plays a vital role in establishing data protection standards, ensuring compliance, and building trust in handling personal data.

Serbian data controllers and processors are legally required to appoint a DPO if they are a public authority, if their core activities involve large-scale systematic monitoring of individuals (e.g., video surveillance companies, online monitoring providers), or if their core activities consist of large-scale processing of special categories of personal data or data relating to criminal convictions. Appointment is preferred but not mandatory in other cases.

The DPO must possess expert knowledge, independence, and the ability to fulfil legal tasks. Independence is critical – the role is incompatible with positions like CEO or HR Director to prevent conflicts of interest.

Authored by Senior Associate Andrea Cvetanović from JPM’s Belgrade office, this article explains the requirements and key considerations for appointing a Data Protection Officer (DPO) under Serbian law, which closely follows the EU’s GDPR.

 

author avatar
JPM Law Office
See Full Bio

Share this post to

Twitter
LinkedIn
Scroll to Top

Privacy Policy

Law firm Janković, Popović & Mitić Beograd takes care of your privacy. As a controller and in accordance with the Law on Personal Data Protection and other applicable personal data protection regulations, we are obliged to provide you with information related to processing of your personal data.

We use cookies to help improve your experience of our website by measuring how it’s used.

Read our Privacy & Cookie policy for more information.

This Privacy Notice describes which personal data we collect from you and in which manner, how we use and share your personal data. It contains information on purposes and legal grounds for processing, on the time period in which we store your personal data, the manner we protect this data as well as on your rights.

Close