Introduction
Personal data protection is becoming an increasingly relevant topic, especially in light of new legislative changes. In the Republic of Moldova, a new law based on the General Data Protection Regulation (GDPR) of the European Union will come into force. These changes will affect almost all companies that handle personal data. In this article, we will examine the main updates, their implications, and recommendations for compliance.
Key Legislative Changes
- Alignment with GDPR
The new law brings Moldovan legislation closer to European standards. This means the adoption of unified rules for processing personal data, enhancing user protection. - Increased Fines
In case of non-compliance, fines will increase significantly. Previously, the maximum fine was 15,000 MDL; from 2026 onwards, it can reach up to 2% of a company’s annual turnover. - Expanded Rights for Data Subjects
The law introduces additional rights for users, including:- The right to erasure (“right to be forgotten”);
- The right to data portability;
- The right to restrict data processing;
- The right to object to automated decision-making.
- New Requirements for Data Processing
Companies are required to implement clear data processing procedures, maintain a record of processing activities, and appoint a Data Protection Officer (DPO).
Practical Recommendations for Businesses
To avoid penalties and ensure compliance with the new regulations, companies should:
- Update internal documentation, including privacy policies and client contracts;
- Conduct a data processing audit to identify and address potential violations;
- Appoint a Data Protection Officer (DPO);
- Train employees on data protection rules;
- Implement security measures to safeguard information, including encryption and access restrictions.
Conclusion
The new changes in personal data protection legislation in Moldova require companies to adapt to stricter standards. Complying with these rules will not only reduce the risk of fines but also increase trust from clients and partners. It is recommended to start preparations as soon as possible to ensure full compliance by the time the law takes effect.
If you need expert consultation on adapting your business to the new regulations, contact data protection specialists!
