background-image-1 background-image-2 background-image-3

Regional Meeting on Data Protection and General Data Protection Regulation (GDPR) Enforcement in Western Balkans

24 November 2020, online meeting 


The first Regional Meeting on Data Protection and GDPR Enforcement held online on 24 November 2020 gathered representatives from Western Balkan economies (WB) coming from institutions and authorities responsible for personal data protection and ICT ministries, Regional Cooperation Council (RCC), and representatives from European Commission (EC) DGs (DG NEAR and DG JUST). The meeting aimed to officialise the structured regional dialogue on data protection and discuss the next steps needed to be undertaken in WB economies towards alignment and enforcement of the respective EU acquis (i.e. GDPR). To facilitate the discussion and support WB with concrete proposals, the RCC has commissioned a study to assess the compliance of the legal framework in each WB economy with GDPR, including identification of challenges and needs in each economy. The draft report for each economy was shared with each economy prior to the meeting and was presented during the meeting by the consultants engaged. This meeting helped to officialise the launching of the regional dialogue on data protection and privacy, in particular on the enforcement of GDPR. It also constitutes the first step in the networking of Data Protection Agencies across the region. On behalf of our Agency, Mr. Ivan Medojević, director, attended the meeting.



In the spirit of fostering quality and continuous cooperation of regional authorities for the protection of personal data, the "Initiative 20i7", which brings together representatives of independent bodies of the countries of the former Yugoslavia, was formed in 2017. By signing the Declaration on Mutual Cooperation of Personal Data Protection Authorities within the Initiative, regular annual meetings and active exchange of expert opinions, experiences and best practices have been agreed with in order to solve the common challenges we face in protecting personal data, in particular the challenges brought by the General Data Protection Regulation - GDPR. 

The aim of the "Initiative 2017" is that the supervisory authorities in the region find common solutions and share their experiences in addressing the dilemmas in this area of human rights.

The third "Initiative 20i7" held on May 26 - 28 2019 was hosted by the Agency for Personal Data Protection and Free Access to Information of Montenegro.




September 28th is celebrated as the International Day of Free Access to Information. Right to access to information is considered one of the fundamental human rights in all democratic countries and is guaranteed by the Constitution and relevant international documents. Right to free access to information allows citizens to have control over legality of work of the authorities, over spending money from the budget, which prevents unintentional management of trusted funds; it also uncompromisingly narrows the opportunity for possible abuse of power as well as corruption. On this day, the right of Montenegrin citizens is being promoted, and Montenegro as a society that inherits diversities is an active participant in all important decisions and processes. 

The importance of Law on Free Access to Information is reflected in the fact that it represents key mechanism for prevention of corruption, unlawful spending of public funds from the budget of Montenegro. It is also mirror of transparency of the society, which tries to achieve the standards in this area, with aim of establishing the rule of law. 

The transparency of state and local institutions is crucial in fighting corruption, so the right to free access to information is a condition for combating corruption and a path to openness of the society. The transparency and accountability of authorities we encourage is a measure of democracy of the society that we seek to make open and for the state use to be in service of the citizens.

The Agency for Personal Data Protection and Free Access to Information will on September 28th 2018 open her door to all users of the Law in order to learn about achieved results and to provide legal assistance to citizens in the process of exercising the right to free access to information.






General Data Protection Regulation has been applied in European Union since May 25th.

This document brings novelties, imposes high standards of personal data protection, strengthens the role of the authorities for data protection and foresees the possibility that the competent authority imposes a financial administrative fine for the data subject or data controllers who violate the law, even up to 20.000.000 euros.

Montenegro, a country seeking membership in the EU will comply Law on Personal Data Protection with the provisions of the GDPR.

The provisions of the GDPR do not refer to prevention disclosure and prosecution of perpetrators of criminal offences, but are regulated by Directive EU 2016/680 with which the Law on Personal Data Protection will also be harmonized. For the realization of this task, Ministry of the Interior formed a Working group whose members are two representatives of the Agency.

The GDPR provides for the obligation of the data controllers and processors of personal data to appoint a personal data protection officer who will be the first contact point in the event of a violation of the right.

By adopting the new Law on Personal Data Protection that transposes the provisions of the GDPR, Montenegrin citizens will be ensured the level of protection of personal data that citizens of EU have. 





Official trip report, Berlin 25.11.2016


President of the Council of Agency for Personal Data Protection and Free Access to Information, Mr. Muhamed Gjokaj and member of the Council Mr. Aleksa Ivanović, attended the 60th meeting of International Working Group on Data Protection in Telecommunications, as representatives of the Agency. The meeting was held on 22 – 23 November 2016 in Berlin.