For the preparation of the national legislation, the Slovak legislator implemented the majority of rules from GDPR into the text of the new data protection act. The benefit of such an approach is that any controller (including controllers of data processing operations outside of the scope of GDPR) may rely on the same legal regime for the data processing pursuant to GDPR and pursuant to the Slovak Data Protection Act.
- Specific data protection law and official guidelines
- Substantive and territorial scope (no regulations deviating from the GDPR)
- Definitions
- Legal principles (no regulations deviating from the GDPR)
- Legal basis
- Sensitive data
- Informing requirements
- E-marketing (new regulation by ePrivacy Regulation remains to be seen)
- Online data protection (new regulation by ePrivacy Regulation remains to be seen)
- Automated decision-making (no regulations deviating from the GDPR)
- Rights of data subjects
- Processing on behalf of a controller (no regulations deviating from the GDPR)
- Records of processing activities
- Data security (no regulations deviating from the GDPR)
- Data breaches
- Data protection impact assessment (DPIA)
- Data protection officer
- Certification
- Data transfer (no regulations deviating from the GDPR)
- Supervisory authorities
- Sanctions and penalties
- Data protection for employees
- Archiving, scientific and historical research (no regulations deviating from the GDPR)