Home

About us

Our team

Legal insights

Career

Contact

Privacy and Data Protection

Compliance, Governance, and Regulatory Confidence

Our Privacy and Data Protection practice helps companies navigate complex data-processing obligations under Serbian law, GDPR and sector-specific regulations. We support organisations in structuring compliant data flows, managing risk, protecting user rights and responding to regulatory scrutiny with precision and clarity.

We advise technology companies, digital platforms, international groups and businesses handling large volumes of personal data. Whether implementing privacy frameworks, drafting documentation or responding to data breaches, we provide business-oriented solutions that ensure compliance without disrupting operations.

Our Services

GDPR & Local Compliance

  • GDPR compliance audits and gap assessments
  • Mapping of data flows and identification of high-risk processing
  • Drafting and updating privacy policies, cookie policies and internal rules
  • Records of Processing Activities (ROPA) and DPIA assessments
  • Cross-border data transfers and transfer impact assessments

Contracts & Documentation

  • Data Processing Agreements (DPA)
  • Joint controllership and controller–processor arrangements
  • Standard contractual clauses (SCCs) and supplementary measures
  • Outsourcing, cloud and vendor-management documentation
  • Employee data and internal HR privacy documentation

Data Governance & Risk Management

  • Internal data governance frameworks
  • Cybersecurity and incident-response procedures
  • Access control policies and retention schedules
  • Whistle-blower systems and internal reporting channels
  • Advisory on anonymisation, pseudonymisation and data minimisation

Data Breach Response

  • Assessment of personal data breaches and impact analysis
  • Notifications to the Commissioner for Personal Data Protection
  • Notifications to affected individuals
  • Crisis management, communication strategy and remediation steps
  • Coordination with IT security teams and forensic experts

Sector-Specific Privacy

  • Fintech, banking and payment services
  • Healthcare and medical-data compliance
  • Telecommunications, e-commerce and digital advertising
  • Employment and workplace-monitoring compliance
  • AI, machine learning and automated decision-making obligations

Regulatory & Enforcement

  • Representation before the Commissioner for Personal Data Protection
  • Assistance during inspections and supervisory procedures
  • Defence in enforcement actions and administrative proceedings
  • Preparation of legal opinions and compliance reports

Other Practice Areas

Legal Insights

Explore more articles
Need legal support? Get in touch — our team is here to guide you every step of the way. When the law gets complicated, we make things clear — and get things done.

Email:

inquiry@injac.rs

Tel:

+381 11 2458 945

Address:

Makenzijeva 17,

11000 Belgrade - Serbia

Contact Us:

Navigating Serbia’s dynamic business environment requires sharp legal insight and reliable support. Injac Attorneys at Law delivers tailored legal solutions across Corporate Law, M&A, Dispute Resolution, Employment, IP, Real Estate, Data Protection, and Tax. Count on us as your trusted legal partner in every transaction.

Home

About Us

Our Team

Practice Areas

Legal Insights

Career

Contact

Email:

inquiry@injac.rs

Tel:

+381 11 2458 945

Address:

Makenzijeva 17,

11000 Belgrade - Serbia

Linkedin

© 2025 Injac. All rights reserved.

Privacy Policy

Terms of Service