In light of the new EU data protection scheme, shaped by the GDPR, Serbia has enacted a new Data Protection Law on 9 November 2018, with its’ applicability postponed for 21 August 2019.

The new law was long-awaited: it has been 10 years since the existing law was passed, which was even at that moment already outdated (e.g. it recognized only consent in the written form and almost completely restricted data transfers to non-European countries).