Personal information is used in public administration, medicine and education, in shopping and traveling, and when using the Internet and mobile phone services constantly. However, most people are unaware of the risks associated with the processing of personal data and the right to privacy. They often do not know what to do in case of violation of their rights and are unaware of the role of national structures for the protection of personal data.
In order to raise awareness of this issue in the world, January 28, 2007 has been marked as International Data Protection Day at the initiative of the Council of Europe. The main purpose of this day is to ensure that Internet users follow the rules of conduct that ensure the security of virtual and real lives, to educate people about the risks associated with the protection of personal data, the rights to personal data and how to implement them.
Today, on January 28, 1981, the Council of Europe signed the Convention for the Protection of Persons in connection with the Automated Processing of Personal Data. The Convention is the first international document defining human rights protection mechanisms and defining the term "personal data".
Azerbaijan ratified the Convention for the Protection of Persons in connection with the Automated Processing of Personal Data in 2009 with relevant statements. In 2010, a separate legal document on the regulation of personal data at the national level - the Law of the Republic of Azerbaijan "On Personal Data" was adopted.
In accordance with the Law of the Republic of Azerbaijan "On Personal Data", as well as other legislative acts related to the protection of personal data, personal data must be protected by the owner, operator and users who have access to this information from the moment of collection. The subject has the right to appeal to the relevant executive authority or court in case of violation of his rights as a result of illegal collection and processing of personal data, failure to ensure its protection, as well as non-compliance with the requirements of this law, as well as to claim compensation for moral and material damage.
Measures are being taken in various countries around the world to create a legal framework for the collection and processing of personal data and to constantly improve it. On May 25, 2018, the European Union's General Data Protection Regulations (GDPR) came into force. Legal reforms are being carried out in our country to protect personal data, taking into account international experience.
The Institute of Information Technology of ANAS has been conducting research on the protection of personal data for many years within the problems of ensuring information security.
The V Republican Conference "Actual multidisciplinary scientific-practical problems of information security" held at the institute in 2019 is dedicated to the problems of ensuring and protecting the security of personal data. The conference discussed issues such as multidisciplinary issues of personal data security, the formation of a culture of information security in society, reliable management of personal data security.