The protection of personal data and it’s processing by external staff
Various companies gather large quantities of personal data in connection with their business, which are analyzed for the purposes of their business. The question arises, what happens with this personal data, or what is the company undertaking to adequately protect the personal data and prevent unauthorized people to access it? Usually the company itself protects the personal data it processes, but ever more often it happens that the company outsources another company, which is registered for such activities and meets the requirements as set out it the Personal Data Protection Act, to protect the personal data. In the Republic of Slovenia the legal framework for the protection of personal data is the Personal Data Protection Act, which entered into force in the year 1999 in it’s basic version (ZVOP) and was later substantially amended in 2007. Historically, the need for the protection of privacy has arisen because of various insults, attacks, eavesdropping and the like. The reason that this right was stipulated and enforced in legal systems so late is that the majority of modern violations of privacy, such as wiretapping, eavesdropping with microphones and electronic amplifiers, data collection, sharing and storing information with video cameras, computers etc., only became possible with the rise of new technologies. Before these were invented, an individual had reason to believe that nobody can eavesdrop on him in a private space.