Who is the Data Protection Authority in Czech Republic?

The Data Protection Authority in Czech Republic is the Úřad pro ochranu osobních údajů (ÚOOÚ). You can reach them at https://www.uoou.cz/

How can I check if my Czech Republic website is GDPR compliant?

You can use PrivacyChecker's free GDPR scanner to instantly audit your website. It checks cookie consent, privacy policy, security headers, and 25+ compliance points relevant to Czech Republic's data protection requirements.

PrivacyChecker

🇨🇿

GDPR Compliance in Czech Republic

Česká republika · Act on Personal Data Processing

TL;DR

Websites targeting users in Czech Republic must comply with GDPR as implemented locally through the Act on Personal Data Processing. The supervisory authority is the Úřad pro ochranu osobních údajů (ÚOOÚ). Use our free scanner below to check your website instantly.

Check your website's Czech Republic compliance now

Free audit — 25+ automated checks in 60 seconds

Scan My Website Free →

Data Protection Authority

Authority

Úřad pro ochranu osobních údajů (ÚOOÚ)

Website

www.uoou.cz ↗

Local Law

Act on Personal Data Processing

Language

Czech

Population

10.8 million

Key Requirements for Czech Republic

Cookie consent required before non-essential tracking

DPO required for public bodies and large-scale processors

Data breach notification within 72 hours

Special provisions for journalist data processing

Mandatory records of processing activities

Consumer protection integrated with data protection

What Makes Czech Republic Different?

The Czech DPA has focused on public sector compliance and has issued guidelines specifically for small and medium enterprises on GDPR compliance.

Czech Republic Website Compliance Checklist

☐

Cookie consent banner that requires opt-in before non-essential cookies

☐

Clear identification of data controller and contact details

☐

Data Processing Agreement (DPA) with all third-party processors

☐

Lawful basis documented for each processing activity

☐

Data Subject Access Request (DSAR) process in place

☐

Data breach notification procedure compliant with 72-hour rule

☐

Data Protection Impact Assessment for high-risk processing

☐

International data transfer mechanisms documented (SCCs, adequacy decisions)

☐

Records of processing activities (ROPA) maintained

Frequently Asked Questions

What are the GDPR requirements for websites in Czech Republic?

In Czech Republic, websites must comply with GDPR as implemented by the Act on Personal Data Processing. Key requirements include obtaining explicit consent before setting non-essential cookies, providing a clear privacy policy, appointing a DPO when required, and notifying data breaches within 72 hours to the Úřad pro ochranu osobních údajů (ÚOOÚ).

Who enforces GDPR in Czech Republic?

The Úřad pro ochranu osobních údajů (ÚOOÚ) is the supervisory authority responsible for enforcing data protection laws in Czech Republic. They can investigate complaints, conduct audits, and issue fines up to €20 million or 4% of annual global turnover.

How can I check if my website complies with Czech Republic data protection laws?

Use PrivacyChecker's free scanner to perform an instant audit of your website. Our tool checks 25+ compliance points including cookie consent, privacy policy presence, security headers, tracker detection, and more — all relevant to Czech Republic's GDPR requirements.

Is your website compliant in Czech Republic?

Find out in 60 seconds with our free GDPR scanner

Run Free Audit →

GDPR Compliance in Other Countries

🇩🇪Germany 🇫🇷France 🇳🇱Netherlands 🇪🇸Spain 🇮🇹Italy 🇧🇪Belgium 🇦🇹Austria 🇵🇱Poland