Anyone can submit a report to the Information Commissioner if they feel that someone is violating the EU General Regulation or the Personal Data Protection Act (in the part that is still in use). The Information Commissioner then performs the necessary inspection procedures ex officio on the basis of the Inspection Act.
You can send the report by e-mail to gp.ip(at)ip-rs.si or by ordinary mail to the address indicated on the contact information page .
We recommend you send the report with the appropriate form.
The data you provide will only be used by the IC in the extent necessary for the exercise of their legal competences, tasks or obligations, such as the collection of applications, questions and comments, their resolution and storage (archiving). IC will not forward your information gained from your application, your question or remark to others, unless provided otherwise by the law.
We will try to provide you with an answer in the shortest time possible.
What can I do if a violation had already occurred?
An individual who determines that his rights set out in the General Regulation of the EU or the Personal Data Protection Act, they can file a lawsuit to request judicial protection until the violation lasts. If the violation has already ceased, an individual may file a lawsuit to establish that the violation had existed, if no other judicial protection is provided in relation with the violation. The lawsuit shall be decided by the competent court in accordance with the provisions of the Administrative Dispute Act unless provided otherwise by the Personal Data Protection Act. The lawsuit procedure is urgent and a priority, which means that the court must carry it out in the shortest time possible. In this lawsuit procedure, the public is generally excluded. An individual may also request from the court to impose a decision for the personal data processor and prevent him from processing any conflicting personal data. If damage was caused to the individual, he may request compensation for damages from the tortfeasor in accordance with the law.
The Personal Data Protection Act contains a number of penal provisions that determine fines (financial penalties) for cases of violations of individual provisions of the law, and thusly indirectly protect individuals from violations and misuse of their personal data. The rights of the individual are directly or indirectly protected by statutory provisions on inspection over the implementation of provisions on the protection of personal data. The Penal Code contains a number of provisions prohibiting such encroachments on individuals' privacy.