1. Law on Free Access to Information of Public Importance (The Official Gazette of the Republic of Serbia, number 120/04, 54/07, 104/09, 36/210 and 105/21)
- Monitor the respect of obligations by the public authorities regulated by this Law and report to the public and National Assembly thereof;
- Initiate the preparation or change of regulations for the implementation and promotion of the right to access information of public importance;
- Propose to public authorities measures to be taken to improve their work regulated by this Law;
- Undertake necessary measures to train employees of state bodies and to inform the employees of their obligations regarding the rights to access information of public importance with the aim of their effective implementation of this Law;
- Consider complaints against the decisions of public authorities that violate the rights regulated by this Law;
- Inform the public of the content of this Law and the rights regulated by this Law;
- The Commissioner may initiate the procedure for the evaluation of the constitutionality and legality of the law and other general documents;
- The Commissioner shall publish and update the instruction booklet with practical instructions for an efficient exercising of the rights regulated by this Law in Serbian language, and also in other languages, determined in accordance with the Law as official languages;
- Through the press, electronic media, Internet, public workshops and in other ways, the Commissioner shall inform the public about the contents of the booklet on the application of the Law;
- The Commissioner shall publish instruction according to which is published in the Information Booklet on the work of the government body.
- Perform other duties stipulated by this Law.
2. Law on personal data protection (The Official Gazette of the Republic of Serbia, number 87/18)
The Commissioner shall:
1) supervise and ensure the application of this Law in compliance with their powers;
2) take care of the promotion of public awareness of the risks, rules, safeguards, and rights in relation to processing, in particular where it is a case of processing of data on an underage person;
3) provide opinions to the National Assembly, Government, other public authorities and organizations, in compliance with the regulations, on the statutory and other measures relating to the protection of rights and freedoms of natural persons with regard to processing;
4) take care of the promotion of the awareness of controllers and processors of their obligations prescribed by this Law;
5) at the request of the data subject, provide information on their rights laid down by this Law;
6) handle complaints of the data subjects, determine whether or not there has been an infringement of this Law, and inform the complainant of the progress and the outcomes of the proceeding conducted by them in compliance with Article 82 of this Law;
7) cooperate with supervisory authorities of other states with regard to the protection of personal data, in particular in the exchange of information and in providing mutual legal assistance;
8) perform inspection supervision over the application of this Law, in compliance with this Law and by mutatis mutandis application of the law regulating inspection supervision, and file motions to initiate misdemeanor proceedings where they determine infringements of this Law, in compliance with the law regulating misdemeanors;
9) monitor the development of information and communication technology, as well as business and other practices of significance for the protection of personal data;
10) draw up standard contractual clauses referred to in Article 45, paragraph 11 of this Law;
11) draw up and make public the lists referred to in Article 54, paragraph 5 of this Law;
12) provide opinions in writing as referred to in Article 55, paragraph 4 of this Law;
13) maintain records of the data protection officers referred to in Article 56, paragraph 11 of this Law;
14) encourage drawing up of the codes of conduct pursuant to Article 59, paragraph 1 of this Law and provide opinions and consents to the codes of conduct in compliance with Article 59, paragraph 5 of this Law;
15) carry out the tasks pursuant to Article 60 of this Law;
16) encourage issuing of certificates for the protection of personal data and of relevant seals and marks in compliance with Article 61, paragraph 1 and prescribe criteria for certification in compliance with Article 61, paragraph 5 of this Law;
17) carry out periodic reviews of certificates in compliance with Article 61, paragraph 8 of this Law;
18) prescribe and publish criteria for the accreditation of a certification body and carry out the tasks in compliance with Article 62 of this Law;
19) authorize provisions of a contract or an agreement referred to in Article 65, paragraph 3 of this Law;
20) approve binding corporate rules in compliance with Article 67 of this Law;
21) maintain internal records of infringements of this Law and of measures taken in carrying out inspection supervision in compliance with Article 79, paragraph 2 of this Law;
22) carry out other tasks specified by this Law.