The Commissioner for Information of Public Importance and; Personal Data Protection completed the extraordinary inspection initiated ex officio, based on a letter from the Republic Geodetic Authority regarding a hacker attack on their information system.
During the extraordinary inspection process, it was established that the Data Controller's information system consists of two segments, application servers that serve to launch system applications and another segment of the information system that stores databases and data, and that the object of the hacker attack was only application servers of the Information system of the Republic Geodetic Authority.
Since the object of the hacker attack were not the servers on which the databases with personal and real estate data are being stored, nor the E-Cadastre, in the extraordinary inspection it was established that there was no violation of personal data in the sense of Article 52 of the Law on Personal Data Protection, that is, that there are no irregularities in the actions of the Data Controller in this specific case.