Russia Federal Law on Personal Data (152-FZ)
Russia's Federal Law No. 152-FZ on Personal Data (2006, as amended through 2023) regulates the processing of personal data in the Russian Federation. Roskomnadzor (Federal Service for Supervision of Communications) oversees compliance. Key requirements include data localisation (personal data of Russian citizens must be stored on servers in Russia), consent management, and breach notification. Significant amendments in 2022-2023 strengthened enforcement and increased penalties.
Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.
Framework Domains (8)
Breach and Enforcement
| Code | Title |
|---|---|
| RUSPD-8 | Breach Notification, RKN Inspections, Sanctions |
Cross-Border and Localization
| Code | Title |
|---|---|
| RUSPD-6 | Cross-Border Transfer and Data Localization (Article 18.5) |
Governance
| Code | Title |
|---|---|
| RUSPD-7 | Roskomnadzor Registration, Operator Notification, Governance |
High-Risk Processing
| Code | Title |
|---|---|
| RUSPD-4 | Special Categories, Biometric Data |
Individual Rights
| Code | Title |
|---|---|
| RUSPD-3 | Data Subject Rights (Access, Correction, Object, Block/Destroy) |
Lawful Basis and Consent
| Code | Title |
|---|---|
| RUSPD-2 | Lawful Basis, Consent, Notice |
Scope and Principles
| Code | Title |
|---|---|
| RUSPD-1 | Scope, Definitions, Principles under 152-FZ |
Security
| Code | Title |
|---|---|
| RUSPD-5 | Security of Processing, Confidentiality, FSB/FSTEC Requirements |
Your Compliance Coverage
If you comply with Russia Federal Law on Personal Data (152-FZ), you already cover:
FTC GLBA Safeguards Rule (16 CFR Part 314)
38%
3 controls mapped
Compare →MARS-E
38%
3 controls mapped
Compare →FedRAMP Rev 5
38%
3 controls mapped
Compare →+ 100 more: Florida Digital Bill of Rights (FDBR) (38%), ITU-T X.805 - Security Architecture for End-to-End Communications (38%)
See all 103 mapped frameworks ↓Maps to 103 other frameworks
Frequently Asked Questions
What is Russia Federal Law on Personal Data (152-FZ)?
Russia Federal Law on Personal Data (152-FZ) is a compliance framework from Russia with 8 domains and 8 controls. Russia's Federal Law No. 152-FZ on Personal Data (2006, as amended through 2023) regulates the processing of personal data in the Russian Federation. Roskomnadzor (Federal Service for Supervision of Communications) oversees compliance. Key requirements include data localisation (personal data of Russian citizens must be stored on servers in Russia), consent management, and breach notification. Significant amendments in 2022-2023 strengthened enforcement and increased penalties. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.
How many controls does Russia Federal Law on Personal Data (152-FZ) have?
Russia Federal Law on Personal Data (152-FZ) has 8 controls organised across 8 domains. The largest domains are Breach and Enforcement (1 controls), Cross-Border and Localization (1 controls), Governance (1 controls). Each control defines specific requirements that organisations must implement to achieve compliance.
What frameworks does Russia Federal Law on Personal Data (152-FZ) map to?
Russia Federal Law on Personal Data (152-FZ) maps to 103 other compliance frameworks. The top mapping partners are FTC GLBA Safeguards Rule (16 CFR Part 314) (38% coverage), MARS-E (38% coverage), FedRAMP Rev 5 (38% coverage). Use our comparison tool to explore control-level mappings between frameworks.
How do I get started with Russia Federal Law on Personal Data (152-FZ) compliance?
Start your Russia Federal Law on Personal Data (152-FZ) compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about Russia Federal Law on Personal Data (152-FZ) requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 8 controls and track your progress.
Start Your Compliance Journey
Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 723 frameworks.
Get Started Free →Free forever — no credit card required