In a significant development for the personal data protection landscape in Albania, the Council of Ministers has adopted Decision No. 347, dated 19 June 2025, establishing a new state database titled “Electronic Registry of Data Protection Officers” (DPO Registry). This marks a major milestone in the country’s efforts to align its data governance infrastructure with international and European standards, in line with the newly reformed legal framework on personal data protection.
What is the RENMDHP?
The DPO Registry is a centralised and publicly accessible electronic registry designed to store structured information about Data Protection Officers (DPOs) appointed by data controllers and processors across public and private sectors. The registry is managed by the Commissioner for the Right to Information and Protection of Personal Data (Commissioner), who also ensures the interoperability and administration of this platform.
The registry includes both primary data, such as the DPO’s contact details, place of work, training and certification records, and secondary data retrieved automatically from other national registries (e.g., civil status, commercial registry, and registry of nonprofit organisations).
Why It Matters
The creation of the DPO Registry reflects a growing recognition of the role DPOs play in ensuring compliance with data protection laws. By making this information transparent and easily accessible, the registry:
- Empowers data subjects by enabling them to identify and contact their respective DPOs;
- Supports accountability among controllers and processors;
- Enhances institutional coordination for data protection oversight;
- Facilitates monitoring, training, and capacity building initiatives for DPOs.
Who Can Access the Registry?
- Citizens can view registry entries via the Commissioner’s official website, promoting transparency and access to information.
- DPOs and data controllers/processors have the same reader-level access.
- Commissioners’ staff operate with administrative access, as governed by internal regulations on data security.
A Structural Shift
With the adoption of this decision, the previous registry, initially designed only for data controllers, is officially replaced. DPO Registry now serves as the primary national tool for tracking and overseeing DPO appointments and qualifications.
What’s Next?
DPO Registry is expected to evolve technologically, with software and hardware updates aligned with European best practices. This dynamic registry lays the groundwork for a more robust, transparent, and accountable data protection ecosystem in Albania.
The information in this document does not constitute legal advice on any particular matter and is provided for general informational purposes only.
