{"id":8334,"date":"2025-05-28T10:31:36","date_gmt":"2025-05-28T10:31:36","guid":{"rendered":"https:\/\/dedejlaw.com\/?p=8334"},"modified":"2026-06-09T08:00:13","modified_gmt":"2026-06-09T08:00:13","slug":"ligji-i-ri-per-mbrojtjen-e-te-dhenave-personale-avokatja-denisa-dedej-na-tregon-gjithcka-qe-duhet-te-kemi-parasysh","status":"publish","type":"post","link":"https:\/\/dedejlaw.com\/sq\/ligji-i-ri-per-mbrojtjen-e-te-dhenave-personale-avokatja-denisa-dedej-na-tregon-gjithcka-qe-duhet-te-kemi-parasysh\/","title":{"rendered":"Ligji i ri mbi mbrojtjen e t\u00eb dh\u00ebnave personale \u2013 Avokatja Denisa Dedej na shpjegon gjith\u00e7ka q\u00eb duhet t\u00eb mbajm\u00eb parasysh!"},"content":{"rendered":"

Nga Eni Mu\u00e7a <\/em><\/p>\n

link https:\/\/businessmag.al\/ligji-i-ri-per-mbrojtjen-e-te-dhenave-personale-avokatja-denisa-dedej-na-tregon-gjithcka-qe-duhet-te-kemi-parasysh\/<\/em><\/p>\n

N\u00eb muajin shkurt 2025, ka hyr\u00eb n\u00eb fuqi n\u00eb Shqip\u00ebri Ligji nr. 124\/2024 p\u00ebr Mbrojtjen e t\u00eb Dh\u00ebnave Personale. Ky ligj, i harmonizuar me Rregulloren e P\u00ebrgjithshme p\u00ebr Mbrojtjen e t\u00eb Dh\u00ebnave (GDPR \u2013 BE 679\/2016), vendos k\u00ebrkesa t\u00eb reja p\u00ebr t\u00eb gjith\u00eb subjektet q\u00eb p\u00ebrpunojn\u00eb t\u00eb dh\u00ebna personale, duke p\u00ebrfshir\u00eb bizneset private dhe institucionet publike. P\u00ebr t\u00eb thelluar k\u00ebto aspekte, kemi zhvilluar nj\u00eb intervist\u00eb me avokaten Denisa Dedej.<\/p>\n

\u00c7far\u00eb \u00ebsht\u00eb GDPR dhe cilat jan\u00eb detyrimet q\u00eb rrjedhin prej tij?<\/b><\/p>\n

GDPR (Rregullorja e P\u00ebrgjithshme p\u00ebr Mbrojtjen e t\u00eb Dh\u00ebnave \u2013 BE 2016\/679) \u00ebsht\u00eb rregullorja kryesore e BE-s\u00eb p\u00ebr mbrojtjen e t\u00eb dh\u00ebnave personale dhe zbatohet p\u00ebr t\u00eb gjitha organizatat q\u00eb p\u00ebrpunojn\u00eb t\u00eb dh\u00ebnat e individ\u00ebve brenda BE-s\u00eb, ose q\u00eb ofrojn\u00eb sh\u00ebrbime p\u00ebr individ\u00eb brenda BE-s\u00eb, pavar\u00ebsisht nga vendndodhja e tyre.<\/p>\n

\n
\n
\"\"<\/div>\n

Detyrimet kryesore t\u00eb GDPR<\/p>\n<\/div>\n<\/div>\n

    \n
  • \n

    P\u00ebrpunimi i p\u00ebrgjegjsh\u00ebm i t\u00eb dh\u00ebnave: t\u00eb dh\u00ebnat duhet t\u00eb p\u00ebrpunohen n\u00eb m\u00ebnyr\u00eb t\u00eb ligjshme, transparente dhe vet\u00ebm p\u00ebr q\u00ebllime t\u00eb qarta. Duhet t\u00eb mblidhet vet\u00ebm informacioni i nevojsh\u00ebm, i cili duhet t\u00eb jet\u00eb i sakt\u00eb dhe t\u00eb ruhet n\u00eb m\u00ebnyr\u00eb t\u00eb sigurt.<\/p>\n<\/li>\n

  • \n

    Bazat ligjore p\u00ebr p\u00ebrpunimin: t\u00eb dh\u00ebnat mund t\u00eb p\u00ebrpunohen vet\u00ebm n\u00ebse ekziston nj\u00eb motivacion i vlefsh\u00ebm, si: p\u00eblqimi i subjektit (t\u00eb dh\u00ebnave); nj\u00eb detyrim ligjor; nj\u00eb kontrat\u00eb (p.sh., t\u00eb dh\u00ebnat e klient\u00ebve p\u00ebr nj\u00eb sh\u00ebrbim); interesi publik ose legjitim (p.sh., masat e siguris\u00eb n\u00eb nj\u00eb biznes).<\/p>\n<\/li>\n

  • \n

    T\u00eb drejtat e subjekteve t\u00eb t\u00eb dh\u00ebnave: \u00e7do person ka t\u00eb drejt\u00eb: t\u00eb k\u00ebrkoj\u00eb informacion mbi t\u00eb dh\u00ebnat e veta; t\u00eb korrigjoj\u00eb t\u00eb dh\u00ebnat e pasakta; t\u00eb k\u00ebrkoj\u00eb fshirjen e t\u00eb dh\u00ebnave t\u00eb veta; t\u00eb transferoj\u00eb t\u00eb dh\u00ebnat tek nj\u00eb pal\u00eb tjet\u00ebr; t\u00eb kund\u00ebrshtoj\u00eb p\u00ebrpunimin e t\u00eb dh\u00ebnave p\u00ebr q\u00ebllime specifike.<\/p>\n<\/li>\n

  • \n

    Transparenca: individ\u00ebt duhet t\u00eb informohen n\u00eb m\u00ebnyr\u00eb t\u00eb qart\u00eb dhe t\u00eb kuptueshme se si p\u00ebrdoren t\u00eb dh\u00ebnat e tyre.<\/p>\n<\/li>\n

  • \n

    Siguria: bizneset dhe organizatat duhet t\u00eb marrin masa p\u00ebr t\u00eb mbrojtur t\u00eb dh\u00ebnat nga humbja, vjedhja ose p\u00ebrdorimi i pap\u00ebrshtatsh\u00ebm dhe t\u00eb njoftojn\u00eb autoritetet brenda 72 or\u00ebve n\u00eb rast t\u00eb shkeljes s\u00eb siguris\u00eb.<\/p>\n<\/li>\n

  • \n

    Em\u00ebrimi i nj\u00eb DPO (Oficer p\u00ebr Mbrojtjen e t\u00eb Dh\u00ebnave): disa organizata, ve\u00e7an\u00ebrisht ato q\u00eb p\u00ebrpunojn\u00eb sasi t\u00eb m\u00ebdha t\u00eb dh\u00ebnash personale, duhet t\u00eb em\u00ebrojn\u00eb nj\u00eb ekspert p\u00ebr t\u00eb mbik\u00ebqyrur p\u00ebrputhshm\u00ebrin\u00eb me GDPR.<\/p>\n<\/li>\n

  • \n

    Transferimi i t\u00eb dh\u00ebnave jasht\u00eb BE-s\u00eb: \u00ebsht\u00eb i ndaluar, p\u00ebrve\u00e7 rasteve kur vendi prit\u00ebs disponon masa adekuate mbrojt\u00ebse.<\/p>\n<\/li>\n

  • \n

    Gjobat dhe sanksionet: shkeljet e GDPR mund t\u00eb d\u00ebnohen me gjoba deri n\u00eb 20 milion\u00eb euro ose 4% t\u00eb xhiros vjetore globale t\u00eb kompanis\u00eb.<\/p>\n<\/li>\n<\/ul>\n

    <\/div>\n

    2. Ekonomia shqiptare, n\u00eb shum\u00eb aspekte, po punon p\u00ebr t\u2019u harmonizuar me rregulloret e BE-s\u00eb n\u00eb kuad\u00ebr t\u00eb procesit t\u00eb integrimit t\u00eb vendit n\u00eb Bashkimin Evropian. A do t\u00eb thot\u00eb kjo se duhet t\u00eb ket\u00eb ndryshime edhe n\u00eb p\u00ebrshtatjen e ligjit p\u00ebr Mbrojtjen e t\u00eb Dh\u00ebnave?<\/strong><\/p>\n

    Ligji nr. 124\/2024 p\u00ebr mbrojtjen e t\u00eb dh\u00ebnave personale ka hyr\u00eb n\u00eb fuqi n\u00eb shkurt t\u00eb vitit 2025 dhe p\u00ebrfaq\u00ebson nj\u00eb hap t\u00eb r\u00ebnd\u00ebsish\u00ebm p\u00ebr harmonizimin e legjislacionit shqiptar me rregullat e GDPR-s\u00eb s\u00eb Bashkimit Evropian.<\/p>\n

    Ky ligj sjell nj\u00eb rritje t\u00eb mbrojtjes s\u00eb t\u00eb dh\u00ebnave personale, duke forcuar t\u00eb drejtat e individ\u00ebve dhe duke shtuar p\u00ebrgjegj\u00ebsit\u00eb e organizatave q\u00eb p\u00ebrpunojn\u00eb t\u00eb dh\u00ebna. Ai p\u00ebrfshin detyrime m\u00eb strikte p\u00ebr sigurin\u00eb e t\u00eb dh\u00ebnave dhe p\u00ebr p\u00ebrputhshm\u00ebrin\u00eb me standardet nd\u00ebrkomb\u00ebtare, duke i ofruar Shqip\u00ebris\u00eb mund\u00ebsin\u00eb p\u00ebr t\u00eb p\u00ebrmbushur k\u00ebrkesat e BE-s\u00eb dhe p\u00ebr t\u00eb mund\u00ebsuar transferimin e t\u00eb dh\u00ebnave n\u00eb nj\u00eb mjedis nd\u00ebrkomb\u00ebtar t\u00eb sigurt.<\/p>\n

    3. N\u00ebse po, cil\u00ebt jan\u00eb hapat e m\u00ebtejsh\u00ebm q\u00eb duhet t\u00eb nd\u00ebrmerren?<\/strong><\/p>\n

    Pas hyrjes n\u00eb fuqi t\u00eb Ligjit nr. 124\/2024 p\u00ebr mbrojtjen e t\u00eb dh\u00ebnave personale, \u00ebsht\u00eb e nevojshme t\u00eb nd\u00ebrmerren disa hapa t\u00eb r\u00ebnd\u00ebsish\u00ebm p\u00ebr t\u00eb garantuar p\u00ebrputhshm\u00ebrin\u00eb dhe zbatimin e tij efektiv. Ja disa nga hapat kryesor\u00eb:<\/p>\n

      \n
    • \n

      P\u00ebrdit\u00ebsimi i politikave dhe procedurave t\u00eb brendshme: Organizatat duhet t\u00eb rivler\u00ebsojn\u00eb dhe p\u00ebrdit\u00ebsojn\u00eb politikat dhe procedurat e tyre p\u00ebr mbrojtjen e t\u00eb dh\u00ebnave, p\u00ebr t'i harmonizuar ato me k\u00ebrkesat e ligjit t\u00eb ri. Kjo mund t\u00eb p\u00ebrfshij\u00eb krijimin e procedurave p\u00ebr mbledhjen, p\u00ebrpunimin, ruajtjen dhe fshirjen e t\u00eb dh\u00ebnave personale.<\/p>\n<\/li>\n

    • \n

      Trajnimi i personelit: \u00cbsht\u00eb e r\u00ebnd\u00ebsishme q\u00eb t\u00eb gjith\u00eb punonj\u00ebsit, p\u00ebrfshir\u00eb menaxher\u00ebt dhe drejtuesit, t\u00eb trajnohen p\u00ebr t\u00eb kuptuar dhe zbatuar detyrimet ligjore. Kjo mund t\u00eb p\u00ebrfshij\u00eb trajnimin lidhur me t\u00eb drejtat e individ\u00ebve, proceset e k\u00ebrkes\u00ebs s\u00eb t\u00eb dh\u00ebnave dhe m\u00ebnyrat e menaxhimit t\u00eb shkeljeve t\u00eb mundshme.<\/p>\n<\/li>\n

    • \n

      Em\u00ebrimi i nj\u00eb DPO (Oficer p\u00ebr Mbrojtjen e t\u00eb Dh\u00ebnave): Organizatat q\u00eb p\u00ebrpunojn\u00eb t\u00eb dh\u00ebna n\u00eb shkall\u00eb t\u00eb gjer\u00eb, ose q\u00eb kryejn\u00eb aktivitete q\u00eb k\u00ebrkojn\u00eb mbrojtjen e t\u00eb dh\u00ebnave sensitive, duhet t\u00eb em\u00ebrojn\u00eb nj\u00eb Oficer p\u00ebr Mbrojtjen e t\u00eb Dh\u00ebnave (DPO), i cili do t\u00eb ket\u00eb p\u00ebrgjegj\u00ebsin\u00eb p\u00ebr t\u00eb monitoruar zbatimin e ligjit dhe p\u00ebr t\u00eb k\u00ebshilluar organizat\u00ebn n\u00eb lidhje me praktikat e mbrojtjes s\u00eb t\u00eb dh\u00ebnave. (Kjo vlen p\u00ebr nd\u00ebrmarrjet q\u00eb ofrojn\u00eb sh\u00ebrbime financiare, bankat, kompanit\u00eb e sigurimeve, spitalet, kompanit\u00eb q\u00eb p\u00ebrpunojn\u00eb informacione sh\u00ebndet\u00ebsore, kompanit\u00eb q\u00eb p\u00ebrpunojn\u00eb t\u00eb dh\u00ebnat personale t\u00eb shum\u00eb individ\u00ebve si platformat e marketingut dixhital, kompanit\u00eb q\u00eb menaxhojn\u00eb t\u00eb dh\u00ebnat e punonj\u00ebsve, etj.)<\/p>\n<\/li>\n

    • \n

      Rishikimi i marr\u00ebveshjeve me pal\u00eb t\u00eb treta: \u00c7do kontrat\u00eb q\u00eb parashikon ndarjen e t\u00eb dh\u00ebnave me pal\u00eb t\u00eb treta duhet t\u00eb rishikohet dhe t\u00eb p\u00ebrdit\u00ebsohet, p\u00ebr t\u00eb garantuar se edhe k\u00ebto subjekte respektojn\u00eb standardet e mbrojtjes s\u00eb t\u00eb dh\u00ebnave, duke p\u00ebrfshir\u00eb marr\u00ebveshjet p\u00ebr p\u00ebrpunimin e t\u00eb dh\u00ebnave.<\/p>\n<\/li>\n

    • \n

      Krijimi i nj\u00eb procedure p\u00ebr raportimin e shkeljeve: Ligji k\u00ebrkon q\u00eb shkeljet e t\u00eb dh\u00ebnave t\u00eb raportohen brenda 72 or\u00ebve. Kjo do t\u00eb k\u00ebrkoj\u00eb krijimin e nj\u00eb procedure t\u00eb qart\u00eb dhe efikase p\u00ebr t\u00eb identifikuar, regjistruar dhe raportuar \u00e7do incident t\u00eb mundsh\u00ebm sigurie q\u00eb ndikon te t\u00eb dh\u00ebnat personale.<\/p>\n<\/li>\n

    • \n

      Monitorimi dhe mbik\u00ebqyrja e vazhdueshme: Pas zbatimit t\u00eb ligjit, \u00ebsht\u00eb e r\u00ebnd\u00ebsishme q\u00eb praktikat e p\u00ebrpunimit t\u00eb t\u00eb dh\u00ebnave t\u00eb monitorohen vazhdimisht dhe t\u00eb merren masa parandaluese n\u00eb rast se identifikohen risqe potenciale p\u00ebr mbrojtjen e t\u00eb dh\u00ebnave personale.<\/p>\n<\/li>\n<\/ul>\n

      <\/b>4. \u00c7far\u00eb duhet t\u00eb mbaj\u00eb parasysh sot nj\u00eb kompani q\u00eb ruan t\u00eb dh\u00ebnat e klient\u00ebve dhe p\u00ebrdoruesve n\u00eb nj\u00eb baz\u00eb t\u00eb dh\u00ebnash, nga adresa e emailit deri te gjurm\u00ebt e pagesave online? \u00c7far\u00eb masash duhet t\u00eb adoptoj\u00eb p\u00ebr t\u00eb qen\u00eb \"e mbrojtur\" ligj\u00ebrisht?<\/strong><\/p>\n

      Nj\u00eb kompani q\u00eb ruan t\u00eb dh\u00ebnat e klient\u00ebve duhet t\u00eb adoptoj\u00eb masat e m\u00ebposhtme p\u00ebr t\u00eb qen\u00eb n\u00eb p\u00ebrputhje me Ligjin p\u00ebr Mbrojtjen e t\u00eb Dh\u00ebnave dhe GDPR-n\u00eb:<\/p>\n