Focus privacy, over 1,000 complaints in one year AIP reports increasing cases

Commissioner for Information and Privateship Agency (AIP), Krenare Sogojevo-Dermaku, introduced it to the Kosovo Parliament before the Commission for Security Affairs and Defence Report the institution's 2025 work report, stressing commitment to personal data protection and access to public documents. According to the announcement, Agency for Information and Private (AIP) [...]
Commissioner for Information and Private Agency (AIP), Krenare Sogojevo-Dermaku, introduced him to the Kosovo Assembly before the Commission for Security and Defence Affairs. Institute work report for 2025, stressing commitment to personal data protection and access to public documents.
According to the report, the Agency for Information and Privateness (AIP) has exercised its field of activity objectively and professionally, in handling addressed complaints, offering advice and opinions for public, private institutions, citizens and other interest groups.
During 2025, AIP has accepted a total of 1,085 complaints from institutions, organisations, media and citizens. In the area of access to public documents, 927 complaints have been addressed, while “832 complaints have ended with administrative decisions, while 175 complaints were filed for 2026”.
Meanwhile, for the protection of personal data, the agency has accepted 158 complaints, where “139 complaints ended with administrative decisions, while nineteen complaints were filed for 2026”.
In office of law enforcement surveillance, The AIP has conducted 367 inspections, of which 226 under official duty and 141 based on complaints.
The agency has also highlighted efforts to approach European standards, suggesting that “has continued actions to finalise the Law for the Protection of Personal Data in Law Implementation Institutions, in line with the (BE) 2016/680”.
In terms of the consultations, 58 legal advice has been offered to the public, private and citizens, while awareness activities have been numerous.
“during the January (January 2025) period, more than 80 information activities have been carried out and more than 807 participants” have been trained, said the report.
Also, the Agency has finalised four personal data protection guides, including online privacy and the health sector, and has taken steps towards digitisation through launching the CMS system for case management.
In the international plan, the AIP has realised over 20 activities and participated actively in European mechanisms, including European Data Protection Board.
According to the European Commission's report for 2024, “Information and Privateness Agency has been working independently and efficiently”, while legislation in this area is in line with European standards.
The annual report for 2025 is expected to be reviewed and approved by the Assembly of Kosovo.
Full announcement, no interference:
Information and Private Agency Commissioner Crenare Sogojevo- Dermaku has presented on April 07th 2026 in the Kosovo Assembly, the Commission for Security and Defence Affairs, respectively.
The Information and Private Agency ( AIP) has exercised its field of activity objectively and professionally, in handling addressed complaints, offering advice and opinions for public, private institutions, citizens and other interest groups. Through professional expertise, the Agency has provided support to public and private institutions in drafting sub-legal acts and internal regulation for personal data protection and privacy policies.
In meeting its legal mandate for implementing the right to protect personal data and access to the public document, during the January 2025 reporting period, the agency has accepted a total of thousands and eighty-five, complaints addressed by public and private institutions, non-government organisations, Media, Citizens and other interest groups. In implementing access to public documents, the agency during 2025 has accepted a total of nine hundred twenty-seven (927) complaints, and eight ten (80) were borne from the previous year. From this number, 832 complaints have ended with administrative decisions, while 175 complaints have been filed for 2026.
In implementing the right to protect personal data, the Agency during 2025 has accepted a total of one hundred fifty-eight (eight) complaints, and twelve (12) borne from the previous year. Of this number, a hundred and thirty and nine (139) complaints have ended with administrative decisions, while nineteen complaints were filed for 2026.
In office of law enforcement monitoring and ensuring citizens' personal data protection during the reporting period, the agency has realised 367 inspections. 226 inspections have been conducted under official duty, while 141 inspections have been conducted according to complaints addressed at the Agency.
In order to harmonise the legal framework with European standards, the Agency has continued actions to finalise the Law for the Protection of Personal Data in the Law Implementation Institutions, in line with the (BE) 2016/680 European Parliament and Council (recognised as Law Enforment Directed # LED).
The agency has offered a total of fifty-eight (58) legal advice, where twenty-nine (29) councils have been issued for institutions from the public sector, Seventeen (17) for institutions from the private sector, and twelve (12) data subject councils.
The Agency's activities in 2025 have focused on deepening co-operation with public and private institutions, nongovernmental organisations and the media sector, promoting the right to protect personal data and access to public documents through training, workers and responsible campaigns with the aim of promoting, personal data protection rights and access to public documents.
In this context, over January 2025, over 80 information activities have been realised and more than 807 participants from the public and private sector, including public officials, controllers and representatives from other interest groups, health sector, banking system, social centres, nongovernmental organisations, media and other subjects have been trained.
Through professional expertise and with the aim of supporting controllers and processors from the public and private sector, in meeting legal obligations and standardising access during personal data processing, in line with principles of accountability, proportionality and transparency, during this period, the Agency has finalised and published four (4) Personal Data Protection Guides.
The agency has taken concrete steps and actions in functioning the digitalisation process, launching the CMS System of Disaster Management project, which directly affects improving service delivery to various interest parties addressed to the Agency, especially in providing better, transparent and more efficient services to citizens.
Within information and awareness, in the reporting period, the Agency has prepared 4 guidelines for personal data protection
A Guide to Internet Privacy
Guide for legal data processing
) Guides for the assessment of impact on data protection
Health Sector Guides
In commitments to strengthen Kosovo's role of state in the international arena, the Agency has realised over 20 international activities with active participation in the European Board for Protection of Personal Data ( EDPP) forums, conferences, Workers Groups
Active attendance of four (4) EDB Board meetings
Turnout on four (4) International - character Work Groups
Organiser of two (2) international conferences with over ninety (90) representatives of authorities for the protection of personal data at the regional, international and global level.
Kosovo's 2024 European Commission report on the assessment of work for the Information and Private Agency has stressed that
The Information and Private Agency has worked independently and efficiently.
Personal data protection laws are in line with GDPR and LED.
The agency has approved underground acts and increased staff capacity.
Raising awareness has marked increased responsibility of public and private institutions for the Agency's decisions.












