As a result of the recent implementation of Decree No. 327, Russia’s data protection authority – the Roskomnadzor – now has greater authority to conduct audits of online companies to monitor their handling of user data. Decree No. 327, adopted in April, introduces compliance audit rules which apply to all online organisers of information distribution