The thesis deals with the legal protection of personal data in general and it is divided into five chapters. The theoretical part provides the interpretation of the rules of this sector, the law for personal data protection in the Czech Republic and basic terms characteristic for this area. It explains the legal aspects of the processing of personal and sensitive data, moreover is dedicated to some of the major duties of the controller and processor and main functions, structure and activities of the Office for Personal Data Protection. The conclusion summarizes the possible reasons and consequences that occur in breach of statutory obligations in the process. The practical part then briefly sums up the possible risk when giving out persona...