Russians Will Be Able to Revoke Consent for Data Processing

Russia has launched a unified tool allowing citizens to manage and withdraw their consents for the use of personal data. The new platform, hosted on the Gosuslugi portal, is expected to strengthen digital trust and set new standards in data governance.

Data Control and Citizen Trust

The Ministry of Digital Development, Communications, and Mass Media of the Russian Federation has announced the launch of a unified consent management platform on the Gosuslugi portal. Through this service, users can review and, if necessary, revoke any previously granted permissions — whether given to online resources or offline institutions.

Citizens will also gain access to detailed information on which organizations have processed their data, for what purpose, and in what manner. The platform is part of the government’s second anti-fraud package, aimed at combating cybercrime.

For users, the tool brings tangible benefits: they can see exactly who is using their data and stop that usage by revoking consent. Officials note that this move is designed to increase transparency and reinforce citizens’ confidence in state digital services. Such an initiative may also serve as a model for other nations exploring stronger personal data protections.

We assume that the new consent management system will gradually expand this mechanism to new participants, allowing citizens to better understand what is happening with their personal data

Sergey Plugotarenko

CEO of ANO Digital Economy

Advancing Digital Maturity

While the platform is initially intended for Russian citizens, its architecture can be adapted by other governments pursuing stronger data accountability frameworks. By integrating with existing national systems — such as the Unified Identification and Authentication System (ESIA) and the National Data Management System (NDMS) — the platform contributes to the country’s broader digital state strategy.

Future integration is also expected with cybersecurity tools and biometric services, including the Unified Biometric System (UBS). To ensure effectiveness, the system requires not only robust technical mechanisms but also updated legal frameworks covering consent withdrawal, change logging, and audit requirements.

Analysts suggest that businesses will also feel the impact. As companies adapt to stricter standards in data consent management, they may need to update internal procedures, thereby raising overall corporate digital maturity.

Security Trends and Future Outlook

Data security has been a long-discussed issue in Russia. By 2026, the government plans to shift away from storing personal data on the Gosuslugi platform and move toward distributed storage across departmental databases. Meanwhile, the Unified Biometric System continues to expand, with many citizens registering biometric data through Gosuslugi.

The unified consent management system was first proposed in 2022, with legislative development originally expected by November of that year. Today, ESIA remains the backbone of digital identification, while NDMS continues to provide standardized processes for collecting, processing, and storing data across government agencies.

With the new consent management platform, Russia aims to create a clear, citizen-friendly method for monitoring personal data usage. This approach strengthens public trust and creates a safer, more transparent digital ecosystem. Experts highlight that such a case could inspire similar efforts abroad, underscoring Russia’s growing role in shaping global digital governance trends.