No. Doxxing—publishing private personal data without consent—violates Hungary’s strict privacy and data protection laws, including the GDPR and Act CXII of 2011 on Informational Self-Determination. Criminal liability may arise under Article 228 of the Criminal Code for unauthorized data disclosure, with penalties up to 2 years imprisonment. The National Authority for Data Protection and Freedom of Information (NAIH) enforces compliance, particularly under Hungary’s 2026 amendments aligning with EU digital sovereignty directives.
Key Regulations for Doxxing in Hungary
- GDPR & Act CXII/2011: Mandate explicit consent for processing personal data; unauthorized disclosure constitutes a breach, triggering fines up to €20M or 4% of global turnover.
- Criminal Code (Article 228): Criminalizes the dissemination of sensitive personal data with intent to harm, threatening imprisonment for offenders.
- NAIH Enforcement: The authority investigates complaints, orders data erasure, and imposes administrative sanctions for non-compliance, including under Hungary’s 2026 digital sovereignty framework.
Hungarian courts have upheld convictions for doxxing under defamation and privacy statutes, particularly when targeting journalists or activists. Platforms hosting such content face liability if they fail to act on takedown requests within 24 hours of NAIH notification. Cross-border doxxing cases may invoke EU-wide enforcement mechanisms, including the European Data Protection Board’s 2025 guidance on extraterritorial jurisdiction.