News & Events
2026-06-30 18:00 Publication

User authorisation and recommendation technologies: new fines for businesses

On 26 June 2026, the President signed Federal Law* No. 199-FZ (the “Law”), which introduces administrative liability for various violations under the Information Law* related to user authorisation and the use of recommendation technologies.

Fines for authorisation via foreign services

Since 2023, owners of information resources (websites, applications, and information systems) have been required* to authorise Russian users exclusively through the following means:

  • Mobile phone number;
  • Unified Identification and Authentication System (UIAS) – “Gosuslugi” portal;
  • Unified Biometric System (UBS);
  • Other Russian services. A service is deemed Russian if a Russian citizen or Russian company directly or indirectly holds more than 50%.

Non‑compliance now carries the following fines:
Individuals
RUB 10,000 – 20,000 (EUR 112 – 225)
Officials and individual entrepreneurs
RUB 30,000 – 50,000 (EUR 338 – 564)
Legal entities
RUB 500,000 – 700,000 (EUR 5,642 – 7,899)
Authorisation via Apple ID, foreign email services, or foreign messengers is prohibited. These restrictions apply solely to users located within the territory of Russia.

Fines for violating recommendation technology requirements

The Law introduces fines for resource owners who fail to comply with the following requirements:

  • Informing users about the use of recommendation technologies;
  • Publishing the rules governing such technologies on the resource;
  • Displaying a contact email address and the company name (for individuals – full name) of the resource owner;
  • Prohibition of using recommendation technologies that infringe the rights and interests of citizens and organisations;
  • Prohibition of using the technologies to disseminate information that violates Russian law.

Fines for non‑compliance with any of the above are as follows:
Individuals (for the first violation)
RUB 10,000 – 20,000 (EUR 112 – 225)
Individuals (for the repeated violation)
RUB 20,000 – 40,000 (EUR 225 – 451)
Officials and individual entrepreneurs (for the first violation)
RUB 30,000 – 50,000 (EUR 338 – 564)
Officials and individual entrepreneurs (for the repeated violation)
RUB 60,000 – 100,000 (EUR 677 – 1,128)
Legal entities (for the first violation)
RUB 500,000 – 700,000 (EUR 5,642 – 7,899)
Legal entities (for the repeated violation)
RUB 1m – 1.4m (EUR 11,284 – 15,798)
Additionally, liability is introduced for failure to comply with a prescription of the Federal Service for Supervision of Communications, Information Technology and Mass Media (Roskomnadzor) to cease the use of recommendation technologies.

Fines for non‑compliance are as follows:
Individuals (for the first violation)
RUB 20,000 – 40,000 (EUR 225 – 451)
Individuals (for the repeated violation)
RUB 40,000 – 80,000 (EUR 451 – 902)
Officials and individual entrepreneurs (for the first violation)
RUB 60,000 – 100,000 (EUR 677 – 1,128)
Officials and individual entrepreneurs (for the repeated violation)
RUB 120,000 – 200,000 (EUR 1,354 – 2,256)
Legal entities (for the first violation)
RUB 1m – 1.4m (EUR 11,284 – 15,798)
Legal entities (for the repeated violation)
RUB 1.4m – 2.8m (EUR 15,798 – 31,597)
Recommendations

The new rules will take effect on 7 July 2026. Prior to that date, information resource owners are advised to:

  • Conduct an audit of their platforms to ensure compliance with the Information Law and Roskomnadzor requirements regarding recommendation technologies, including posting the relevant legal disclaimer and rules of use;

  • Adjust user authorisation methods by disabling login via foreign services. If an immediate shutdown risks mass account loss, arrange a gradual transition, allowing users to link an approved identifier to their existing account while subsequently blocking former login methods.

* In Russian
Authors