We encounter administrative procedures on an almost daily basis, whether we are aware of it or not. However, we are increasingly aware of the protection of our personal data, especially now that we are witnessing major technological advances and, therefore, increasing data dissemination. In my diploma work I studied Slovenian national and European legislation in the field of administrative procedures and protection of personal data, namely the General Administrative Procedure Act (ZUP), the Personal Data Protection Act (ZVOP) and the European Union General Data Protection Regulation (GDPR) , using normative, descriptive and comparative methods, as well as secondary sources analysis. The overlapping of the ZUP and GDPR or ZVOP occurs both in the use of personal data in any administrative procedure as well as in the application of the ZUP in relation to GDPR and ZVOP rights. With regard to the first aspect, through my research work, I have found that ZUP is in no way subordinated to the legislation in the field of personal data protection, since it generally acts as the main sectoral legislation in the case of administrative procedures. The opposite is true when it comes to exercising rights in the field of personal data protection, as GDPR or ZVOP assumes the role of a special sectoral rule and ZUP is used in a subordinate manner. However, as in all fields, there are always discrepancies between theory and practice, which I have highlighted in several points in my diploma thesis. Through my research work, I have rejected both hypotheses that I set out at the beginning of the journey, as, as mentioned above, I came to the conclusion that in this case ZUP acts as (main) sectoral legislation. The findings could help to facilitate an understanding of all the legislation under consideration, individually and in a coherent way, and in particular the part on the necessary new legislation.