SLOVENIA: Efficiency of managing business continuity of Ljubljana Pharmacy, short notice


On 10th of May 2022, the Court of Audit of the Republic of Slovenia (hereinafter referred to as: Court of Audit) issued another in a series of audit reports covering the topic of managing business continuity, this time at the PUBLIC INSTITUTE LJUBLJANA PHARMACY (hereinafter referred to as: Ljubljana Pharmacy), which was the victim of a ransomware cyberattack in 2019 and which has since then significantly improved its operations.

It was the third audit by the Court of Audit reviewing the issue of business continuity management. Pharmacy Ljubljana has been designated as essential service provider and is the largest public pharmacy institution in Slovenia. It offers pharmacy and other services in central Slovenia with a network of 53 apothecary shops and an online pharmacy.

SAI Slovenia Ljubljana pharmacy pic1

SAI Slovenia Ljubljana Pharmacy pic2

The Court of Audit expressed an opinion that Ljubljana Pharmacy was efficient in managing business continuity. It did not request Ljubljana Pharmacy to submit a response report, however it has proposed several recommendations for further improvement. Ljubljana Pharmacy has already started implementing the recommendations during the audit.

Ljubljana Pharmacy has learned a lot in the period after the cyberattack in 2019 and, according to the Court of Audit, has taken an effective approached towards the introduction and managing business continuity.

Audit infographic is available at

Full report (in the Slovene language)