31 Days to a More Effective Compliance Program - Charitable Donation Enforcement Actions
On February 20, 2025, the Polish Personal Data Protection Office (UODO) published an updated version of the guide on personal data protection breaches. The first edition was released in 2018. The latest version...more
The implementation of whistleblowing procedures is not only a response to the European Parliament and Council Directive (EU) 2019/1937, but also an important part of building a culture of transparency and ethics within an...more
In a recent decision, the Polish Data Protection Authority ordered an online platform owner to inform the complainant (a platform user) about her behavioral profile which was assigned to her based on cookie files and to...more
Poland’s Data Protection Authority UODO weighs in on “employee of the month” postings in the workplace. •The employer may, under certain conditions, display the best performance results in the workplace, based on his...more
Following the outbreak of COVID-19 and its development into a global pandemic, organizations have been implementing exceptional measures to safeguard the health of employees, customers and others. Organizations are also...more
To meet your questions and concerns related to maintaining the principles of personal data protection in the face of the global COVID-19 pandemic, we have prepared a short guide to the key legal regulations and guidelines of...more
The European Data Protection Board (EDPB) and a number of European data protection supervisory authorities have recently issued guidance on processing personal data, including special categories of personal data (i.e., health...more
Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed replacing the main pre-GDPR legislation...more
The Polish data protection authority has fined a public authority 40,000 Euros for violations of GDPR including: Failure to execute Article 28 data processing agreements with its service providers....more
The President of the Personal Data Protection Office in Poland (Polish DPA) imposed a fine amounting to PLN 943,470 (approximately EUR 220,000; approximately USD 245,977) for failing to fulfil the company’s transparency...more
The Personal Data Protection Office (UODO) in Poland issued its first administrative fine on March 26 under the General Data Protection Regulation (GDPR). A fine of approximately €220,000 (approximately $247,000) was imposed...more
A draft act on adjusting the Polish legal system to the provisions of the GDPR is under way in the lower house of the Polish Parliament (Sejm)....more
The number and severity of cyberattacks are on the rise, and companies simply cannot rely on their governments to protect them. In fact, quite the opposite is true....more
In this month's edition of our Privacy & Cybersecurity Update, we discuss Poland's potential exemptions from the new EU data law and the Office of the Comptroller of the Currency's recommendations for U.S. banks faced with...more