31 Days to a More Effective Compliance Program - Charitable Donation Enforcement Actions
On February 20, 2025, the Polish Personal Data Protection Office (UODO) published an updated version of the guide on personal data protection breaches. The first edition was released in 2018. The latest version...more
Z ponad dwuletnim opóźnieniem, Polska implementowała dyrektywę (UE) 2019/1937 z dnia 23 października 2019 r. w sprawie ochrony osób zgłaszających naruszenia prawa Unii. Ustawa o ochronie sygnalistów wejdzie w życie 25...more
After a delay of more than two years, Poland has implemented Directive (EU) 2019/1937 of 23 October 2019 on the protection of persons who report breaches of Union law. The Act on the protection of whistleblowers will come...more
The Polish Personal Data Protection Office has recently published a plan for sectoral investigations for 2024, which covers both public institutions and private entities. The plan is a framework for DPA’s activities, which...more
The Polish DPA imposed a fine on an insurance company, for failure to notify a seemingly insignificant personal data breach.The Polish DPA imposed a fine on an insurance company, for failure to notify a seemingly...more
In a recent decision, the Polish Data Protection Authority ordered an online platform owner to inform the complainant (a platform user) about her behavioral profile which was assigned to her based on cookie files and to...more
The Polish Ministry of Justice published a bill on the Protection of the Freedom of Speech on Social Media. The bill’s aim is to provide a legal framework to protect social media users from platform owners’ arbitrary...more
Poland’s Data Protection Authority UODO weighs in on “employee of the month” postings in the workplace. •The employer may, under certain conditions, display the best performance results in the workplace, based on his...more
To meet your questions and concerns related to maintaining the principles of personal data protection in the face of the global COVID-19 pandemic, we have prepared a short guide to the key legal regulations and guidelines of...more
The European Data Protection Board (EDPB) and a number of European data protection supervisory authorities have recently issued guidance on processing personal data, including special categories of personal data (i.e., health...more
The Polish data protection authority has fined a public authority 40,000 Euros for violations of GDPR including: Failure to execute Article 28 data processing agreements with its service providers....more
The President of the Personal Data Protection Office in Poland (Polish DPA) imposed a fine amounting to PLN 943,470 (approximately EUR 220,000; approximately USD 245,977) for failing to fulfil the company’s transparency...more
The Personal Data Protection Office (UODO) in Poland issued its first administrative fine on March 26 under the General Data Protection Regulation (GDPR). A fine of approximately €220,000 (approximately $247,000) was imposed...more
A draft act on adjusting the Polish legal system to the provisions of the GDPR is under way in the lower house of the Polish Parliament (Sejm)....more
Poland’s data protection authority, the Generalny Inspektor Ochrony Danych Osobowych (GIODO), recently issued its opinion on the continued validity of personal data transfers to the US. The opinion comes at a time when...more