Jarosław Kamiński

Attorney at law (Poland)
Associate Partner
Phone: +48 22 244 00 27

Personal data security is talked about a lot in the business reality, among privately-owned businesses and in public administration. Polish regulations applicable in this regard oblige entities (e.g. enterprises) collecting and processing personal information to follow certain rules of procedure. However, quick technological progress and development of new technologies, as well as social and economic integration resulting from the single EU market, lead to data collection, use and flow on an exponentially larger scale. This triggers questions about the efficiency of the current legal solutions intended to protect data subjects. The EU strives to ensure an EU-uniform degree of protection of individuals’ safety in connection with personal data processing. Therefore, an EU regulation to ensure a uniform protection of personal data within the EU (GDPR) and to increase the data protection standards entered into force in May 2018. It has imposed a number of new obligations on enterprises which now have to, among other things, analyse their internal data processes and compile relevant documentation. For the first time in history, new legal requirements have been accompanied by technological requirements. Under the new regulations, data controllers must adjust the level of security of the processed data to the applicable guidelines and control it regularly. Consequently, it is no longer enough to show that safeguards have been implemented – they now need to be proven to work. Furthermore, you should remember about physical safety, which has been the basis of comprehensive protection for years, and now must be fine-tuned to security measures introduced in cyberspace. Criminals can break into servers both through the Internet and physically, by simply breaking into the server room, plugging in and adding their computers to the network.

To help you stay up to date and successfully deal with the challenges of the changing personal data protection laws, in this section we examine GDPR and other EU laws, as well as keep you posted on the steps taken by Polish lawmakers. You are welcome to use the knowledge and experience of our experts and to contact us directly. We offer comprehensive advice and assistance at every stage of adapting your business to current laws. Our attorneys at law and IT security experts are available to you in our offices in Cracow, Gdansk, Gliwice, Poznan, Warsaw and Wroclaw.