New personal data protection law in Poland
There are works pending on implementing the provisions of the EU regulation 679/2016 on personal data protection in Poland (in short: RODO). The Ministry of Digitalization – authority responsible for shaping Polish data protection policy – is responsible for proper implementation of RODO’s provisions.
RODO
Despite the fact that as a rule the provisions of EU regulations shall be applied directly, RODO entails several changes to currently binding provisions of Polish personal data protection law. There are more that 130 acts which should be amended after RODO’s entry into force. In this respect there are works pending on new draft of act on personal data protection in Poland.
Changes
The draft project of new personal data protection law provides inter alia the following changes:
- Establishing the new body – Chairman of Personal Data Protection Office instead of General Inspector of Personal Data Protection,
- More consultative character of Chairman of Personal Data Protection Office,
- One-instance proceedings
- Possibility of using biometrics in labour law
- Digitalization of insurance entities (especially the possibility of expressing consent in digital form instead of written consent).
Stage of works
The project was widely discussed during public consultations. After finalisation of this stage, the draft act was directed to the Polish Committee of European Affairs of Ministers Council. During the next phases of the procedure, it will be subjected to notification of EU bodies and then directed to Polish Parliament.
For more information, contact us on [email protected]
