Personal Data

Poland is covered by the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC (GDPR or RODO). The entity that is the controller of personal data must be able to demonstrate that the data processing is carried out in accordance with its provisions.

The GDPR sets out 6 conditions for the legality of the processing of personal data – these are: a) obtaining the consent of the data subject, b) necessity to conclude and perform the contract, c) obligation resulting from legal provisions, d) protection of the vital interests of the data subject, e) a task carried out in the public interest or in the exercise of public authority, f) and the legitimate interest of the administrator or a third party. As a rule, the processing of personal data, the so-called specific categories, such as those revealing ethnic origin, health, political views or sexual orientation is forbidden. The conditions for the processing of such data and the rules to which they are subject are set out in the GDPR.

The Act of 10 May 2018 on the protection of personal data plays a complementary role to the GDPR. It regulates organizational issues related to the functioning of the supervisory body for the protection of personal data in Poland, as well as the control and cooperation procedures with authorities at the EU level.

Regulations on the protection of personal data are also included in national specific acts, which is to ensure the application of the GDPR in the Polish legal order.

Contact us

TOMASZ MADEJCZYK Legal Counsel

kancelaria@madejczyk.biz

Contact

Name *

Email *

Phone

Message

Administrator of my personal data is Madejczyk Law Firm, limited liability partnership, based in Łódź, further referred to as the Chambers. My personal data shall be processed by Chambers pursuant to Art. 6 Par. 1 b) of the general regulation on protection of personal data for the purposes of response to questions and continuation of electronic correspondence. My personal data may be entrusted by the Chambers to third parties rendering services for the Chmabers, e.g. in relation to operation of IT systems or provision of the software in the form of service (SaaS). My personal data may be transmitted beyond the boundaries of European Union, within the frameworks of the Company’s use of IT infrastructure (cloud computing, electronic mail). In case of processing, which includes transmission of data beyond the boundaries of European Union, such transfer shall be held using the Standard Contract Clauses or Privacy Shield regulations approved by the European Committee for the pursposes of assurance of a proper degree of statutory protection of personal data. In other cases my data may be conveyed to third countries in cases indicated in GDPR. I may obtain the copy of data conveyed to the third country on submitting such request. Conveyance of data to the third country may also take place on securing my consent. Accordingly, my data shall be conveyed to the third country based on Art. 49 Par. 1 a) and Art. 49 Par. 1 b) of GDPR. My personal data shall be processed by the Chambers throughout the period of exchange of messages in electronic correspondence and shall be removed till the end of calendar year, which shall follow the year, in which you contacted us the last time on the matter of its conclusion. I shall be entitled to access the content of my data, insist on setting it right, remove it or limit its processing, and also to raise objections against processing data processing, and to convey them too. I shall be entitled to file a complaint to the President of the Office for Protection of Personal Data or any other competent supervisory authority if I acknowledge that processing of my data infringes the rules. Provision of my personal data is voluntary, but required for correspondence.