Search results

1

Prawo do bycia zapomnianym w perspektywie przetwarzania danych osobowych

100%

Nasiadka Ł.

Studia Prawa Publicznego

|

2023

|

issue 2 (42)

77-94

EN

Nowadays, effective protection of personal data is one of the fundamental issues of a democratic state under the rule of law. Therefore, the legislator should be very precise about the principles and standards of data processing. In the last few decades, in particular, the development of new technologies, digitalisation and the increase in the need for electronic communication has become evident, which leads to the adoption of appropriate regulations for the handling of personal data. In addition, the EU legislator has introduced the General Data Protection Regulation (GDPR) in order to harmonise the regulations of EU Member States regarding the protection of personal data. This provides a framework for the proper functioning of legal provisions across the European Union regarding the handling of personal data of its citizens.The aim of the article is to identify the legal changes resulting from the Personal Data Protection Regulation, with a particular focus on the persons to which they apply and then to analyse the regulation of ‘the right to be forgotten’. In the first part of the article, attention is drawn to the way personal data are processed and the scope of obligations incumbent on data controllers. This is because data controllers are, together with the personal data protection officer, responsible for recording data processing activities, including ongoing monitoring and responding to situations of inaccurate data processing. The second part focuses on the right to be forgotten and the assessment of this entitlement in the perspective of Regulation 2016/679. The research methods include an analysis of legal acts, at the same time using the subject literature.

2

Przetwarzanie danych osobowych przez podmioty publiczne – nowe wymogi rozporządzenia UE

100%

Sakowska-Baryła M.

|

2017

|

vol. 62

|

issue 6 (377)

34-51

EN

From 25th May 2018, all entities that process personal data will have to comply with the general regulation (UE) 2016/679 of 27th April 2016 on protection of personal data. The regulation will replace the national law on protection of personal data that is in force now. It is believed that the regulation will revolutionise the area of personal data protection, as it sets forth additional rights (e.g. to be forgotten, to transfer data), and it introduces new principles on which the privacy protection is to be based – the principle of accountability and the risk- based approach. Despite its general nature, the new regulation also contains provisions that provide the basis for personal data processing by public bodies and entities, however it remains coherent and complementary with the norms derived from the Constitution of Poland.

3

COMMENTARY ON THE JUDGEMENT OF THE SUPREME ADMINISTRATIVE COURTOF 28 SEPT. 2018, REF. NO. I OSK2016/16 (PARTLY APPROVING)

88%

NOWAK K.

Przegląd Policyjny

|

2020

|

vol. 138(2)

330-344

EN

The subject matter of the commentary focuses on the issue of the functional and grammatical interpretation of the notion of ‘a person perform-ing a public function’, which, in the author’s opinion, does not directly refer to the public offi cer referred to in Article 115(13) of the Act of 6 June 1997 Penal Code. The author highlights the unjustifi ed perception of a person performing a public function by the Polish justice system as being viewed as a public offi cer as defi ned in Article 115(13) of the Penal Code. The main arguments focus on the risks arising from an overly broad in-terpretation of the concept of a person performing a public function. In fact, the lack of a defi ned set of persons performing public functions may give rise to a malfunction on the part of the entity obliged to make public informa-tion available, and thus to the constitutional principle of limiting the right to public information on the grounds of privacy.The fi nal part of the commentary is a refl ection on making public infor-mation available under the provisions of the Act of 15 July 2011 on Control in Government Administration, and a starting point for a broader discussion on the need to amend the current legal system.

4

Privacy frontiers in customers' relations with banks

88%

Piotrowski D.

Economics and Business Review

|

2023

|

vol. 9

|

issue 1

119-141

XX

The widespread use of digital technologies in banking allows banks to obtain and analyse huge amounts of data from different communication channels. While this phenomenon is conducive to improving the quality of services it also increases the risk of privacy breaches. The aim of this study is to identify what factors determine consumer acceptance of banks' use of public access personal data found on social media accounts. The results indicate the importance of the ifnancial incentive and consumers' assessment of banks' information activities regarding the processing of personal data. Determinants relating to the technological sophisti cation of respondents were also found to be significant, with a particular focus on the ethical evaluation of deci sions made by Arfticial Intelligence algorithms. The results of the work may be used by banks in practice to adapt the area of personal data management to the requirements of e-privacy and Trustworthy Artifcial Intelligence.

5

Personal data processing within the framework of cooperation between the employer and the trade union in individual employment matters

75%

Pisarczyk Ł., Miętek A.

Krytyka Prawa. Niezależne studia nad prawem

|

2021

|

vol. 13

|

issue 2

178-194

EN

The purpose of the paper is to analyse issues related to personal data processing within the framework of co-operation between the employer and trade unions in individual employment matters. The issues of personal data processing in collective relations are becoming more important especially due to lack of detailed legislative solutions, which results in the necessity to apply the general provisions of the GDPR as well as the latest changes to the Trade Unions Act. Pursuant to these changes, not only employees, but also persons performing gainful employment who are not employees can create and join trade unions as well as can be defended by the trade unions. The legislator frequently finds it difficult to adjust the protection of personal data to the specificity of collective relations, and the way in which the relationship between employers and trade unions is shaped in individual employment matters raises many questions in the context of personal data protection. The issue in question has not been explored in depth in the professional labour law literature. Thus, research on this subject is novel and justified from both the theoretical and the practical perspective. In the article, the formal-dogmatic method of research was used.

6

Kontrolowanie przez GIODO przetwarzania danych osobowych – przestrzeganie przepisów o ochronie danych osobowych

75%

Sakowska-Baryła M.

Kontrola Państwowa

|

2016

|

vol. 61

|

issue 2 (367)

28-46

EN

The article deals with auditing of personal data processing by the body responsible for protection of personal data – the Inspector General for Personal Data Protection (GIODO). The analysis of this issue is preceded with a presentation of the system of personal data processing audit, on the basis of the act on personal data protection. The system comprises not only GIODO audits, but also audits conducted by entities that participate in data processing, data protection officers, persons whose data is concerned, and numerous organs of legal protection that, during their activities, make an assessment of the compliance of data processing with the regulations on data protection. In her article, the author discusses GIODO audits – their scope, stages, audit competence of inspectors, and audit documentation, as well as legal measures that aim to restore the state compliant with the law, and consequences for persons responsible for irregularities. Moreover, the article presents the issue of GIODO audits from a broader perspective, comprising issues related to the duties of data protection officers and their appointment, which have been recently regulated anew.

7

Scope and nature of changes in personal data protection systems of public institutions in the light of the provisions of the GDPR (General Data Protection Regulation)

63%

Mazur M.

Kultura Bezpieczeństwa. Nauka – Praktyka – Refleksje

|

2018

|

vol. 31(31)

169-186

EN

The EU GDPR Regulation introduced rules and regulations on the protection of individuals with regard to the processing of their personal data regardless of their citizenship or place of residence. The article focuses on issues related directly to the regulation on the protection of personal data and related to documents that regulate the protection of personal data and their processing in public institutions in Poland. The author presents basic estimates about the entry of the GDPR Regulation, indicates the importance of individual Dobies/organisations and entities playing a key role in the protection of personal data on the territory of Poland. It describes the documents that establish minimum standards for personal data protection systems to be developed in public institutions to guarantee security. In this article, the author attempted to indicate the scope and nature of changes in personal data systems in the light of the provisions of the GDPR Regulation.

8

Granting of Consent by a Child for the Processing of Their Personal Data Within the Framework of Information Society Services

63%

Węgrzyn J.

Przegląd Prawa Konstytucyjnego

|

2022

|

issue 3(67)

363-372

EN

For a long time, it has been observed that services available in the virtual world, such as social networks, gaming platforms, music streaming services, have attracted the interest of internet users of different ages. They include children, who require special protection as relates to the processing of their personal data. These issues have been addressed by the EU legislator in Art. 8 of GDPR2. The purpose of this paper is to analyze the solutions adopted in Article 8 GDPR and to assess their application in practice.

PL

Od dłuższego czasu można zauważyć, że dostępne w świecie wirtualnym usługi, takie jak np. portale społecznościowe, platformy z grami, platformy z utworami muzycznymi, zyskały zainteresowanie internautów różnej kategorii wiekowej. Wśród nich są i dzieci, które wymagają szczególnej ochrony w związku z przetwarzaniem ich danych osobowych. Na kwestie te zwrócił uwagę prawodawca unijny w art. 8 RODO. Celem niniejszego opracowania jest analiza rozwiązań przyjętych w art. 8 RODO oraz ocena ich stosowania w praktyce.

9

Przetwarzanie danych osobowych przez członków wspólnoty religijnej świadków Jehowy

63%

Świątkowski A. M.

Roczniki Administracji i Prawa

|

2023

|

vol. 1(XXIII)

81-94

EN

The author presents a dispute in Finland over a decision prohibiting the religious community of Jehovah’s Witnesses from collecting and otherwise processing personal data as part of the preaching activity. The public authorities of this country have recognized that the community and its members are controllers of personal data and entities responsible for the processing of such data. According to the community, preaching is an individual religious practice. Data collected solely on the personal initiative of the members of the Jehovah’s Witness community do not constitute a dataset, and the community cannot be considered a controller of personal data. In the questions referred for a preliminary ruling, the referring court took the position that such activity is not subject to the exemption provided for in Art. 3 sec.1st indent of Directive 95/46. He was not sure, however, that the preaching activity could be considered a purely personal or domestic activity within the meaning of Art. 3 sec. 2nd indent of Directive 95/46. The Grand Chamber of the CJEU delivered a balanced judgment taking into account, on the one hand, the right to respect for private life and, on the other hand, the equally important right to freedom of religion.

PL

Autor przedstawia spór prowadzony w Finlandii o decyzję zakazującą wspólnocie religijnej świadków Jehowy zbierania i innego przetwarzania danych osobowych w ramach działalności kaznodziejskiej. Władze publiczne tego państwa uznały, że wspólnota i jej członkowie są administratorami danych osobowych i podmiotami odpowiedzialnymi za przetwarzanie tych danych. Zdaniem wspólnoty działalność kaznodziejska należy do indywidualnych praktyk religijnych. Dane, zbierane wyłącznie z własnej, osobistej inicjatywy członków wspólnoty świadków Jehowy, nie stanowią zbioru danych, a wspólnota nie może być uznawana za administratora danych osobowych. Sąd odsyłający w pytaniach prejudycjalnych zajmował stanowisko, że taka działalność nie podlega wyłączeniu przewidzianemu w art. 3 ust. 2 tiret pierwsze dyrektywy 95/46. Nie był jednak pewien, czy działalność kaznodziejska może zostać uznana za czynność o czysto osobistym lub domowym charakterze w rozumieniu art. 3 ust. 2 tiret drugie dyrektywy 95/46. Wielka Izba TSUE wydała wyważony wyrok, uwzględniając z jednej strony prawo do poszanowania życia prywatnego, a z drugiej – nie mniej ważne – uprawnienie do wolności religii.

10

W sprawie skuteczności wystąpienia z Kościoła Katolickiego: uwagi dotyczące decyzji z dnia 28 listopada 2018 r. wydanej przez Prezesa Urzędu Ochrony Danych Osobowych

45%

Czelny M.

Studia z Prawa Wyznaniowego

|

2020

|

vol. 23

525-537

EN

On November 22, 2018, the President of the Office for Personal Data Protection (hereinafter POPDP) issued a decision related to the issue of updating personal data by a person who has disaffiliated from the Catholic Church. The paper analyzes this decision in order to answer the question whether in the current legal situation POPDP has the competence to resolve, by administrative decisions, complaints of natural persons related to compliance with the provisions laid down by the Catholic Church in the area of personal data protection. When justifying the above-mentioned decision, POPDP referred to several significant provisions of the currently applicable law, including the EU law, state law and church law. In the decision, POPDP confirmed the already established practice regarding matters connected with the issue of updating personal data of persons who have disaffiliated from the Catholic Church. In the conclusion, it was stated that POPDP had no competence to resolve complaints of natural persons related to compliance with the provisions laid down by the Catholic Church in the area of personal data protection.

PL

Prezes Urzędu Ochrony Danych Osobowych (PUODO) w dniu 22 listopada 2018 r. wydał decyzję związaną z kwestią uaktualnienia danych osobowych przez osobę, która wystąpiła z Kościoła Katolickiego. W artykule dokonano analizy tej decyzji w kontekście odpowiedzi na pytanie, czy w aktualnym stanie prawnym PUODO posiada kompetencje do rozstrzygania w drodze decyzji administracyjnych skarg osób fizycznych związanych z przestrzeganiem przepisów ustanowionych w Kościele Katolickim w zakresie ochrony danych osobowych. Uzasadniając prezentowaną decyzję, PUODO powołał się na kilka znaczących przepisów aktualnie obowiązującego prawa: unijnego, państwowego i kościelnego. W prezentowanej decyzji PUODO potwierdził stosowane od pewnego czasu stanowisko odnośnie do spraw związanych z kwestią uaktualnienia danych osobowych osób, które wystąpiły z Kościoła Katolickiego. W konkluzji stwierdził, że nie ma on kompetencji do rozstrzygania skarg osób fizycznych związanych z przestrzeganiem przepisów ustanowionych w Kościele Katolickim w zakresie ochrony danych osobowych.

Refine search results

2 Kontrola Państwowa

1 Economics and Business Review

1 Krytyka Prawa. Niezależne studia nad prawem

1 Kultura Bezpieczeństwa. Nauka – Praktyka – Refleksje

1 Przegląd Policyjny

1 Przegląd Prawa Konstytucyjnego

1 Roczniki Administracji i Prawa

1 Studia Prawa Publicznego

1 Studia z Prawa Wyznaniowego

2 Sakowska-Baryła M.

1 Czelny M.

1 Mazur M.

1 Miętek A.

1 NOWAK K.

1 Nasiadka Ł.

1 Piotrowski D.

1 Pisarczyk Ł.

1 Węgrzyn J.

1 Świątkowski A. M.

3 2023

1 2022

1 2021

2 2020

1 2019

1 2017

1 2016

Prawo do bycia zapomnianym w perspektywie przetwarzania danych osobowych

Przetwarzanie danych osobowych przez podmioty publiczne – nowe wymogi rozporządzenia UE

COMMENTARY ON THE JUDGEMENT OF THE SUPREME ADMINISTRATIVE COURTOF 28 SEPT. 2018, REF. NO. I OSK2016/16 (PARTLY APPROVING)

Privacy frontiers in customers' relations with banks

Personal data processing within the framework of cooperation between the employer and the trade union in individual employment matters

Kontrolowanie przez GIODO przetwarzania danych osobowych – przestrzeganie przepisów o ochronie danych osobowych

Scope and nature of changes in personal data protection systems of public institutions in the light of the provisions of the GDPR (General Data Protection Regulation)

Granting of Consent by a Child for the Processing of Their Personal Data Within the Framework of Information Society Services

Przetwarzanie danych osobowych przez członków wspólnoty religijnej świadków Jehowy

W sprawie skuteczności wystąpienia z Kościoła Katolickiego: uwagi dotyczące decyzji z dnia 28 listopada 2018 r. wydanej przez Prezesa Urzędu Ochrony Danych Osobowych