Przetwarzanie Danych

Warsaw — Polish officials moved on July 4, 2015, to sharpen oversight of how companies collect and handle personal information. The General Inspectorate for the Protection of Personal Data issued fresh guidance that spelled out stricter consent requirements for businesses that store customer details. Officials said the changes aimed to close gaps that had let some firms share data without clear permission.

Small and mid-sized companies felt the immediate pressure. Many had relied on broad, one-time agreements that covered almost any use of names, addresses, and purchase histories. Under the new notes, those agreements no longer counted unless customers received separate, specific notices for each purpose. Inspectors warned that audits would begin within weeks and could result in fines for repeated violations.

Privacy advocates welcomed the tighter language but questioned whether the agency had enough staff to enforce it. One Warsaw-based group pointed out that most complaints still took months to resolve, leaving ordinary people exposed while paperwork moved slowly through the system. Regulators replied that they were hiring additional reviewers and planned to publish quarterly summaries of cases.

The timing also tied into wider European talks on updating data rules. Polish lawmakers said the domestic adjustments would serve as a test run for whatever Brussels eventually adopted. In the meantime, law firms reported a spike in calls from retailers and online services asking how to rewrite their forms before the next inspection cycle.