Home » Privacy » data » Data Retention Law In Poland

Data Retention Law In Poland

Disclosure: All information on this site is harmless and purely for educational purposes which is why we post only authentic, unbiased information! The affiliate links are really there for discounts for our readers and for us to earn small commissions that help us stay afloat! Thanks!

New Polish information insurance enactment went into power on 4 May 2019. The adoption acquaints corrections with 162 existing sectoral acts to guarantee consistence with the GDPR. This incorporates the Telecommunications Law, the Electronic Services Act, the Public Procurement Law, and the Tax Ordinance. The most striking and examined changes brought into the Labor Code and the Banking and Insurance Law. 

Work code

Just because the Labor Code perceived consent as a legitimate reason for a business to process the individual information of representatives and occupation candidates. Notwithstanding the “standard thing” conditions which must be met to get a legitimate assent, the Labor Code indicates that a worker’s or work applicant’s refusal to give consent. This withdrawal of approval previously in truth, can’t be utilized by a business as a reason for any unfavorable treatment of the individual concerned. 

The new guidelines determine that such refusal or withdrawal can’t comprise the explanation behind the disavowal or end of work. In any case, the handling of different classes of individual information (for example wellbeing information, ethnic beginning, worker’s guild participation) must be founded on consent if the arrangement of such close to home information happens at the activity of the candidate/representative. By and by, it will be a test to perceive unequivocally in all cases whether a worker has unreservedly given individual details or uncovered under strain from the business.

 A new particular case was made regarding biometric information, which would now be able to be utilized by a business without their representative’s permission on the off chance that it is essential to guarantee security, and limited access to the worker’s necessary information and offices.

Entirely, individual information preparing identifying with criminal feelings and offenses (for example, individual criminal verifications) is dependent upon limitations (Poland has separate guidelines inherently constraining the utilization of such information by businesses). 

This implies a few organizations will keep on being hamstrung by their powerlessness to meet client desires for stricter safety efforts being in power in regards to representative access to critical resources and information. At long last, it ought to be referenced that various inquiries have been raised on the pragmatic execution of guidelines concerning the observing of representatives at work and the reconnaissance gadgets accessible to the boss. 

Banking law

This Act gives banks the privilege to take mechanized choices and profile customers without their permission in deciding the financial soundness and credit hazard investigations checks. Nonetheless, robotized options without a customer’s agreement can be founded uniquely on record, and constrained sorts of individual information and, significantly, such choices can’t be based on exceptional classes of personal information. Be that as it may, the Act

gives customers the privilege to familiarize themselves with the premise of their reliability evaluations, and banks must guarantee that the reevaluation of computerized choices includes human-made appraisals. 

Protection law

A similar arrangement taking into consideration computerized choices and profiling was presented for guarantors. Client consent isn’t vital whenever electronic options are gone out on a limb appraisal purposes or in dealing with cases on the off chance that they depend on the sorts of individual information recorded in the Act.

The privilege to get human intercession and clarifications applies. This new law likewise presented a most significant maintenance time of 12 years for individual recorded information that can be utilized for profiling and robotized primary leadership forms. 


Another law excludes substances leading Know Your Client (KYC) appraisals from consistence with Article 15 of the GDPR (right of access), whenever conducted for hostile to illegal tax avoidance purposes. 

Lawful callings are excluded from the commitment to follow the privilege to question if individual information is handled regarding legal help; the statutory maintenance time frame for case documents, by and large, is currently ten endless supply of procedures.

To know more in detail, kindly visit:



Unlock the power of online security with our in-depth reviews and expert insights. Discover the best VPNs, password managers, and privacy tools to safeguard your digital world.