FORMAL ANSWER

The President of the Polish DPA is the principal state authority responsible for personal data protection. As part of the tasks assigned by Article 57 GDPR, this authority, inter alia: monitors and enforces the application of GDPR; promotes public awareness of the risks, rules, safeguards and rights relating to processing and understanding of those matters; advises the national parliament, the government and other institutions and bodies on matters concerning the protection of personal data; handles complaints lodged by a data subject or by an entity, organisation or association; conducts proceedings concerning the application of GDPR, issues decisions and, where proportionate, determines the amount of administrative fines for breaches of GDPR and imposes them.

PRACTICAL ANSWER

The President of the Polish DPA is, on the one hand, the head of the office — he has inspectors who can inspect an organisation, conduct proceedings and impose penalties for breaches of personal data protection provisions. On the other hand, it is the authority to which an organisation reports the appointment of a DPO, reports incidents and consults on data protection matters. Beyond these functions, the President of the Polish DPA trains and educates both individuals whose data are processed and the entities that process them. Anyone who believes their data are being processed unlawfully may also contact the President of the Polish DPA. In short: the President of the Polish DPA is the state guardian of personal data processing.

MORE:

• You can find more information in the guide: How to prepare for an inspection