We offer a full range of services connected with the protection and processing of personal data. Legal rules concerning personal data protection are located in the following acts:
- The Act of 29 August 1997 on the Protection of Personal Data (unified text: Journal of Laws of 2002 No. 101 item 926 with amendments)
- The Regulation of 29 April 2004 by the Minister of Internal Affairs and Administration as regards personal data processing documentation and technical and organizational conditions which should be fulfilled by devices and computer systems used for the personal data processing
- The Regulation of April 29, 2004 by the Minister of Internal Affairs and Administration as regards specimen for a notification of a data filing system to registration by the Inspector General for Personal Data Protection
The data administrator (entrepreneur, company's board), that doesn't fulfil duties imposed by law may bear:
- criminal responsibility — fine, restriction of freedom or imprisonment for 3 years
- administrative responsibility — may be required to correct mistakes or even delete data
- disciplinary responsibility — this concerns employees and may be a cause for dismissal
- liability for damages — compensation in the case of any infringement of rights of a person or causing pecuniary damage
The next stages of cooperation may be as follows:
- Auditing the state of personal data processing and checking if all requirements in this area are fulfilled (technical, organizational and legal requirements). Results are presented as a report including an evaluation of used protections, description of failures and directions allowing the removal of these failures.
- Preparing new or verification of an existing documentation required by the Inspector General for Personal Data Protection (GIODO): Personal protection Data Policy, Instructions for Managing IT System, Registry of persons employed in processing personal data (pattern), Agreement on entrusting the processing of personal data (optional).
- Filling out forms for the GIODO concerning registration of new files or updating documents concerning pre-registered files.
- Training for employees that cope with personal data processing and for the Information Security Administrator.
- Supervising projects of implementing changes in software or procedures that are aimed at their full legality.