Author: Karolina Romanowska

Karolina Romanowska, adwokat, handles issues of data protection and employment law. She has experience adjusting HR documentation to the requirements of the General Data Protection Regulation for a number of leading companies from the sectors of logistics, food, sport, and financial services. She advises HR departments in negotiation of contracts involving processing of personal data. She also participates in corporate due diligence.
Karolina Romanowska
Posted on Categories EU law, personal data

Is this the end for personal data transfers to the US?

Since 16 July 2020, companies transferring personal data from the EU to the US, including employees’ personal data, have had a difficult nut to crack. The Court of Justice of the European Union invalidated the decision in the Privacy Shield case, depriving companies of the possibility of basing data transfers to the US on this basis. However, the Court’s judgment (so-called Schrems II) may have serious consequences for companies transferring data to other countries outside the European Economic Area as well.

Continue reading “Is this the end for personal data transfers to the US?”
Posted on Categories employees with disabilities, personal data

Is the Employer Entitled to Request Employee Disability Information?

Many employers believe that they have the right to require their employees to provide information on their disability. This is because employers have an obligation to ensure that employees with disabilities can exercise particular privileges. The Personal Data Protection Office (‘PDPO‘) examined this issue in its position paper published on 24 August 2020, where it reminded that it is up to the employee to decide whether or not to provide such information.

Continue reading “Is the Employer Entitled to Request Employee Disability Information?”
Posted on Categories personal data

Is there an obligation to inform management board members?

In its paper published on 30 June 2020, the Data Protection Authority (“DPA”) expressed the view that the data of management board members representing a legal person are protected by the GDPR as the data of natural persons who are identifiable by using data disclosed in the National Court Register.

Continue reading “Is there an obligation to inform management board members?”