Abstract

The article discusses measures available in case of breach of currently applicable data protection provisions and those laid down in Regulation 2016/679. The author focuses on the problem of maintaining penal regulations. The analysis of their current application and administrative sanctions introduced by the Regulation lead to the conclusion that criminalisation of infringements should be substantially limited.