Kryterium „zadania publicznego” w ustawie z 10.5.2018 r. o ochronie danych osobowych oraz jego konsekwencje dla wykonywania obowiązków administratora oraz realizacji praw osoby, której dane dotyczą (dodatek MoP 22/2018)

The criterion of „public task” in the Data Protection Act of 10 May 2018 and its consequences for the performance of controller’s responsibilities and exercise of data subject’s rights

Grzegorz Sibiga

Autor jest kierownikiem Zakładu Prawa Administracyjnego w Instytucie Nauk Prawnych PAN oraz adwokatem w kancelarii Traple, Konarski, Podrecki i Wspólnicy.

Abstract

The Personal Protection Act, passed on 10 May 2018, introduces a concept of “public task”, which has not been directly applied in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (UE). The performance of a public task by a data controller underlies restriction of information duties laid down in Art. 13.3, Art. 14.1–2 and Art. 14.4 and Art. 15.1–3 of the GDPR. The article discusses the possibilities of comprehending the prerequisite of “public task” and the consequences of its application.

Monitor Prawniczy

no. 22/2018

The criterion of „public task” in the Data Protection Act of 10 May 2018 and its consequences for the performance of controller’s responsibilities and exercise of data subject’s rights

Abstract