Publication date: April 21, 2023

On Friday, April 21, 2023, the Regulation of the Minister of Development and Technology was published in the Journal of Laws, authorizing the transit of agricultural products from Ukraine through Poland. It abolished the regulations contained in the regulation of April 15, 2023, which introduced a total ban on importing agricultural products to Poland. After the meeting of the government of the Republic of Poland and Ukraine on April 19, 2023, it was decided to resume the transit. However, the new regulations contain safeguards to ensure that all products are exported from the territory of the Republic of Poland. Pursuant to the Regulation, the carriage of goods will be possible only in a situation where the transit ends in the seaports of Gdańsk, Gdynia, Świnoujście or Szczecin, and in a situation where it ends outside the territory of the Republic of Poland. The Regulation itself is to apply from April 21, 2023 to June 30, 2023. At the same time, the ban on importing products to Poland from Ukraine is maintained.

The Regulation applies to products such as cereals, sugars, dried fodder, seeds, hops, flax and hemp, fruit and vegetables, processed fruit and vegetable products, wines, beef and veal, milk and milk products, pork, mutton and goat meat, eggs, poultry meat, ethyl alcohol of agricultural origin, bee products, other products excluding CN codes falling within heading 0101 (live horses, donkeys, mules and hinnies).

More

KIELTYKA GLADKOWSKI humbly yet proudly announces that it has been ranked in the Legal500 EMEA 2023 ranking in the category: Data Privacy and Data Protection, Life Sciences and Healthcare and Private Client.

This achievement was made possible due to the trust of our Clients and international Colleagues from law firms with which we cooperate.

More

Publication date: April 11, 2023

In the light of the GDPR, the principles of data protection do not apply to data whose links between personal data and the persons concerned have been irreversibly removed. Consequently, anonymization is not subject to the provisions of the GDPR Regulation. However, the measure that the GDPR directly indicates as a method of data protection is pseudo-anonymization. In this case, personal data is replaced in such a way that with the use of appropriate information it is possible to identify the persons to whom data relates.

The main mechanism on which pseudo-anonymization is based is the replacement of sensitive information with identifiers, which are then properly encrypted, but in a way that allows the possible reversal of this procedure. Therefore, in the whole process, we receive two sets of information, the first is a set of data that we cannot associate with any natural person, and the second is information containing identifiers that allow the data to be assigned to a specific person. Only authorized users have the ability to reconstruct data. According to the findings of The Article 29 Working Party, we can distinguish five anonymization techniques. They are secret key encryption, hash function, hash function with key, deterministic encryption and tokenization.

More

Publication date: April 11, 2023

With the current energy crisis that many European countries are suffering, all the players, states, companies and individuals, are searching for new sources of energy at lower costs. At the same time, sustainability and the environmental compromise are becoming one of the axis of corporate activity focusing in achieving neutral-emission goals. In this context, it is worth discussing Power Purchase Agreements (PPAs) which are understood as long-term contracts under which a business agrees to purchase electricity directly from a renewable energy generator. This type of agreement originated over a decade ago in the United States and, since then, these contracts had grown exponentially from a 0.1 GW in 2010 to 23.7 GW in 2020 and had spread across all the continents.

More

Publication date: April 11, 2023

In the process of data collection, the personal data protection system imposes a relative ban on automated decision-making on controllers (Article 22 of the GDPR), the obligation to take into account data protection by design (Article 25 section 1 of the GDPR) and default data protection (Article 25 section 2 of the GDPR), as well as the need to carry out an assessment of the effects of processing for data protection (data protection impact assessment – art. 35 GDPR). The Data Protection Regulation serves protective purposes, which is to ensure the protection of the rights and freedoms of data subjects in connection with the processing of their personal data, taking into account, however, the principles of data protection regulated in art. 5 of the GDPR, especially reliability and transparency, data minimization and the risk-based mechanism approach.

Under the essence of data protection by design within the meaning of Art. 25 of the GDPR, the controller is obliged to take into account the protection of personal data already at the design stage of a specific solution, service or artificial intelligence system. This is to ensure, among other things, that the protection of personal data will become an immanent element of each project already at the stage of creation.

More