The draft Act of April 13, 2026, amending the Act on Food and Nutrition Safety will enter into force six months after its publication. The new regulations primarily impact producers, importers, distributors, and sellers of dietary supplements – both in traditional and online channels. Below, we present the real changes to your business.
We are delighted to share an important milestone in the continued development of KG Legal’s Data, AI & Cybersecurity Desk.
It has been a great honour to serve as the exclusive expert contributors for Poland to the OneTrust DataGuidance Privacy Overview – Poland, one of the world’s leading professional legal compliance resources relied upon by in-house counsel, privacy professionals, compliance officers, multinational organisations and technology companies operating across multiple jurisdictions.
At KG Legal KIELTYKA GLADKOWSKI, we have always believed that the role of a modern law firm extends well beyond providing legal advice. It also means actively contributing to the development of legal thought, sharing practical experience and helping businesses navigate an increasingly complex legal and regulatory environment. We are therefore delighted to announce an important milestone in the continued growth of our firm’s expert profile – our legal analyses are now being published on a regular basis in Dziennik Gazeta Prawna, one of Poland’s most respected and influential legal and business publications.
The Act amending the Act on the National Cybersecurity System aims to implement Directive (EU) 2022/2555 of the European Parliament and of the Council of 14 December 2022 (NIS Directive 2) and the partial application of Commission Delegated Regulation (EU) 2024/1366 of 11 March 2024 supplementing Regulation (EU) 2019/943 of the European Parliament and of the Council.
The amendment to the KSC Act significantly expands the scope of the regulations and introduces new obligations in the field of cybersecurity management. The changes include, among other things, the implementation of risk management systems and expanded incident reporting requirements. The new regulations also strengthen the powers of supervisory authorities and significantly increase the maximum amount of financial penalties. It also introduces liability for the management staff (manager) of an entity. In practice, this requires certain entities to take steps to comply with the new regulations.
Just a few years ago, online store owners primarily had to ensure terms and conditions, privacy policies, and efficient order processing. Today, this is clearly not enough. EU regulations such as the Omnibus Directive and the Digital Services Act (DSA), as well as the increasing role of artificial intelligence in assessing store credibility, force businesses to consider their platforms much more broadly. It is no longer just about regulatory compliance, but also about building digital trust, which influences a store’s visibility, legal security, and customer purchasing decisions. Below, we present a practical checklist of the most important actions to implement to reduce the risk of sanctions and increase the credibility of an online store.