DPDPA is now in force in India. Run a free privacy scan on your site. Scan now

🇵🇱 European Union

Cookie consent in Polska

Consent and privacy law in Polska

In short
Poland applies the GDPR through its 2018 Personal Data Protection Act, supervised by the UODO. Cookie rules derive from the Telecommunications Law, which transposes the ePrivacy storage requirement. A notable national feature is that browser settings have historically been referenced as a way of expressing cookie preferences, but the UODO and EU case law now require clear opt-in for non-essential cookies rather than reliance on default browser settings. The UODO expects transparent information in Polish and treats pre-ticked boxes as invalid. Poland is moving its electronic communications rules to a new act that will modernise the cookie provisions.
Authority
Urząd Ochrony Danych Osobowych (UODO)
Status

GDPR applies since 25 May 2018, with the Polish Personal Data Protection Act

Primary law
GDPR
Languages

pl

Who must comply

Any organization that offers goods or services to people in the EU or monitors their behavior, wherever the organization is based.

Penalties

Up to 20 million euros or 4 percent of global annual turnover, whichever is higher

Key obligations

  • Obtain prior, opt-in consent before non-essential cookies
  • Make refusing as easy as accepting
  • Keep records that prove consent
  • Honor withdrawal at any time
  • Respect data subject rights (access, erasure, portability)

Local guidance

  • Use clear opt-in consent rather than relying on browser settings
  • Provide cookie information in Polish
  • Avoid pre-ticked consent boxes
  • Watch for the new electronic communications act updating cookie rules

How ConsentX helps

  • Prior-script blocking for true opt-in
  • Equal-weight Allow and Reject controls
  • Tamper-evident consent receipts and evidence
  • One-click withdrawal trigger
  • Built-in DSAR workflow with 30-day SLA
Get started free
yoursite.com
🇵🇱 Poland

We value your privacy

We ask for your consent before any non-essential cookie, with the rules that apply in your region.

Allow allReject non-essentialManage preferences

This page is a plain-English summary for general information and is not legal advice. Confirm your obligations with qualified local counsel.

How to comply with Poland using ConsentX

  1. 1

    Scan your website

    Run a free scan to find every cookie and tracker on your site, so you know exactly what needs consent under Poland.

  2. 2

    Show a geo-aware consent banner

    Add the ConsentX banner. It detects each visitor region and shows the consent experience that Poland requires, automatically.

  3. 3

    Block trackers until consent

    Keep non-essential cookies and trackers blocked until the visitor agrees, so nothing fires before consent.

  4. 4

    Record tamper-evident proof

    Every choice is stored as a tamper-evident consent receipt you can produce in a Poland audit.

  5. 5

    Handle data requests on time

    Use the built-in DSAR workflow with SLA timers to answer access, deletion and opt-out requests within the legal deadline.

Frequently asked questions

Can browser settings serve as cookie consent in Poland?+

Reliance on default browser settings is no longer sufficient for non-essential cookies. Following EU case law, the UODO expects a clear opt-in action rather than inferred consent from browser configuration.

Which authority enforces data protection in Poland?+

The UODO, the Personal Data Protection Office, is the national supervisory authority responsible for enforcing the GDPR and the Polish Personal Data Protection Act.

Governing law

🇪🇺 GDPR

Other countries in European Union

🇩🇪 Deutschland🇫🇷 France🇪🇸 España🇮🇹 Italia🇳🇱 Nederland🇧🇪 België / Belgique🇵🇹 Portugal🇸🇪 Sverige🇦🇹 Österreich🇮🇪 Éire / Ireland🇩🇰 Danmark🇫🇮 Suomi