On March 2nd, the Polish data protection office (UODO) announced that it had imposed a financial penalty on the electoral committee of Karol Nawrocki, a candidate for the presidency. The fine of 35,582 PLN was levied for breaching GDPR regulations by revealing personal data related to Jerzy Ż., which was specifically documented in sales agreements and a holographic will. This situation stems from events during the 2025 election campaign, where Nawrocki's team faced scrutiny over the controversial purchase of a flat from an elderly individual.

The case focuses on the campaign conduct of Nawrocki, who had support from influential figures, including PiS member Przemysław Czarnek, during the time these allegations arose. The electoral committee's defense argued against the allegations regarding the flat purchase, but the UODO's ruling indicates a significant breach of privacy laws that could have repercussions not only for the committee but also for Nawrocki’s public image going into future political contests. The enforcement of GDPR in this case underscores the importance of compliance and accountability during electoral processes.

This ruling serves as a reminder of the stringent data protection laws that govern political campaigns in Poland, reflecting the broader implications of GDPR laws across Europe. The outcome may influence how political entities handle sensitive information in the future, prompting a reassessment of data management practices within campaigning organizations to avoid similar incidents that could tarnish reputations or incur financial penalties in the highly competitive political landscape.