Incidents and Complaints

1. COMPLAINTS: Relying upon Act of 6th September 2016 on trust services and electronic identification Ministry of Digital Affairs is responsible for supervision over trust service providers. Supervision covers both qualified and non qualified services. Compalaints related to providers may be filled on the Ministry of Digital Affairs webpage and on ePUAP platform. Please fill your identification data, add relevant attachment, like document scans, screen snapshots or other essential data related to circumstances and configuration of equipment. In case of technical problems pleas ask providers’s helpdesk first or admins responsible for e-government service.

2. INCIDENTS: Reporting incidents concerning trust service providers to the supervisory authority should be directed to the electronic submission box or the electronic delivery address of the Ministry of Digital Affairs. According to Article 20a of the Act of 5 September 2016 on trust services and electronic identification, "Trust service providers shall take appropriate technical and organizational measures to manage the risks to the security of the trust services they provide, in particular measures to prevent incidents that compromise security or integrity related to trust services, or to minimize the impact of such incidents. As part of the task mentioned in the first sentence, trust service providers take into account the latest developments in the field of cybersecurity. The trust service provider shall notify the minister responsible for IT about any incident that compromises security or integrity, which has a significant impact on the trust service provided or on the personal data processed within that service, without delay, and no later than 24 hours after the incident is detected. In the event that it is likely that the incident referred to in paragraph 2 will adversely affect a natural or legal person to whom the trust service was provided, the trust service provider shall also notify that natural or legal person about the incident and its potential consequences without undue delay."