The General Data Protection Regulation 3 Years After Implementation: A Comparison between Local Government Administration in Poland and the Republic of Lithuania
Purpose: The aim of the article is to compare the current state of personal data protection almost 3 years after the General Data Protection Regulation (GDPR) in groups of local government administration offices in Poland and the Republic of Lithuania. Design/Methodology/Approach: The diagnostic survey method with the Computer Assisted Web Interview was used. The survey was conducted in local government administration offices in Poland and the Republic of Lithuania almost 3 years after the GDPR implementation. Findings: As the results of the research, the opinions about the office compliance with the GDPR requirements, personal data breaches, requests from data subjects, external audits and inspections, the GDPR impact on the office, the maturity of processing data and problems in ensuring compliance with the GDPR data processing from local government offices in Poland and Republic of Lithuania were obtained. Practical Implications: The results constitute a knowledge base on the personal data protection situation in surveyed countries and can be a form of the basis for further, more in-depth analysis and research. Originality/Value: The article presents our original research. So far, to the best of our knowledge, no comprehensive research has been conducted into this field and compared the current situation in the surveyed countries.