On 18–19 September 2025, the University of Rzeszów hosted the annual meeting of Data Protection Officers (DPOs) from medical universities across the country, brought together under the Conference of Rectors of Academic Medical Universities (KRAUM). The initiative came from the University of Rzeszów’s Data Protection Officer, Mr Krystian Antochów.

The event, held regularly since 2018, was organised under the patronage of the President of the Personal Data Protection Office, Mr Mirosław Wróblewski, and the Rector of the University of Rzeszów, Professor Adam Reich, who was represented at the meeting by the Vice-Rector for Vice-Rector for Social and Economic Cooperation, Professor Janusz Pasterski.

Keynote speakers included:

• Ms Agata Miłocha, Department of Law and New Technologies, Personal Data Protection Office – presenting the role of the DPO in the data protection system.
• Ms Renata Podlewska, Information Security Officer and DPO at the Regional Blood Donation and Transfusion Centre in Poznań – outlining the origins of DPO workshops within KRAUM and future plans for the team.
• Mr Piotr Błaszczeć from UNISECO – an information security expert for over a decade – who discussed current threats and challenges in cybersecurity and data protection in medical universities.
• Mr Jacek Zontek, Head of the AIMS Cybersecurity Foundation, DPO, and adviser on cybersecurity in the public and corporate sectors – analysing the impact of proposed regulations under the National Cybersecurity System Act on the role of DPOs in key organisations.

The intensive first day concluded with a presentation by Mr Marek Groń, Head of the University’s IT Centre, who discussed the implementation of MFA (multi-factor authentication) at the University of Rzeszów as a practical step in strengthening data protection.

Participants also joined the 25th Anniversary Jubilee of medical degree programmes at the Collegium Medicum in the Podkarpackie Philharmonic, and took part in a study visit to the University’s Medical Simulation Centre, guided by its Head, Dr Grzegorz Kucaba. The two-day meeting closed with a tour of the historical “Pod Złotą Głową” (Under the Golden Head) pharmacy museum, located in the G4 building, presented by the University’s DPO, Mr Krystian Antochów.

The workshops aim to continue the work initiated in 2017 by KRAUM on developing a Code of Conduct for Medical Universities in the area of data protection, as well as promoting the exchange of experience. The main objectives include raising competences, developing skills and knowledge among DPOs, and promoting best practices. The exchange of experience enables the adoption of proven and effective methods of data protection. Monthly online meetings further provide a platform for knowledge exchange, communication, and cooperation between DPOs from medical universities.

The importance of collaboration between medical universities in the field of information security contributes to the harmonisation of data protection procedures, ensuring the unification of standards across institutions. The model of cooperation developed over the years facilitates a swift and effective response to changing legal regulations. By building joint strategies, medical universities strengthen data protection across the national healthcare education sector.

Photo: Michał Święcicki