Independent data protection authorities are of critical importance to the effective protec- tion of personal data. Even under the previous Directive EU Member States were obligated to provide a designated supervisory authority. The fundamental reform of EU data pro- tection law and adoption of General Data Protection Regulation has introduced a num- ber of changes in the data protection law area. It also affected the provisions on national data protection authorities. To adapt to the new regulatory regime Polish legislator has decided to establish a new supervisory authority. The President of Personal Data Pro- tection Office has replaced the previous Inspector General for Personal Data Protection. However it needs to be noted that current provisions raised questions about the position of The President in the whole regulatory framework. Therefore the aim of this paper is to review current law and to define the legal position of Polish data protection authority.