• Polski
  • English
  • Deutsch
  • Español
  • Chinese
  • Japan
  • Korean

Personal data protection, GDPR

The protection of personal data does not end with the implementation of procedures and policies, but, in practice, it requires knowledge of the organisation and its processes, and constant monitoring and vigilance. It is about combining legal and technical with human expertise. We support our Clients in the ongoing and effective protection of personal data processed by them.

Magdalena Kaleta-Maniak

Manager
Attorney-at-law

Magdalena Kaleta-Maniak

Manager
Attorney-at-law

Compliance with data protection regulations is becoming increasingly demanding for organizations. When advising in this area, we go "off the beaten track" by designing unconventional formulas for entrepreneurs that do not hinder business development, but take into account its specific nature. We start by understanding your needs, and then implement practical and useful solutions.

Ludmiła Łuczak

Manager
Attorney-at-law

Ludmiła Łuczak

Manager
Attorney-at-law

Scope of advice

When advising in the area of personal data protection, we combine the knowledge of experts in HR, intellectual property law, new technologies, e-commerce and contract negotiations. Thanks to this, we do not lose sight of legal requirements in other areas that affect the success of the project planned by the Client and the compliance of the entire company. We have carried out dozens of GDPR implementations, including in numerous listed companies and industry leaders, as well as in international capital groups. We had been dealing with data protection long before the GDPR was enacted - we created solutions that are now used by others. Our support in the area of personal data protection / GDPR includes:

Data protection audits - we offer comprehensive audits of data protection / compliance with the GDPR. Thanks to cooperation with the best IT-security specialists, we can verify not only legal compliance, but also offer comprehensive support including IT security

Implementation of a data protection system in accordance with the GDPR – we implement from scratch systems of management and protection of personal data, also in capital groups, taking into account the international data transfer

Risk analyses / DPIA – we identify processing processes that require an in-depth risk analysis - DPIA, in particular using innovative technological and organisational solutions or automated decision making

Designing and negotiating key data transfer contracts, outsourcing key IT services, NDA or regular entrustment contracts. We advise in selecting suppliers / negotiating IT contracts

Crisis management - we support you in the management of data protection incidents, in communication with the President of the Personal Data Protection Authority (UODO) and the President of the Competition and Customer Protection Authority, as well as in inspections by authorities, or the organisation of audit simulations

Providing DPO service - we provide ongoing support for Data Protection Officers by offering constant contact and assistance. We understand the needs of DPOs, as we ourselves perform this function, among others, in international capital groups with multi-billion dollar capitalization

Profiling and loyalty programs we advise on the implementation of user-adapted marketing - supporting the design of digital marketing or loyalty programs and negotiating agreements with operators of the largest marketing databases in Poland (See more on this area of our competence E-commerce Law and Marketing and Advertising Law)

Practical workshops – we offer training sessions and workshops on data protection providing practical tips and case studies tailored to the specific needs of the company and the industry

Completed projects

Responsible partner

News

News | TMT/IT

The Legal 500: O&W with awards in 7 categories

Rafał Olesiński

MORE

News | TMT/IT

The Legal 500: O&W with awards in 7 categories

Rafał Olesiński

MORE