Cybersecurity & Data protection

Scroll to explore
The importance of data protection has never been greater than it is today. Our team recognizes this issue and is committed to working with clients to address this challenge.


Our team has extensive experience in adapting companies to meet cybersecurity regulations for clients across a wide range of sectors, including new technology, fintech, healthcare, energy, and heavy industry. We provide guidance on how to comply with the requirements of the Act of 5 July 2018 on the national cybersecurity system, which implements Directive 2016/1148 of the European Parliament and the European Council of 6 July 2016 on measures for a high common level of security for networks and information systems within the territory of the EU.

General Data Protection Regulation (GDPR)

We also support our clients in adapting and maintaining compliance with the requirements of Regulation (EU) 2016/679 of the European Parliament and the European Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC, known as GDPR, which came into force in Poland on 25 May 2018.

Fintech cybersecurity

We understand that companies in the financial sector are the most common target of cyber attacks. We provide comprehensive advice to help clients in the FinTech area face this challenge by preparing a full legal infrastructure.


[ 01 ]
  • Conforming to the Act of 5 July 2018 on the national cybersecurity system, which enforces Directive 2016/1148 of the European Parliament and the European Council of 6 July 2016.
  • Providing continuous legal counsel on cybersecurity.
  • Offering support in handling incidents.
  • Conducting cybersecurity training sessions.
[ 02 ]
Adherence to GDPR requirements, including:
  • Performing audits of personal data processing to ensure compliance with data protection regulations.
  • Creating documentation on personal data processing and all necessary documents, templates, clauses, policies, or procedures to meet obligations under data protection laws.
  • Providing guidance on implementing audit recommendations within the organization.
[ 03 ]
Continuous legal advice on personal data protection, including:
  • Analyzing new and existing business processes for compliance with personal data protection regulations.
  • Developing procedures, documents, and agreements necessary to fulfill obligations under data protection laws.
  • Assisting in reviewing applications from individuals whose data is processed and in exercising their rights under the GDPR.
  • Evaluating if a breach of personal data protection needs to be reported to the President of the Personal Data Protection Office (PDPO) and providing opinions on agreements for personal data processing.
  • Outsourcing the Data Protection Officer role.
  • Providing counsel on proceedings before the PDPO, Provincial Administrative Courts, and the Supreme Administrative Court.
  • Conducting training sessions on personal data protection.
[ 04 ]
Fintech cybersecurity:
  • Preparing necessary documentation.
  • Negotiating all agreements that include IT solutions used for providing financial services.
  • Representing clients before appropriate national institutions.
PKN Orlen Group
Advice on the adaptation of companies from the PKN Orlen Capital Group, operators of key services, to the requirements of the Act on the National Cyber Security System.
Arteria Group
Adaptation to the requirements of the GDPR and providing ongoing legal support on personal data protection for 11 companies of the Capital Group (Arteria Contact Center Sp. z o.o. / Polymus Sp. z o.o. / Arteria Document Solutions Sp. z o.o. / Trimtab Arteria Management Sp. z o.o. Sp.k. /Arteria S.A. / BPO Management Sp zo.o. / Gallup Arteria Management Sp. z o.o. Sp.k / Sellpoint Sp. z o.o / Brave Agency Sp zoo, Arteria Logistics Sp.z o.o. / BC Partner Sp z o.o.), operating in the market of outsourcing sales support processes, including telemarketing.
LOT Polish Airlines
Support in implementation of the comprehensive documentation and strategy for personal data protection for Polish flag carrier airline, Polskie Linie Lotnicze „LOT” S.A.
JSW Capital Group
Adaptation to the requirements of the GDPR of 13 companies of the JSW Capital Group (Jastrzębska Spółka Węglowa S.A. / JSW Innowacje S.A. / Centralne Laboratorium Pomiarowo-Badawcze sp. z o.o. / Jastrzębskie Zakłady Remontowe Sp. z o.o. / JSW KOKS S.A. / Jastrzębska Spółka Kolejowa sp. z o.o. / JSU sp. z o.o. / Przedsiębiorstwo Gospodarki Wodnej i Rekultywacji S.A. / JSW Shipping sp. z o.o. / JSW Logistics Sp. z o.o. / JSW Szkolenie i Górnictwo sp. z o.o. / JSW Ochrona sp. z o.o. / ADVICOM sp. z o.o.), one of the largest producers of coking coal in the EU, employing more than 25,000 people.
Energa S.A.
Analysis of internal GDPR documentation prepared by GK Energa.

Cybersecurity & Data protection Team

How can we help you?
Send us a message.
By submitting the form you agree to our Privacy Policy terms
Visit Us


Szara 10 street

00-420 Warsaw

TEL. +48 22 646 42 10



Swobodna 1 street

50-089 Wroclaw

TEL. +48 22 646 42 10


LSW Bieńkowski, Laskowski, Leśnodorski,
Melzacki and Partners sp.k.

2012-2024 © All Rights Reserved.
Privacy Policy

design & dev by : 247®Studio

Go Up