by jm | Apr 15, 2026 | GDPR and iGDPR guides for practitioners and beginners
A privacy policy is one of those documents that most companies have — but which rarely serves its actual purpose. The most common scenario: the website owner copied a template from the internet, changed the company name, and published it. The document describes data... by jm | Apr 11, 2026 | GDPR and iGDPR guides for practitioners and beginners
A supervisory authority inspection is one of those events that organisations tend to treat as a distant risk — until it arrives. In reality, data protection authorities across Europe are increasingly active, coordinated and well-resourced. The cumulative total of GDPR... by jm | Apr 8, 2026 | GDPR and iGDPR guides for practitioners and beginners
Running an online store inevitably involves processing the personal data of customers — from order placement, through payment and delivery, to returns and marketing communications. Each of these stages is a separate processing activity requiring an appropriate legal... by jm | Apr 8, 2026 | GDPR and iGDPR guides for practitioners and beginners
GDPR corporate groups compliance is one of the most demanding organisational challenges in data protection. Each company within a group is a separate legal entity — and therefore, as a rule, a separate data controller under GDPR. You cannot manage compliance centrally... by jm | Apr 8, 2026 | GDPR and iGDPR guides for practitioners and beginners
Whistleblowers GDPR compliance is an area where data protection obligations and reporting system requirements overlap directly. In Poland, the Act on the Protection of Whistleblowers entered into force on 25 September 2024, with external reporting channels becoming...