by jm | Apr 8, 2026 | GDPR and iGDPR guides for practitioners and beginners
Running an online store inevitably involves processing the personal data of customers — from order placement, through payment and delivery, to returns and marketing communications. Each of these stages is a separate processing activity requiring an appropriate legal... by jm | Apr 8, 2026 | GDPR and iGDPR guides for practitioners and beginners
GDPR corporate groups compliance is one of the most demanding organisational challenges in data protection. Each company within a group is a separate legal entity — and therefore, as a rule, a separate data controller under GDPR. You cannot manage compliance centrally... by jm | Apr 8, 2026 | GDPR and iGDPR guides for practitioners and beginners
Whistleblowers GDPR compliance is an area where data protection obligations and reporting system requirements overlap directly. In Poland, the Act on the Protection of Whistleblowers entered into force on 25 September 2024, with external reporting channels becoming... by jm | Apr 8, 2026 | GDPR and iGDPR guides for practitioners and beginners
Choosing the right lawful basis GDPR requires for each processing activity is one of the first decisions every data controller must make. One of the first and most important questions that arises when implementing GDPR is: what legal basis are we using to process this... by jm | Apr 8, 2026 | GDPR and iGDPR guides for practitioners and beginners
Employees in most organisations are already using AI tools. Generative assistants, chatbots built on large language models, writing and document summarisation tools — artificial intelligence has entered everyday work so quickly that data protection procedures and...