How to choose the right GDPR software for your organisation? Most start with Excel — record of processing activities in a spreadsheet,...
How to Choose GDPR Software — What to Look For
read more
GDPR
Processing Personal Data for Scientific Research — What the New EDPB Guidelines Clarify
Apr 25, 2026 | GDPR Watch
On 16 April 2026, the European Data Protection Board (EDPB) adopted Guidelines 1/2026 on the processing of personal data for scientific research...
Europrivacy as a Mechanism for International Data Transfers — What the EDPB Decision Changes
Apr 25, 2026 | GDPR Watch
On 16 April 2026, the European Data Protection Board (EDPB) adopted two significant decisions regarding Europrivacy certification. First, it...
CEF 2026 — EDPB Launches Coordinated Enforcement on Transparency and Information Obligations
Apr 25, 2026 | GDPR Watch
On 19 March 2026, the European Data Protection Board (EDPB) officially launched the fifth edition of the Coordinated Enforcement Framework (CEF) — a...
CCPA vs GDPR – Key Differences and What They Mean for Your Business
Apr 21, 2026 | GDPR and iGDPR guides for practitioners and beginners
CCPA vs GDPR — these are the two most influential data privacy laws currently in force, and understanding how they differ is essential for any...
GDPR Compliance for US Companies – When It Applies and What to Do
Apr 21, 2026 | GDPR and iGDPR guides for practitioners and beginners
GDPR compliance for US companies is not optional — and it is not a European problem alone. It is not. If your company collects, processes, or...
Digital Omnibus – What Changes to the GDPR and What the EDPB Says About It
Apr 18, 2026 | GDPR Watch
On 19 November 2025, the European Commission published a legislative package known as the Digital Omnibus. It is the most comprehensive...
Personal Data Breaches Under GDPR – How the 72-Hour Rule Works Across Europe
Apr 16, 2026 | GDPR and iGDPR guides for practitioners and beginners
A personal data breach is one of those events every organisation hopes will never happen — and one for which every organisation needs a documented...
Employee Monitoring and GDPR – What Employers Can Do
Apr 16, 2026 | GDPR and iGDPR guides for practitioners and beginners
Employee monitoring under GDPR is one of the areas most frequently scrutinised by supervisory authorities across the EU — and at the same time one...
Email Marketing and GDPR – Consent, Legal Bases, and What Changes Under the ePrivacy Rules
Apr 16, 2026 | GDPR and iGDPR guides for practitioners and beginners
Email marketing is one of the areas where compliance requirements change fastest — and where violations are easiest to detect. Every organisation...
EDPB DPIA Template – What It Contains and What Changes for Organisations
Apr 16, 2026 | GDPR Watch
On 14 April 2026, the European Data Protection Board (EDPB) published the first harmonised template for Data Protection Impact Assessments (DPIA)...
Data Protection Officer – When Required, Responsibilities, and Common Pitfalls
Apr 15, 2026 | GDPR and iGDPR guides for practitioners and beginners
The Data Protection Officer (DPO) is one of the most ambiguous roles in the organisational structure arising from the GDPR. In many organisations,...
Data Transfers Outside the EEA – When They Are Lawful and How to Safeguard Them
Apr 15, 2026 | GDPR and iGDPR guides for practitioners and beginners
Every organisation using SaaS systems, cloud services, email marketing tools, CRM platforms, or HR software should ask itself one question: where...
GDPR Compliance Audit – How to Conduct One and What to Check
Apr 15, 2026 | GDPR and iGDPR guides for practitioners and beginners
A GDPR audit is one of those tasks that sounds serious but is rarely carried out regularly in practice. The reason is simple: without proper...
NIS2 and GDPR – What They Have in Common and What You Need to Do
Apr 15, 2026 | GDPR and iGDPR guides for practitioners and beginners
From 3 April 2026, the amended Act on the National Cybersecurity System (KSC), implementing the EU NIS2 Directive, is in force in Poland. For...
Employee Personal Data – What You Can Process and for How Long
Apr 15, 2026 | GDPR and iGDPR guides for practitioners and beginners
Employee personal data is one of the most extensive areas of GDPR in practice — and at the same time one of the most frequently overlooked during...
Privacy Policy – What It Must Contain and How to Write It
Apr 15, 2026 | GDPR and iGDPR guides for practitioners and beginners
A privacy policy is one of those documents that most companies have — but which rarely serves its actual purpose. The most common scenario: the...
GDPR Supervisory Authority Inspections – How to Prepare and What Authorities Check
Apr 11, 2026 | GDPR and iGDPR guides for practitioners and beginners
A supervisory authority inspection is one of those events that organisations tend to treat as a distant risk — until it arrives. In reality, data...
GDPR and Ecommerce – Obligations for Online Store Owners
Apr 8, 2026 | GDPR and iGDPR guides for practitioners and beginners
Running an online store inevitably involves processing the personal data of customers — from order placement, through payment and delivery, to...
GDPR in Corporate Groups – Managing Data Protection Across Multiple Entities
Apr 8, 2026 | GDPR and iGDPR guides for practitioners and beginners
GDPR corporate groups compliance is one of the most demanding organisational challenges in data protection. Each company within a group is a...