A GDPR compliance audit is a systematic review of personal data processing activities within an organisation, designed to assess whether the company meets the requirements of the data protection regulation. It is not a one-off exercise from 2018 — it is a process that should be repeated regularly, as business processes, technologies, and the legal […]
On 3 April 2026, the amended Act on the National Cybersecurity System (KSC) entered into force in Poland, implementing the EU’s NIS2 Directive (Directive (EU) 2022/2555). This is a fundamental change — the previous legislation covered approximately 400 operators of essential services, while the new rules extend to over 42,000 entities. For many organisations, NIS2 […]
The HR department is one of the most data-intensive areas of any organisation. From the moment a job advertisement is published, through the entire period of employment, to the archiving of records after the employment relationship ends — HR handles the personal data of employees, candidates, and contractors on a daily basis. At the same […]