Attorney-at-law and expert in personal data protection, compliance, and GDPR. Certified auditor of quality management systems under ISO 9001:2000 and of information security management systems under ISO 27001. She helps organisations bring their processes into full alignment with GDPR and the AI Act, drawing on years of experience within major corporate groups alongside hands-on in-house legal practice.
She serves as Data Protection Officer (DPO) and teaches data protection law at Kozminski University (ALK) and SWPS University. A regular speaker at industry training sessions and conferences on privacy, GDPR, and AI. From 2021 to 2025, she led the data protection and compliance practice at JDP Drapała & Partners. Between 2016 and 2018, she sat on the Expert Committee on GDPR Reform convened by the Inspector General for Personal Data Protection (GIODO), and from 2018 to 2024 she was a member of the Data Protection Committee at the Polish Chamber of Commerce (KIG). She has run her own law firm since 2008.
Beyond the technical work, she is passionate about making legal knowledge accessible and championing awareness and a culture of wellbeing in business. She supports lawyers through coaching and mentoring – leading with the right questions rather than ready-made answers – and works as a mindfulness teacher and strengths-based mentor.