I am an expert with over 25 years of experience in IT and data processing compliance, specializing in data protection, information security, and the implementation of regulations such as GDPR, DORA (Digital Operational Resilience Act), AI Act, as well as ISO standards. I combine technological, legal, and organizational expertise to help companies effectively and responsibly manage data and regulatory risk.
What sets me apart?
Strategic approach – perfectly tailored to each organization
I analyze the structure, culture, and goals of an organization to design and implement compliance systems that are flexible, efficient, and sustainable.
Hands-on advisory experience
I support organizations in the day-to-day implementation of digital transformation, compliance, and AI solutions, relying exclusively on practical projects and measurable results.
Focus on long-term regulatory resilience and transparency
I don’t just implement legal requirements—I build solid foundations of trust with supervisory authorities, clients, and business partners alike.
For many years, I have been leading workshops, training sessions, and academic lectures on digital transformation, artificial intelligence, and modern technologies. I share knowledge not only with future leaders but also with business practitioners, helping develop key skills in compliance, innovation, and operational resilience.
My mission
I help organizations turn complex legal and technological requirements into tangible business value. I support boards, compliance departments, and operational teams in building a secure, compliant, and sustainable future—rooted in practice, expertise, and experience.
Minimize Risk, Maximize Compliance – Comprehensive Compliance Advisory
Compliance and Information Security Management
I specialize in regulatory advisory at the intersection of law, technology, and information security. I help organizations effectively implement the requirements of GDPR, Information Security, DORA, and the AI Act—not just “on paper,” but in real operational practice.
My services include:
Expert Compliance Consulting
In-depth regulatory compliance assessments, data protection and information security audits, and readiness evaluations for GDPR, DORA, and AI Act compliance—with clear recommendations and actionable roadmaps.
ISO Standards Implementation
Preparing organizations for certifications (e.g., ISO 27001, 9001 etc.), developing essential documentation, and supporting teams in building information security and business continuity management systems—from strategy to operational procedures.
DORA and AI Act Implementation
Practical solutions to enhance digital operational resilience, with a focus on ICT risk management and the responsible adoption of AI in organizations.
Training and Workshops
Tailored training sessions on compliance, data protection, information security, and AI—always with a focus on real-world application.
Data compliance is an investment in your organization’s security, reputation, and future.
In a world of rapid digitalization and increasingly demanding regulations, data compliance is not just a requirement—it’s a strategic advantage.
Data Compliance Training – an investment in the security of your business
A Data-Compliant Future – Experts in Compliance, GDPR, AI Act, and DORA
With extensive experience working with clients across financial, technology, and various other sectors, I understand the unique challenges modern businesses face. My approach is defined by in-depth needs and risk analysis, combined with the implementation of tailored solutions that meet current standards and regulations.
By working with me, you can be certain that your organization meets the highest security and compliance standards, and that your employees have the knowledge and skills needed to effectively protect the company’s valuable information assets.
Contact details:
tel: 503 136 398
e-mail: lukaszwrona@lukaszwrona.pl
LinkedIN: https://www.linkedin.com/in/lukaszwronawroclaw/
A professional approach to data compliance enables organizations not only to meet legal requirements—such as Information Security, GDPR, DORA, and AI Act—but also to build a culture of responsibility, resilience, and trust.