OUR Services

Magic is a mix of talent and professional behavior

The story

We speak our clients’ language because we’ve been in their shoes countless times. We understand their problems because many of them have been our own. We can anticipate their needs and can see the dangers that await in various stages of their business.

General services

We understand business strategy and IT&C related technical aspects

Our combined experience has seen us facing some very interesting challenges. We bring together experience and strategy acquired working with companies in IT, media, banking, online stores and other industries. We’ve been through the creation and assisted in the management of companies whose activity “touched” millions of people. As the Chinese would say - we’ve looked into the eyes of the dragon and lived to tell the tale.

Our Services

Communications & Mobility

We cover legal aspects generated by the use of smart devices on a large scale in modern business society. We also advice line carriers, mobile operators, MVNOs and ISPs on cutting edge regulatory issues.

eCommerce & Digital Media

We cover legal aspects of developing and publishing content, negotiating and drafting industry-specific contracts, advising on games rating laws and regulations, virtual worlds, gaming, social media, new science launches, acquisitions, and product sales and recalls.

Privacy & Information Management

We are experienced in providing legal assistance on highly specialised data protection aspects, such as cloud computing, data breaches, behavioural advertising, data retention, international transfer of personal data, privacy impact assessments etc.

Technology & Outsourcing

We offer legal assistance to our clients on cloud services, finTech, healhTech, hardware developments. We also cover legal aspects of technology disputes, global technology agreements, technology procurement etc.


How we can help you become GDPR compliant.

for organisations

Privacy One. A one-of-a-kind experience for our clients

PrivacyOne is a project meant to provide companies a much needed service in Romania – to understand the impact of their activity on the privacy of the persons whose data they are processing, and to put in place mechanisms, policies and processes that guarantee user privacy, in line with the requirements of EU and Romanian law. Starting from 25 May 2018, when the new General Data Protection Regulation (GDPR) becomes applicable, companies will have significant new obligations in the field of data protection, with substantial impact on their day to day activity.

Contact us

GDPR Readiness Assessment

Gap analysis, review of existing policies and procedures, action plans, privacy training.

Privacy Impact Assessments

Risk identification and suggestions for mitigation, evaluation and determination of appropriate grounds for processing, tailored privacy notices

Data mapping

Inventory of data processing activities, gap analysis and recommendations

Web Cookie Compliance

Cookie auditing, tailored privacy policies, suggested changes to cookie behavior, follow-up legislative process of the draft ePrivacy Regulation.

Data Breach Assistance

Assistance with the audit, breach response and notification requirements in case of data breaches

Data Transfer Compliance

Privacy Shield & SCC, ad hoc clauses and authorization, assistance in the process of negotiation of transfer contracts

Privacy Compliance Programs

Data processing program assessment, privacy action roadmaps, privacy policies, privacy training for staff


Outsourced DPO services, assistance in selecting an in-house DPO, DPO training on demand

for the public

Empowering persons to take control over their data

Even under the currently applicable legal framework data subjects enjoy a wide range of rights in relation to how, by whom and for what purpose their personal data is being processed. From 25 May 2018 GDPR will give them even more control over how their personal data is being processed, with an increased scope of data subject access requests, broader right to erasure of data, broader right to restrict the data processing and to object to the processing, a new right to data portability, while controllers have strict deadlines in which they must respond. The exercise of these rights and the interaction with entities that process personal data (sometimes unlawfully) can be difficult for an untrained individual. But we are here to help.

Contact us

Receiving accurate information on the data processing activities

Do you want to know what data a certain entity processes about you, for what purpose, for how long and to whom it was transferred to? We can help you obtain this information.

Raising complaints over the processing of your personal data

When your issue with the entity processing your data cannot be solved amicably, we can guide you in filing a complaint with the data protection authority.

Subject access requests

You have the right to receive a copy of the data being processed about you by an entity, and we can help you receive it. You can also request information about the reasoning behind any automated decisions, such as a computer-generated decision to grant or deny credit, or an assessment of performance at work (except where this information is a trade secret).

Raising concerns over the use of personal data

If you believe an entity processing your personal data does not have a lawful ground to process some or all of your data, holds inaccurate information about you, has unlawfully disclosed information about you, is keeping information about you for longer than is necessary, is not keeping your information secure, or has collected information for one reason and is using it for something else, we can assist you in asking the entity in question to remedy these matters.

The secret

When you build a world, you must be careful to provide it with a strong and lasting foundation. Businesses, both big and small, are miniature worlds where the brand is highly defined by the relationship with the clients. Today, and ever more so in the future, the observance of the regulations related to the processing of personal data (of clients, users, employees, etc.) is becoming a hallmark in defining trust in a brand, and the source of significant competitive advantage. On the other hand, breaches of the applicable rules could trigger fines as high as 20 million EUR (or 4% of the annual global turnover, if higher).

We are Privacy One and we help our clients protect
their business from useless risks.

What do you say, would you like to have a chat?

Yes, I do!