Marcin Serafin

Marcin Serafin is a partner at Rymarz Zdort Maruta and the head of the Privacy & Data Protection practice and the Cybersecurity practice.

Experience and education:

Marcin is a recognised specialist in data protection and cybersecurity, with a 17-year track record of advising on numerous technology and regulatory projects. His experience includes building critical IT systems, implementing regulatory requirements for GDPR and cybersecurity, and selecting business models. He advised on the development of data governance and cybersecurity strategies, and building regulatory compliance. He supported clients in technology and business transformations across programmes and projects ranging in value from several hundred million to more than one billion zlotys.

Marcin specialises in handling information security incidents and in building strategies for digital resilience, effectively combining project experience, technical and legal expertise. He has advised clients on how to protect themselves from having penalties being imposed on them by regulators. His key clients include entities from the IT, telecommunications, energy, e-commerce, financial and manufacturing sectors.

From 2013 to 2014, he served as public policy manager at Google. He is an ISO 27001 lead auditor and is active as a lecturer and coach at the University of Warsaw, the Warsaw School of Economics, Jagiellonian University, and in private training. He has authored numerous articles and has been a speaker at industry conferences.

Awards and rankings:

Since 2018, he has been continuously ranked a leader and a recommended lawyer in leading rankings of lawyers and law firms in the area of data protection, specifically in the “Rzeczpospolita” daily newspaper (Lider), the Legal500 (Leading Individual) and Chambers & Partners (Band 3).