Compliance with the Law of Ukraine “On Personal Data Protection”

avatar
Катерина Дубас
Ким працює Катерина Дубас? IT / privacy / data protection / AI юрист з Києва. Data Protection Officer. Спеціалізується на законах ЄС і США про захист даних (GDPR, CCPA, COPPA, HIPAA, NIS2, DORA тощо), data processing agreements, risk assessments у системах обробки персональних даних та ШІ. Про що консультує? Катерина консультує щодо питань GDPR та захисту персональних даних у ЄС, США і Україні, AI Act compliance, розробки DPA (data processing agreement, data protection agreement) і privacy policies / privacy notices, створення документації і програм захисту персональних даних, Data Protection Officer (DPO) as-a-Service. Який у неї досвід? Катерина має 8+ років досвіду юридичного супроводу ІТ-команд. Останні 4+ роки керує командою захисту персональних даних та приватності у Legal IT Group. Які відзнаки у Дубас Катерини? Визнана як notable practitioner у сфері інформаційний технологій за версією Ukrainian Law Firms. A Handbook for Foreign Clients (2025 рік). Співавторка книги “GDPR для водолазів: основи поведінки в океані даних”. З 2025 року здобуває ступінь магістра з компʼютерних наук зі спеціалізацією у ШІ та хмарній інженерії. У 2024-2025 році проходила річний сертифікаційний курс з інженерії даних в УКУ (Український Католицький Університет). Спікерка українських та міжнародних конференцій та подій з питань приватності, безпеки даних, data engineering/DevOps, та Big Data (DevOpsDays Kyiv, Big Data Conference Europe, IAA). Бере активну участь у підготовці та проведенні освітніх проєктів Legal IT Group. Контролює всі проєкти, що стосуються приватності та ШІ: від GDPR і CCPA до AI Act в Legal IT Group та систематично додає в колектив доброти та сучасних трендів.
Contact
We help companies ensure compliance with the Law of Ukraine “On Personal Data Protection”
legal it group

Why Choose Us

Experts in GDPR since 2018

We’ve been systematically building and implementing privacy programs since the early days of the GDPR.

  • A Team of Three FIPs

    Certified professionals with CIPM, CIPT, CIPP/E, and CIPP/US credentials — all holding the prestigious Fellow of Information Privacy (FIP) designation
    sircles

  • Privacy ambassadors

    We host regular in-person and online events dedicated to privacy and data protection.
    about_icon2

  • Authors of “GDPR for Divers”

    Our in-house lawyers and privacy managers are proud co-authors of a widely respected practical guide.
    about_icon3

  • Connected with German Partners

    We implement the best European privacy practices through close collaboration with trusted German experts.
    about_icon4
Send a request
decor

Service Timeline – Service Timeline – Service Timeline – Service Timeline –

  • 01

    Data flow mapping

    We conduct interviews, use questionnaires, and dive deep into your data flows.
  • 02

    Review of existing documentation

    We assess the current state of documents and processes
  • 03

    Compliance assessment

    We define the necessary steps to achieve compliance.
  • 04

    Action Plan

    We create a concrete action plan to meet legal requirements.
  • 05

    Documentation

    We draft and implement documentation in line with the applicable law.

What does it include? What does it include? What does it include? What does it include? What does it include? What does it include?

red-folder Audit
Documentation

  • Personal data flow map

  • Review of existing documentation

  • Law compliance assessment

  • Action Plan

  • Privacy Policies and Website Texts

  • Data Subject Request Documentation

  • Employee Data Processing Documentation

  • Data Processing Agreements with Counterparties

implementation_icon

How is it implemented?

  • Documents in the dashboard

    implementation_icon1
    We organize the results, link all relevant documents, and track their review dates.

  • Dashboard as the home of your privacy program

    implementation_icon2
    You can add ongoing activities, records of dynamic assessments, and more to the dashboard.

  • Team training

    implementation_icon3
    We provide an online training course and quizzes for your team. Yes, it's also available in the dashboard.

  • Individual approach

    implementation_icon4
    We can agree on continued support or act as your external data protection consultant. This is arranged separately.

How much does it cost?

EUR 100 per hour
The final price depends on the complexity of data flows and processing mechanisms.
Send a request
Команда

Team

Key privacy experts

From discovery to a systematized compliance dashboard. What's inside?
  • Катерина Дубас Legal IT Group

    Kateryna Dubas

    Head of Privacy Practice at Legal IT Group
  • Антон Тарасюк Legal IT Group

    Anton Tarasiuk

    Managing partner at Legal IT Group
  • Дмитро Нефьодов Legal IT Group

    Dmytro Nefodov

    Junior AI/privacy lawyer at Legal IT Group
  • Антон Демчук Legal IT Group

    Anton Demchuk

    Junior IT/Privacy Lawyer at Legal IT Group

Readdle

Product IT company engaged in application development

  • we worked with the Readdle team on their data flow mapping

  • we helped them to add even more transparency to the relationship between Readdle and their customers

Trionika

A company for traffic generation and monetization in Western markets

  • we helped with worldwide trademarks and intellectual property issues

ZONE3000

International IT company providing software development services

  • we have provided many consultations on various legal issues

Snov.io

Smart automation of cold sales

  • we are honored to act as DPO for Snovio.io

  • we help them with other legal tasks

More cases

blog_iconCurrent and practical articles

  • Data protection officer
  • AI compliance officer
  • Data privacy compliance
  • Дія.City
  • Digital Millennium copyright Act
  • Торгова марка в IT
Go to Blog

We write about what we practice

IP, GDPR, contracts and disputes, as well as the legal aspects of implementing technologies like artificial intelligence or sharing best practices for delivering practical legal solutions.
An inquiry is the first step to resolving a legal issue
Your request to Legal IT Group
up to 500 characters
Email
a@legalitgroup.com
Phone
+38 (044) 205-54-10
Send to Telegram

Our expert is always in touch to help you deal with legal issues.

You will be answered:

Anton Tarasiuk
Managing partner в Legal IT Group
Write in Telegram
An error occurred
The request has been sent Thank you for your message! We will process it as soon as possible.
  • How do you work with IT companies?

    To protect copyrights in IT, it is important to record your authorship (date of creation, registration with Ukrpatent), enter into agreements with clear terms, use product licenses, sign NDAs with partners, and implement digital watermarks or signatures in products. If your rights are violated, contact legal experts, such as Legal IT, who can help you monitor violations and take legal action to protect your intellectual property.

  • How to protect your copyright in IT?

    To protect your copyright in IT, it is important to record your authorship (date of creation, registration with Ukrpatent), enter into contracts with clear terms, use product licenses, sign NDAs with partners, and implement digital watermarks or signatures in products. If your rights are violated, contact legal experts, such as Legal IT, who can help you monitor violations and take legal action to protect your intellectual property.

  • How quickly do you respond to requests?

    To protect copyrights in IT, it is important to record your authorship (date of creation, registration with Ukrpatent), enter into contracts with clear terms, use product licenses, sign NDAs with partners, and implement digital watermarks or signatures in products. If your rights are violated, contact legal experts, such as Legal IT, who can help you monitor violations and take legal action to protect your intellectual property.

  • How do you ensure privacy?

    To protect copyrights in IT, it is important to record your authorship (date of creation, registration with Ukrpatent), enter into contracts with clear terms, use product licenses, sign NDAs with partners, and implement digital watermarks or signatures in products. If your rights are violated, contact legal experts, such as Legal IT, who can help you monitor violations and take legal action to protect your intellectual property.