![logo]()
Up Secure | UPSEC
Up Secure | Up Secure is a Gdańsk‑based consultancy and tech‑engineering firm that empowers businesses to operate securely and compliantly in today’s digital landscape. With over a decade of expertise in privacy engineering, cybersecurity, and software development, we specialize in translating complex legal regulations into secure, automated technical frameworks.
Core Competencies & Services include for example:
- Data Protection & Compliance : GDPR, NIS2, AI Act readiness; audits, maturity assessments, DPO outsourcing, privacy-by-design integration
- Cybersecurity & Secure Engineering: SSDLC reviews, penetration testing, web-app security, secure software design
- Technical & Legal Consultancy: Tailored strategies combining legal insights and engineering best practices to meet evolving regulatory demands
- Education & Training: Expert-led courses and workshops (online or onsite) on secure development, privacy engineering, open‑source security, and AI‑privacy use cases
Founded in 2016 by dr Piotr Siemieniak - an engineer-lawyer with a PhD in Data Protection by Design - Up Secure has trained over 500 professionals and published extensively in the field. Our mission is to simplify the intersection of law and technology, enabling companies to scale with confidence through robust, transparent, and compliant digital solutions.
| Name | Files | Country | Website | Projects | Notes | Date signed | Date enabled | |
|---|---|---|---|---|---|---|---|---|
 |
Zendesk | — | — | https://www.zendesk.com/ | — | — | — | — |
 |
Atlassian | — | — | https://www.atlassian.com/ | — | — | — | — |
 |
Digital Ocean | — | — | https://www.digitalocean.com/ | — | — | — | — |
 |
Miro | — | — | https://miro.com | — | — | — | — |
 |
Notion | — | — | https://www.notion.so/ | — | — | — | — |
 |
GitHub | — | — | https://github.com/ | — | — | — | — |
 |
Docker Hub | — | — | https://hub.docker.com/ | — | — | — | — |
 |
OVH | — | — | https://www.ovhcloud.com | — | — | — | — |
 |
Cloudflare | — | — | https://www.cloudflare.com/ | — | — | — | — |
 |
Microsoft Azure | — | — | https://azure.microsoft.com | — | — | — | — |
| — | Microsoft M365 | — | — | https://www.microsoft.com | — | — | — | — |
 |
— | — | https://google.com | — | — | — | — | |
 |
Amazon Web Services | — | — | https://console.aws.amazon.com/ | — | — | — | — |
| Country | Processors |
|---|---|
| No elements to display | |
| Name | Files | Website | Maturity level | Projects | Notes | |
|---|---|---|---|---|---|---|
| — | ISO 9001:2015 | — | — | In Implementation | — | — |
| — | ISO 27001:2022 | — | — | In Implementation | — | — |
| Name | Files | Category | Group |
|---|---|---|---|
| DPIA for XYZ | Policy | Data Protection | |
| Polityka bezpieczeństwa | — | — | — |
Projects
| Type | URL | Phone number | Notes | |
|---|---|---|---|---|
| No elements to display | ||||
Checklist
Technical Safeguards
Vulnerability Scanning
Encryption in Transit
Encryption at Rest
Multi-Factor Authentication
Policies
Acceptable Use Policy
Business Continuity Policy
Access Control Policy
Incident Response Policy
Data Protection Policy
Information Security Policy
| Name | Description | Date published |
|---|---|---|
| Expanding ISO 42001 competencies | As part of our forward-looking approach to responsible AI governance, we’re investing in internal capacity to support ISO/IEC 42001, the emerging standard for AI Management Systems (AIMS). Our team is currently acquiring internal auditor qualifications for ISO 42001 to ensure that we can independently assess and guide the development of AI systems with embedded risk controls, ethical safeguards, and regulatory readiness. By equipping ourselves with these competencies early, we aim to stay ahead of the curve — both in assisting our clients and in applying trustworthy AI practices internally. |
07/15/2025 11 a.m. |
| ISO 27001 and ISO 9001 on the roadmap | We’ve officially begun working on implementation roadmap for ISO/IEC 27001 (Information Security Management System) and ISO 9001 (Quality Management System) certifications. These international standards will reinforce our internal processes with independently verified best practices in information security, risk management, and service quality. Achieving these certifications is not only about improving operations — it's about aligning with the expectations we help our clients meet every day. The dual implementation reflects our integrated approach to security and continuous improvement, and underscores our belief that quality and protection go hand in hand. |
07/14/2025 noon |
| Up Secure Trust Portal | We’re proud to announce the launch of the Up Secure Trust Portal — a centralized space where our clients, partners, and stakeholders can access key documentation about our security, privacy, and compliance posture. This step reflects our deep commitment to transparency and trust by design. The portal will include our security policies, privacy practices, certifications roadmap, and other relevant disclosures to help our clients evaluate us with clarity and confidence. As a privacy and cybersecurity consultancy, it's vital that we lead by example. The Trust Portal strengthens how we demonstrate accountability and provides a scalable foundation for ongoing compliance communication. |
07/13/2025 11 a.m. |