Szymon Ciach

Szymon advises on matters relating to ICT contracts, cybersecurity and FinTech.  He has a strong technical background and focus on heavily regulated sectors (financial services, healthcare, energy).

Szymon has broad experience across a wide range of IT law matters, with a particular focus on negotiating IT contracts, cloud computing, cybersecurity (DORA, NIS 2), and FinTech.

Szymon advises clients on drafting and negotiating implementation, maintenance, IT outsourcing, licensing, and other technology agreements. He has acted for Poland's largest domestic banks on strategic cloud services contracts and served as Legal Stream Coordinator in the development of a cloud implementation framework for the banking sector (Polish Cloud 3.0).  He also advises clients on building secure AI solutions in the cloud.

He leads complex regulatory implementation projects, including under DORA, and advises on the NIS 2 Directive. He has deep expertise in developing internal processes for ICT risk management, with a particular emphasis on supply chain risk. He carries out compliance analyses of projects against regulatory requirements, including regulated outsourcing and the protection of professional secrets. He also advises on crypto-assets (MiCAR), drawing on his experience in traditional finance alongside emerging technologies such as blockchain.

He received the Nicolaus Copernicus Medal from the Polish Bank Association in recognition of his active support of the banking sector in the areas of technological innovation and digital transformation.

He is the author of the bestselling book "Law in IT. In a Human and Practical Way", published by Helion, which was awarded second place in the Best IT Book 2025 competition organised by the Polish Information Processing Society.

Recommended lawyer in the TMT sector in Poland (Legal 500 EMEA 2023).

Graduate of the Faculty of Law and Administration at the Jagiellonian University and member of the Warsaw Bar of Attorneys-at-Law (OIRP Warszawa). 

Helping you succeed in tomorrow's world

I am focused on the delivering value to the client. I am passionate about new technologies and understanding client's business. I leverage my broad ICT regulatory knowledge and experience in regulated sectors.  

Recent work 

• Polish Cloud 3.0.
  Served as Legal Stream Coordinator in the development of a cloud implementation framework for the banking sector (Polish Cloud 3.0).
• Commercial Bank 
  Advising on the creation of a regulatory framework for information and communication technologies (ICT) in the area of cloud computing. 
• Commercial Bank
  Conducting a regulatory analysis and representing the client in negotiations for a strategic SaaS service agreement. 
• Payment Institution
  Conducting a legal analysis of the Crypto-as-a-Service model.
• ICT Provider 
  Representation in protracted negotiations with a major client in the financial sector. Successfully concluding the agreement. 
• Insurance Company
  Advising on the development of cloud-based AI solutions for document analysis by the legal department.