Legal 500 Recognised EMEA & GC Powerlist

İlayda
Güneş

İlayda Güneş

Legal & Compliance Strategist

15 Years · EMEA & U.S.

Building legal and compliance functions from the ground up across top-tier law firms and multinational corporations.

View Publications LinkedIn
Scroll
About

Recognitions

Legal 500 EMEA Rising Star 2022

Rising Star — Competition Law & Antitrust

Legal 500 GC Powerlist Türkiye 2024

GC Powerlist Türkiye 2024 — Leadership, Innovation & Impact

Legal counsel who builds compliance functions that last.

Legal & Compliance Strategist with 15 years of cross-border experience advising top-tier law firms and multinationals across EMEA and the U.S. on regulatory strategy, compliance governance, and digital market law.

Proven track record building legal and compliance functions from the ground up — aligning global regulatory frameworks with business priorities and delivering impactful legal solutions at scale across data-intensive, highly regulated industries.

13+

Years Experience

20+

Major Clients

Expertise

Practice Areas

View Clients

Privacy & Data Protection

GDPR · DPIAs · SCCs · RoPA · Data Transfers

With extensive hands-on experience across EMEA's most data-intensive industries, this practice covers the full lifecycle of data protection compliance — from program design and policy drafting to supervisory authority interactions and data subject rights management. Particular depth in advising technology platforms, fintech operators, and multinational consumer businesses navigating complex multi-jurisdictional obligations.

Key Services

  • GDPR compliance program design & implementation
  • Data Protection Impact Assessments (DPIAs)
  • Records of Processing Activities (RoPA) & data mapping
  • Standard Contractual Clauses (SCCs) & transfer impact assessments
  • Data Subject Access Request (DSAR) workflows
  • Privacy-by-design reviews for product & platform development
  • Third-party processor due diligence & DPA drafting
  • Personal data breach response & supervisory authority notification

Regulatory Frameworks

GDPRePrivacy DirectiveUK GDPRCCPAKVKKNIS2
Get in touch

Competition Law & Antitrust

Merger Control · Cartels · Dawn Raids · Investigations

A core practice spanning both transactional and contentious competition matters. On the transactional side: merger filings before the European Commission and national competition authorities, JV formation counsel, and gun-jumping risk management. On the contentious side: representing clients in dawn raids, leniency applications, and multi-party investigations — including third-party beneficiary roles in landmark digital markets proceedings.

Key Services

  • EU and national merger control filings & phase management
  • Individual exemption applications
  • Cartel defence & leniency applications
  • Dawn raid preparedness & on-site representation
  • Vertical agreement compliance reviews
  • Digital markets & platform regulation (DMA)
  • Competition compliance programs & training
  • Third-party intervention in regulatory proceedings

Regulatory Frameworks

EU Merger RegulationTFEU Art. 101 & 102Digital Markets ActTurkish Competition Law No. 4054
Get in touch

AML & Financial Crime

AML/CFT · FCPA · UK Bribery Act · PSD2

End-to-end financial crime compliance covering AML/CFT program design, MLRO responsibilities, and anti-bribery obligations under US and UK frameworks. Particular strength in fintech and payment services — including M&A due diligence on AML exposure, PSD2 compliance, and regulatory filings. Experienced in designing transaction monitoring frameworks, KYC/CDD procedures, and Suspicious Activity Report (SAR) protocols.

Key Services

  • AML/CFT compliance program design & gap analysis
  • MLRO mandate & regulatory reporting
  • KYC/CDD frameworks & enhanced due diligence
  • Suspicious Activity Report (SAR) procedures
  • Anti-bribery & corruption policy drafting (FCPA, UK Bribery Act)
  • PSD2 & payment services regulatory compliance
  • AML due diligence in M&A transactions
  • Financial crime risk assessments & training

Regulatory Frameworks

AMLD6FATF RecommendationsFCPAUK Bribery Act 2010PSD2MiCA
Get in touch

Governance, Risk & Ethics

Compliance Programs · Whistleblowing · Corporate Secretariat

A holistic governance practice covering the design, implementation, and operation of enterprise-wide compliance programs. Experienced acting in DPO, MLRO, and compliance officer roles simultaneously — providing both strategic advisory and operational delivery. Particular expertise in whistleblower management, board-level reporting, and embedding a culture of compliance across complex, matrixed organisations.

Key Services

  • Enterprise compliance program design (people, policy, process)
  • Corporate governance frameworks & board advisory
  • DPO, MLRO & compliance officer mandate support
  • Whistleblower hotline design & case management
  • Ethics code drafting & employee training programs
  • Regulatory risk mapping & mitigation strategy
  • Corporate secretariat & company law compliance
  • Internal investigation management & reporting

Regulatory Frameworks

EU Whistleblower DirectiveISO 37001OECD Anti-Bribery ConventionSOXUN Global Compact
Get in touch

Corporate Compliance & Regulatory Strategy

Program Design · Internal Controls · Regulatory Filings

This practice addresses the full spectrum of corporate compliance needs beyond any single regulatory domain — from designing enterprise-level compliance architectures to advising on multi-jurisdictional regulatory strategy. Combines deep regulatory knowledge with practical operational experience, having built compliance functions from scratch in fast-scaling technology and financial services companies.

Key Services

  • Compliance function design & operating model development
  • Regulatory mapping & multi-jurisdictional gap analysis
  • Policy, procedure & code of conduct drafting
  • Regulatory filing management & authority liaison
  • Public affairs & regulatory advocacy strategy
  • Cross-border legal entity structuring advice
  • Regulatory change management programs
  • Legal tech & compliance tool implementation

Regulatory Frameworks

EU Regulatory FrameworkOECD GuidelinesICC Anti-Corruption RulesNIS2 Directive
Get in touch

Technology, Digital Markets & AI Governance

SaaS · Platform Governance · AI Act · DMA

Deeply versed in the intersection of technology and regulation — from advising major online travel and ticketing platforms on their regulatory obligations to counselling SaaS companies on data governance, API compliance, and digital product design. At the forefront of emerging AI governance, helping organisations assess and respond to obligations under the EU AI Act and position for the evolving digital regulatory landscape.

Key Services

  • AI Act compliance readiness & risk classification
  • Digital Markets Act obligations & gatekeeper compliance
  • SaaS platform terms, policies & compliance architecture
  • Product counsel for digital product & API development
  • Platform governance frameworks & content moderation
  • Digital Services Act (DSA) compliance advisory
  • Technology M&A regulatory due diligence
  • IT law & software licensing compliance

Regulatory Frameworks

EU AI ActDigital Markets ActDigital Services ActeCommerce DirectiveNIS2
Get in touch

M&A Compliance & Due Diligence

Merger Control · Gun-Jumping · Post-Merger Integration

Extensive transactional experience spanning Phase I and Phase II merger filings before the European Commission, multi-jurisdictional notifications, and post-merger integration compliance. Clients have included global financial institutions, FMCG leaders, and automotive manufacturers. Expert in managing the compliance workstream in parallel with commercial deal timelines — from clean team protocols to post-closing integration roadmaps.

Key Services

  • Pre-signing regulatory risk assessment
  • EU and multi-jurisdictional merger control filings
  • Phase II proceedings & remedies negotiation
  • Gun-jumping risk management & clean team protocols
  • Privacy, AML & compliance due diligence
  • Regulatory condition monitoring & sign-off
  • Post-merger compliance integration planning
  • JV formation & joint control analysis

Regulatory Frameworks

EU Merger Regulation 139/2004GDPR Due DiligenceFCPA/UK Bribery ActHSR Act
Get in touch

Corporate Sustainability & ESG

CSRD · ESG Reporting · Supply Chain Compliance

The ESG regulatory landscape is evolving rapidly across EMEA, with new mandatory disclosure, due diligence, and governance obligations affecting companies across all sectors. This practice helps organisations navigate these requirements proactively — aligning legal obligations with strategic sustainability commitments and building the internal governance structures needed for credible, auditable ESG compliance.

Key Services

  • CSRD reporting scope assessment & readiness planning
  • Corporate Sustainability Due Diligence (CSDDD) compliance
  • ESG governance framework design
  • Supply chain human rights & environmental due diligence
  • Green claims compliance & anti-greenwashing advisory
  • ESG risk mapping & materiality assessment
  • Sustainability policy drafting & board reporting
  • Taxonomy Regulation classification analysis

Regulatory Frameworks

CSRDCSDDDEU Taxonomy RegulationSFDRTCFDGRI Standards
Get in touch
Contact

Let's connect.

Based in Amstelveen, Netherlands. Available across EMEA.

English · Turkish · Dutch (learning)

LinkedIn Profile

linkedin.com/in/ilaydagunes

Send an Email

info@ilaydagunes.com

Istanbul Bar Association · admitted 2015