Our specialist data protection and privacy team advises a broad portfolio of global clients. Through our depth of experience and international perspective, we are able to provide a pragmatic, solutions-focused and efficient approach in this increasingly important area.
Data protection and privacy laws affect almost all businesses. The issues they raise can be both complex and far-reaching and the penalties for non-compliance are severe. Data protection challenges may arise in many contexts, whether in relation to an organisation’s own workforce, providing or implementing digital solutions, or handling cyber attacks.
Our data protection and privacy lawyers have a wealth of knowledge in all aspects of data protection and privacy laws, including regulatory investigations, data security, cross border transfers, consent issues, data controller/processor issues, digital marketing and social media campaigns, subject access requests, claims from individuals and class actions. We draft and advise on privacy policies, data collection processes, data management policies, data sharing agreements and international data transfer agreements. Members of our team also offer expertise in the privacy rights of individuals, including applying for and defending privacy injunctions, and freedom of information laws.
Our clients include international listed and private corporations, charities, professional regulatory bodies, professional services firms and educational institutions. In addition, our lawyers provide training and seminars for corporate counsel and marketing/operational teams on practical aspects of the data protection and privacy regime. We regularly work with our global network of specialists to deliver a coordinated and holistic approach for clients.
Advising on data anonymisation and handling under the EU data protection regime and on customer contracts and international data transfers.
Assisting a top digital media and publishing business on its privacy policies and related data protection issues.
Acting on the management and mitigation of a data security breach, including drafting a notification to the Information Commissioner and future remedial actions.