Why choose our Privacy, Security and Information lawyers?Our Privacy, Security and Information team aligns itself across three broad privacy pillars:
1. Operational Compliance: We advise our clients on policies, procedures and practices to ensure their operational processes are compliant with data protection requirements. We can also advise on the wide range of practical and strategic implications presented by operational compliance issues.
2. Commercial and Product: We work with some of the largest and most sophisticated companies in the world on commercial and product - related data protection work. This means we can guide clients to achieve their commercial and product-oriented goals in a way that provides effective protection for individuals’ data.
3. Cyber and crisis-management: Recent legislation has introduced new requirements for reporting cyber security incidents to both regulators and to affected individuals. At the same time, it has removed barriers for individuals making requests to access significant volumes of data. We can help our clients prepare for these risks and mitigate for them as and when they arise.
Notable deals and highlights
- We successfully counselled multiple organisations through the process of multiple binding corporate rules applications - both pre- and post-GDPR, and across multiple different Member States as lead authority.
- Our team advised clients on post-GDPR regulatory investigations across a number of European Member States.
- We managed large volume subject access requests (SARs or DSARs) for clients in the public and private sectors.
- We provided commercial contracting support to a wide range of leading, household brand clients in the run-up to GDPR, ensuring that their customer and vendor contracting templates were GDPR-compliant, and helping to push those contracts out and negotiate them through to completion successfully. This work was completed both within our team and also using our Condor solution for high volumes.
- The team managed a large cyber security incident for a multinational business, which resulted in extensive review of potentially compromised data. We supported the client through its communications to the regulatory, staff and affected data subjects.
- We advised on privacy issues in the Internet of Things (IoT) for multiple clients including connected toys, vehicles and homes.
- Our team provided data protection officer services for clients in the tech, pharma, retail and leisure industries.
- We advised a media business on the compliant collection and monetisation of viewing information.
- We advised various ad tech businesses on their compliance with e-privacy and GDPR consent requirements, and in connection with regulatory enquiries into online advertising practices.