In an increasingly digital world, we understand that your business needs to navigate a complex landscape of laws and regulations and to manage the risks of processing personal data.

We advise on a full range of issues, including:

• Investigations and liaison with the Information Commissioner’s Office (ICO) and other regulators;
• Data Privacy Governance, including GDPR Audits and Policies;
• Employment / HR specific issues, such as Whistleblowing and Monitoring;
• Data Subject Rights Requests, including Data Subject Access Requests (DSARs) and the Right to be Forgotten;
• Data Protection Impact Assessments (DPIAs), for high risk data processing and new and innovative technologies such as Artificial Intelligence (AI) and Biometrics;
• Vendor Management, including negotiating Data Processing Agreements with Controllers, Joint Controllers and Processors;
• International Data Transfers, including Standard Contractual Clauses (SCCs), Binding Corporate Rules (BCRs) and Schrems II compliance projects;
• Digital Marketing Campaigns and ePrivacy law (PECR) compliance;
• Websites, Cookies and Privacy Notices;
• Data Claims and Litigation, including Group Litigation Orders (GLOs) and Representative Actions.