0370 270 6000

Data protection and privacy

Data protection

The ability to use data effectively is often business-critical and a valuable asset adding real benefit to your operations and ultimately your success as a business. Data assists you in making informed business decisions and the determination of strategic direction as well as product and service development.

However the regulatory landscape is complex and increasingly shaped by EU-wide and international legislation and protocols, combined with increasing public concern and scrutiny regarding the security of personal information and the ways in which it is used. The costs and risks of mismanaging data are high; with high fines, reputational issues and even criminal penalties should things go wrong.

We also have extensive experience advising on privacy issues associated with behavioral advertising and location information, browser-generated information and device recognition technologies. We act for global data companies in respect of privacy implications of their day-to-day operations and development of new technology.


The latest from our data privacy lawyers

What we do...

  • Draft and review of contracts – we support our clients in drafting and reviewing contracts, licensing agreements, service agreements, privacy notices, and other policies and procedures to help ensure compliance with European data protection rules.
  • Developments in privacy laws and guidance - we regularly advise clients on the implications of developments in privacy laws and guidance.
  • Supporting data breach management - we have extensive experience of providing legal support to clients at all stages, including: preparation and prevention, training, crisis management and resolution and recovery. We have strong connections with third parties who can provide specialist non-legal support, for example, threat intelligence, IT security specialists, public relations and credit monitoring. We can manage the process to ensure a coordinated approach protected by legal privilege.
  • Supporting privacy related litigation - we advise clients who are bringing or defending civil actions for breach of data protection, breach of confidence and for misuse of private information. We defend clients under investigation for criminal offences related to unlawful use of personal information. We also support victims of data crime or those have acted as witnesses in criminal investigations.
  • The General Data Protection Regulation (GDPR) - we understand how the GDPR impacts UK businesses and are working with clients to lead efforts on their GDPR and cyber-security compliance programmes.
  • Training and updates - we offer bespoke on-site training on data protection and cybersecurity issues. Our wider programme of training and legal updates also enables you to stay informed on developments in privacy laws and guidance.
  • Responding to and undertaking law enforcement requests for access to personal data - we advise on managing requests for information from a wide range of law enforcement bodies located in the. We have advised clients on complying with mandatory and discretionary requests. In doing so, we are always mindful of the risks arising from the Freedom of Information Act.
  • Data protection audit - we offer a range of auditing services advising organisations on their internal approach to data protection and privacy and data breach. We manage the registration and renewal process for notifications with the Information Commissioner’s Office (ICO).

Recent experience

What our clients say....

What the directories say...

Related resources

Legal updates

More good news for data controllers: High Court finds local authority not vicariously liable for the actions of social worker who went off on a "frolic of her own"

Public bodies will be pleased to hear that another significant court decision (Ali v Luton Borough Council [2022] EWHC 132 (QB)) has been made that is favourable to data controllers.

View

Published articles

Five top tips for strong data compliance in 2022

This article has five excellent top tips for strong data compliance in 2022, including; embracing near misses, leading from the top, outcomes-focused training, learning walks, consequences.

View

Legal updates

Stemming the tide of data breach claims: good news for data controllers

The cases summarised give considerable comfort to data controllers seeking to defend themselves against claims that relate to breaches arising as a result of a failure rather than a direct act and/or are based on assertions of damage or distress that are exaggerated, unsubstantiated or bear little relation to the breach itself.

View

Press releases

Reaction: Supreme Court rules in favour of Google

The Supreme Court has unanimously overturned the Court of Appeal’s 2019 decision in the case Lloyd (Respondent) v Google LLC (Appellant) which allowed the claimant, Mr Lloyd, to serve a representative action on Google on behalf of over four million iPhone users who were seeking damages for ‘loss of control’ of personal data.

View

Related opinions

Data privacy resources on LinkedIn

Follow our data privacy and cyber-security showcase page for useful resources and information relating to data privacy.

View on LinkedIn