Data protection compliance and potential for most larger firms brought by recent changes to legislation is a growing concern for businesses. The issues raised by ownership, use and sharing of customer and prospect data are often central to many of our clients’ activities with third parties. Information collected through users web-browsing behaviour (e.g. pages visited or searches completed) is also subject to regulation on data privacy. If cookies are used on a website to collect data this must be made transparent to visitors. The user must give consent to the placing of the cookies, and for their data to be used.
“Not only is their advice excellent, the team is always on the ball and they are readily available if you need to query anything.”
Chambers UK, 2012
The legislation is generally speaking not industry or technology specific and slow catch up with ever changing technology. Regulatory guidance is often too generic to be of real practical guidance. By ensuring we fully understand your business and products, we can tell you how the law applies to you and how to comply in practice. You can rely on our in-depth knowledge of data protection and privacy law, and be confident that you are working with lawyers who share your passion for technology and how it works.
Our clients include businesses that develop technology products, business models and services that have the use of personal data at their core – as well as organisations whose use of personal data is more straightforward, but who are keen to ensure compliance.
You can ask us to undertake data protection compliance audits tailored to your specific needs. We also advise clients how to transfer personal data to other group companies and third parties, and overseas.
We can advise you on everything to do with the application of and compliance with the Data Protection Act and Privacy and Electronic Communications Regulations including:
- Data privacy
- e-Privacy Directive
- Cookie law and regulation
- The impact of the proposed new EU Data Protection Regulation
- Data privacy audits
- International data transfers, binding corporate rules and EU model clauses
- Data processor agreements
- Subject access requests
- Data security and data security breaches
- Monetary penalty notices
- Interception of communications
- Monitoring of communications.
Advised Omnifone in relation to data protection issues related to its music platform services.
Global Interactive Entertainment Company
Advised an international computer games company in relation to international data transfers and compliance issues.
Global car manufacturer
Advised in relation to international data transfers.
Health club operator
Advised in relation to alleged data security breach.