About

I have worked extensively with a host of different types of businesses providing pragmatic advice on data, privacy & cyber issues. Having originally completed my training contract at Lewis Silkin, I also have experience in our Employment and Digital, Commerce & Creative teams, continuing to work collaboratively with both. I advise on all aspects of data privacy compliance, including ad hoc queries, website and workplace privacy notices, data protection policies, data processing agreements, data protection impact assessments, internal and external data sharing arrangements / compliance, data subject rights requests, data breaches, cookie compliance, regulatory queries and complaints, data protection issues in corporate transactions, and co-ordination of international projects, among various other things. I work with clients in a vast array of sectors, but have a particular interested in emerging and innovative technology, including artificial intelligence. which I also advise on regularly.

Experience

Data, privacy & cyber

  • Advising a global online platform on various elements of its data privacy compliance including their response to an Information Commissioner's Office inquiry, implementation of various technical features, and management and response to a cyber attack (including notification to the Information Commissioner's Office)
  • Completing client secondments to a global fast food chain advising on all aspects of their data privacy compliance and a multinational online publisher helping to manage their international data transfers update project
  • Assisting multiple organisations including a global pharmaceutical company and a multinational online tutoring platform, on their management of and response to data breaches
  • Advising a multinational financial services provider on various elements of their approach to marketing, cookies, and adtech
  • Assisting an international organisation in their project to update their data processing agreements with their vendors to ensure compliance with international data transfer requirements
  • Advising an online platform on the applicability of the Digital Services Act in various contexts

Artificial intelligence

  • Advising an AI start up on their management and response to an Information Commissioner's Office inquiry
  • Assisting a leading video games company with a data privacy issue related to their use of voice data in AI
  • Advising an online platform in relation to the data privacy considerations of incorporating a chatbot into their service, and the related updates to their privacy notice
  • Advising a national investment company on their AI governance policy
  • Advising a global organisation on the use of open-source AI large language models
  • Drafting a jurisdiction agnostic AI 'guide' and checklist for a global financial services organisation to ensure their design, development, and deployment of AI complies with relevant legal requirements internationally
  • Drafting a data protection impact assessment assessing a multinational business' overarching approach to developing / deploying AI, and preparing a template supplemental data protection impact assessment to use for future AI projects
  • Advising a global business on the current and expected legislative requirements relating to AI in 10 jurisdictions
  • Presenting regularly on AI

Services

Sectors