Data

• Holding government and corporations to account: whether in high-profile cases like Lloyd v Google, or our case seeking to clarify the legal status of the UK's international agreement to transfer bank account details to the United States, through to taking discreet actions to enforce individuals' rights, our data team looks to test the boundaries of data law, while also seeking to pursue more straightforward claims.

• We assist individuals with making data subject access requests (DSARs) and enforcing their rights at the ICO and in court.

Employee data

• Employers hold vast amounts of data on their employees, from salaries and bank details to personal information and medical records. Used correctly, this data can enhance business outcomes; to ensure diversity – whether of age, race or ethnicity - or to measure and reduce any gender pay gap. However, data can pose a considerable risk to employers if managed incorrectly. We advise clients on how to minimise risk by adopting the right practices and data management strategies, and we train staff to ensure compliance.

Customer data

• We advise clients on the rules relating to marketing and how to collect, hold and use consumer data.
• Using data as a tool to add value during investment rounds, private equity investments or in more traditional M&As, and how to avoid pitfalls when acquiring companies.
• Structuring ownership so that the value of the company's data is recognised and growth can be planned.
• We have deep expertise in advising on international data transfers, including handling complex, multi-jurisdictional binding corporate rules (BCRs) and standard contractual clauses, data sharing agreements, and international transfer impact assessments.
• Responding to DSARs made by individuals.