I am a qualified barrister practising in information law, data protection, and privacy. I advise and represent individuals, companies, public bodies, not-for-profit organisations and international organisations in all areas related to privacy, information and data. For example on:
- General Data Protection Regulation (EU) 2016/679 (‘GDPR’)
- Data Protection Act 1998/2018
- Privacy and Electronic Communications (EC Directive) Regulations 2003 (‘PECR’ or e-Privacy)
- Freedom of Information Act 2000 (‘FOIA’)
- EU Privacy Laws
- European Convention on Human Rights
- Defamation Act 2013
- Breach of Confidence, Misuse of Private Information, Harassment
My practice falls into three broad categories: litigation, advisory and international work. I am instructed through solicitors, by companies directly and in appropriate circumstances, by individuals on a direct access basis.
I provide representation in court, draft documents for litigation, and advise on the merits of bringing or defending legal actions in privacy and information law. I advise on likely outcomes, potential damages awards, and on litigation strategy, disclosure and procedure. I am often asked to provide advice on particular issues or points of law, and on pre-litigation steps. I assist in making or responding to right to be forgotten requests, the exercise of other data subject rights under the GDPR, FOIA requests and access to information generally. I also provide pre-publication review of reports, articles or videos for any potential exposure to defamation claims.
I am instructed in a non-contentious advisory capacity to evaluate business processes to ensure compliance with data protection laws. I review data sharing agreements, licence agreements, contracts, confidentiality clauses, privacy notices and other contracts or agreements. I also advise on intellectual property related to data (both personal and non-personal data) such as copyright, database rights and trade secrets. Where organisations or companies are looking to develop a particular product or service that involves the collection and use of data, I am asked to advise on compliance with data protection laws, intellectual property rights and assist to implement ‘data protection by design and default’.
I advise companies and organisations with international operations on their data issues, compliance with the GDPR and other legislation as part of my advisory practice. I am also a legal consultant for DataReady and assist in writing data guidelines and contribute to data governance projects for organisations such as the United Nations and the World Health Organisation. I am a legal partner with Advocates for International Development and assist on various projects.