Data Privacy

As data is increasingly seen as a valuable yet vulnerable asset, our expert global Data Privacy team delivers strategic, pragmatic and commercial advice that supports the management of data risk against a fast-moving regulatory backdrop.     

We support our clients on all aspects of data privacy risks across the world, including data governance, monetisation strategies, implications of AI and the design of new digital products and services.  This includes more contentious work, including complex DSARs, data breaches, regulatory enforcement and privacy based claims as well as where data privacy is used as a tool in wider commercial, employment or regulatory disputes and investigations.

We are at the forefront of legal developments in the UK, Europe and beyond through our network of industry experts, regulator contacts and relationship firms around the world. Our Data Privacy team sits within our wider Tech stream and work seamlessly across the scope of the evolving digital water-front, collaborating with our other expert hubs, including cyber and digital regulation, with cross membership between these other hubs to enable us to provide joined up and pragmatic advice where relevant.

Key experience


We have advised: 

A financial services group

On a global data breach affecting 500,000 customers and involving regulatory enforcement action. This included providing guidance on worldwide notifications and potential exposure in over 60 jurisdictions in a very short period of time and managing all the different workstreams effectively (including, among others, data privacy, employment, financial regulation, criminal and civil liabilities, contracts and liaising with the police and other regulators).

A multinational telecoms corporation

With a company-wide review of the data privacy obligations of a global corporation with interests in telecommunications, media, IT solutions, property development and investment. The review related to various of its products and internal/external operations and covered the EU, Hong Kong and China.

An insurance client

On privacy considerations (including design and default) in the development of a new data analytics project to drive commercial efficiencies, involving complex data sharing arrangements, special category data and criminal conviction data. This included structuring the process to incorporate appropriate anonymisation and pseudonymisation techniques.

A tech company

On the formulation and development of a new customer journey, including functionality for data capture and categorisation for profiling and marketing.

A FTSE 100 client

On a tactical and contentious DSAR from a senior executive following their dismissal.

Key Contacts

Rebecca Cousin
Rebecca Cousin Partner
Rob Sumroy
Rob Sumroy Partner
Duncan Blaikie
Duncan Blaikie Partner
Richard Jeens
Richard Jeens Partner
Jordan Ellison
Jordan Ellison Partner
Wynne Mok
Wynne Mok Partner
Cindy Knott
Cindy Knott PSL Counsel and Head of Data Privacy Knowledge
Bryony Bacon
Bryony Bacon Senior PSL
Rebecca Cousin
Rob Sumroy
Duncan Blaikie
Richard Jeens
Jordan Ellison
Wynne Mok
Cindy Knott
Bryony Bacon

Meet our Data Privacy team

Slaughter and May are an exceptional law firm. What sets them apart is their commercial approach and the seamless service they provide on large, complex transactions that touch a number of specialist areas and require numerous ancillary contracts. Legal 500
Related insights
Data scraping and compliance - No clearview - (yet)?
Data Privacy Newsletter - Issue 24
Global Investigations Bulletin (March 2024)
Global Investigations Bulletin (January 2024)
Key developments in contentious DP in 2023
Online Safety Act becomes law, but with phased entry into force