Advising a charity in regard to its privacy requirements in connection with using Google Assist to collect personal information from vulnerable individuals.
Conducting a data protection review for Brady Plc and advising Brady Plc in regard to required amendments to its practices, policies and procedures to comply with the GDPR prior to the regulation coming into force.
Advising a magic circle firm and project managed a major outsourcing transaction to transition all data (including all data held by international affiliates in the firm's group) from each in-house located server to a private cloud. This transaction involved security control issues relating to specific data sets, primarily personal data, across multiple jurisdictions including the UK, U.S. and Germany.
Conducting GDPR presentations and training for a London-based technology company focused on human resources platforms and assisting the company in designing its data protection project.
Presenting to various clients about the effect of the GDPR and the Privacy Act 1988 (Cth).
Reviewing privacy practices and policies for various clients and advising on required amendments to comply with the Privacy Act and/or the GDPR.
Advising an international airport in relation to its negotiation with a software developer for the development, implementation and run of an application targeted to international consumers departing, arriving and transiting through airport for the purchase of duty free products.
Lead adviser and negotiator for Brady Plc. on some of its largest system implementation transactions with customers in Europe.
Advising an ASX listed company in its rollout of Microsoft's D365 ERP suite, using DXC as its system implementor, preparing, advising on and assisting in the negotiations of statements of work for design and implementation.
Advising a magic circle firm and project managed a major IT transaction, negotiating against Oracle to transition all data (including data held by international affiliates in the firm's group) from each in house located server to a private cloud. This transaction involved multi-jurisdictional outsourcing, multi-sourcing, design build and run agreements and detailed service levels and statements of work across the project. This also included security control issues relating to specific data sets, (including personal data) in multiple jurisdictions including the UK, U.S. and Germany.
Advising a London based healthcare provider on the acquisition of a UK based company that develops and maintains a medical technology platform for healthcare providers. This involved extensive due diligence in regard to data protection procedures (including GDPR) and technology and intellectual property ownership.
Advising a European based agricultural pesticide manufacturing and distribution company on the acquisition of a UK based industry competitor. In addition to intellectual property due diligence, this also required regulatory due diligence.
Advising a UK based software provider in connection with the acquisition of an industry competitor. This required data protection (including GDPR) and intellectual property due diligence.