• I am an information law specialist advising clients in all areas of information law and privacy, including compliance with the General Data Protection Regulation and the Data Protection Act 2018 and the disclosure of information under the Freedom of Information Act 2000 and the Environmental Information Regulations 2004.

    I have experience of advising clients around all aspects of compliance with data protection legislation, including conducting large-scale compliance audits, drafting and reviewing policy documents such as privacy notices and data protection policies, responding to large and complex subject access requests and responding to requests for disclosure of personal data from the police and other third parties. I advise extensively around data protection relationships in contractual arrangements and develop and negotiate data protection provisions in contracts and information sharing agreements.

    I also provide support and strategic advice in the event of a data breach or cyber-attack, advice around reporting to the Information Commissioner’s Office and representing organisations before the Information Commissioner’s Office, First-Tier and Upper Tribunals and in court.

    Articles:

    GDPR: One Year On

     

Lauren's areas of expertise