Practical legal solutions for global data protection
We know the domestic and international data and information management terrain well. We advise on global regulations and coordinated compliance efforts. We help our clients anticipate, mitigate and deal with ever-expanding regulatory oversight of global data flow and sovereignty, cross-border data transfers, and current trends in increased regionalization in privacy management practices.
Across multiple times zones, we work with you to determine how data can and can’t be managed, leveraged and distributed. As data is now considered an asset, we assist in determining whether your data can be used as security for financing. We also advise on how expanding categories of regulated data will affect short- and long-term operational imperatives and ROI.
“They help us interpret complex data privacy and security laws and how they apply to our business operations. They provide practical recommendations to ensure our compliance.”
We advise on the legal aspects of managing and monetizing your online platforms and services. We defend you against amplified regulatory intervention in social media and with platform providers. This includes advice on regulatory intervention and the misuse of cookies and online profiling.
We understand the nuances and risks of distinct market sectors, specific types of data and ongoing protection initiatives. Particularly in the financial services, life sciences and technology spaces, we bring our distinct fluency, experience and skill to bear to your most important privacy matters.
We deliver actionable advice that works for your business. We also recognize client service as an essential component of effective teamplay when partnering with you and your organization. Our legal acumen is recognized by global regulators, who know us well because of our government agency representation, clear communication and fact-based arguments grounded in sound legal theory.
Awards and recognition
Case studies
Our global team advised a leading FMCG manufacturer in establishing their global data protection compliance program. The program was initially developed to secure compliance with the General Data Protection Regulation (GDPR) in Europe, with a requirement to develop a standard set of GDPR ready ‘controls’ that could then be rolled out across 28 European markets as well as architecture to support controls for the North America business, aligned to US privacy laws and practices.
In partnership with the HQ legal and compliance functions, we developed the strategy including identifying controls and senior management training. We provided hands-on advice to the client’s local counsel and business management in ensuring that the content was aligned to local law requirements and practically implemented. We delivered on time and under budget.
The UK’s exit from the EU has unlocked the opportunity for the UK to develop its own data protection policy, separate from the EU GDPR. Our team has been involved in working with key project stakeholders to provide guidance on the data policy reform agenda.
We provided extensive assessment and analysis as the team considered options for an enhanced data regulation regime for the UK, drawing on our practical experience of implementing compliance programmes for a wide of range organisation around the world, and comparative knowledge of different regulatory regimes. We worked closely with the legal and policy teams to provide in depth insight, to support informed policy-making throughout the legislative process.
“We couldn’t have delivered the project without the DLA Piper team. Their ability to mobilise expert resources and deliver on the project across so many countries was exceptional.”
Contact
Global leaders
Data transfer tool
Transfer
Transfer has been developed to streamline the process of carrying out TIAs, providing a clear step-by-step methodology so data exporters and importers can assess problematic laws and practices in “third countries”, the level of safeguards in place and the severity and likelihood of harm as a result of public authority access.
