People default image

Jules Toynton MEng, MA

she/herLegal Director
Jules is an invaluable asset to our team. She is very much a "trusted advisor" who we lean on for comprehensive and sensible advice. Her understanding of digital issues is particularly helpful.
Head of Data Privacy and Regulatory Law at a UK FinTech
London
About
Jules Toynton advises national and global organisations on regulatory compliance, data strategy and cyber assurance, and is recognised for delivering pragmatic, commercially focused solutions.

Her work spans data protection, digital compliance, e-commerce, cybersecurity and e-marketing. With a background in engineering, a focus of her practice is privacy compliance for high risk processing activities and the data implications of emerging technologies and new legislation, where she supports clients across financial services, technology, defence and consumer sectors. 

Jules experience is reinforced by a number of secondments, including establishing a privacy compliance programme for a UK fintech and nine months with a leading global investment bank’s EMEA Privacy Legal team. She has also undertaken placements with Etihad Airways’ global compliance team in Abu Dhabi and Aviva UK Digital in London.
 
Areas of FocusFinancial ServicesTechnologyAerospace and DefenseLife Sciences
Professional QualificationsSolicitor of the Senior Courts of England and Wales

EXPERIENCE

  • Global FinTech Privacy Programme: Led the design and implementation of a privacy compliance programme for a UK- headquartered fintech ahead of product launch, including drafting key compliance artefacts and advising on vendor agreements across multiple jurisdictions (UK, Singapore, UAE, Netherlands).   
  • Product Design and Compliance: Supported review of certain fraud detection products for compliance with new and upcoming digital legislation, and consulted on the impact of surveillance and interception law on the design of threat detection products.
  • Global FinTech Cybersecurity Controls Assessment: Supported a strategic review of cybersecurity controls for a global fintech, focusing on compliance with international security frameworks and regulatory expectations.
  • AI Development Joint Venture – Global Bank and Silicon Valley Tech Giant: Provided strategic advice on data protection issues for a ground-breaking AI collaboration using transaction data to train fraud detection models. This first-of-its-kind deal raised complex regulatory and contractual considerations.
  • GDPR Implementation: Advising, and providing training for, a leading global investment bank's General Data Protection Regulation (GDPR) and Network and Information Security Directive (NISD) readiness project, including gap analysis, implementation and training, as well as ongoing advice and assistance with their ongoing DPIA programme.
  • Data Act Compliance Framework: Consulted on a global marketplace's approach to Data Act implementation, including scoping, transparency obligations, and contractual risk mitigation strategies for connected products and related services.
  • Disclosures to overseas regulators: Advised on the data protection implications of international disclosures of data to overseas regulators/ law enforcement and in the event of litigation, .including advising a large retail bank on the data protection implications of compliance with US sanctions and a healthcare device manufacturer on voluntary disclosures to a US federal agency.
  • Disclosures in litigation: Advising a global pharmaceutical company on the interaction between CPR and data protection rights when disclosing personal data in the context of litigation.
  • Shaping Industry positions: Drafting the International Regulatory Strategy Group’s (IRSG) response to the European Commission’s proposed Digital Operational Resilience Act (DORA) in December 2020.
 
Education
  • University of Cambridge (Gonville and Caius College), Manufacturing Engineering - BA, MEng , 2007-2011

  • University of Oxford (Keble College) -  LLB (Senior Status Jurisprudence), 2011-2013

  • University of Cambridge (Gonville and Caius College), Manufacturing Engineering - BA, MEng , 2007-2011

Publications and media

Blog

Privacy Matters | DLA Piper

Connect

Phone

+44 20 7153 7592
(Work, London)
+44 7968 558924
(Mobile, London)
CallvCardLinkedInPrint