Skip to content
Sub practice
Sub practice

Data Protection

In an increasingly regulated environment, businesses need to manage their data in order to manage their reputational and financial risks.

Across our international network, our data protection practitioners advise leading corporations and financial institutions on all aspects of compliance with data privacy law.

We carry out cross-border data privacy surveys for clients, both to review their existing processes and procedures and to help set up new ventures.  With significant experience of designing, drafting, reviewing and updating internal policies as well as 3rd party contracts, we support clients with data collection and consents; cross-border data transfers; data monetization and ethics; liability and penalties; Privacy by design; automated data processing and profiling; and interactions with the relevant data protection authorities. We also advise clients on the implications of freedom of information legislation, how to mitigate risk and the potential to use the legislation for competitive advantage. ; 

Our team draws on specialists from a variety of complementary disciplines including employment and benefits, financial services, intellectual property, outsourcing, regulatory and regulatory litigation to deliver a comprehensive approach to our clients' data protection needs.

With strong working relationships with regulators across our network, we have developed a nuanced understanding of the attitude of regulators and to assist clients with risk-based analysis.  This means we provide our clients with a quick and efficient response – regardless of time zone.  Our global presence, together with the extensive experience of our integrated international data protection group, sets us apart from many of our competitors.  We have detailed experience in each jurisdiction, which brings valuable insight to managing the differing legal systems, cultures and regulatory regimes.

We are active participants in the privacy community, including the International Association of Privacy Professionals and regular speakers at industry events as well as contributing to industry publications.

News & insights

credit cards

News: 18 NOVEMBER 2020

Allen & Overy advises Banco Santander on its acquisition of technological assets of Wirecard

Allen & Overy has advised Banco Santander, one of the largest banks in the world, on the acquisition of highly specialised technological assets of the European merchant payment services and processing…

Read more
Bird's eye view of a busy illuminated road junction

Publications: 04 NOVEMBER 2020

The International Comparative Legal Guide: Cybersecurity 2021

This 4th edition provides a global analysis of common issues in cybersecurity laws and regulations across 26 jurisdictions. It covers key topics such as criminal activity, applicable laws, specific…

Read more

News: 03 NOVEMBER 2020

Allen & Overy advises Hg on the sale of STP Group to Bregal

Allen & Overy has advised Hg on its sale of STP Group, a leading DACH-based provider of legal tech solutions, to Bregal Unternehmerkapital. The transaction is subject to approval by the relevant…

Read more
server

Publications: 09 OCTOBER 2020

Hamburg regulator issues EUR 35 million GDPR fine for data privacy breach

The Hamburg Data Protection Authority imposed the largest ever GDPR fine in German history on Swedish fashion company H&M on 1 October 2020. According to the regulator, the company had stored and used…

Read more

The EU General Data Protection Regulation microsite

After over four years of discussion, the new EU data protection framework was adopted on 8 April 2016.

It takes the form of a Regulation – the General Data Protection Regulation (GDPR).

Download the practice brochure

Data Protection_GDPR_Content Promo_Sept_19

Why data protection has become a crucial and complex topic for companies.

A&O Digital Hub

Focusing on the latest digital trends and risks and developments in the field of data protection, privacy, information and cyber law.

Recognition