GHICA Innovative Law Firm | Data, Privacy and Cybersecurity
post-template-default,single,single-post,postid-237,single-format-standard,ajax_fade,page_not_loaded,,qode-title-hidden,qode_grid_1300,side_area_uncovered_from_content,footer_responsive_adv,qode-child-theme-ver-1.0.0,qode-theme-ver-10.1.2,wpb-js-composer js-comp-ver-5.1,vc_responsive

Data, Privacy and Cybersecurity

The frictionless flow of information is a defining feature of today’s information economy. The ability to transfer customer data, employee files, financial records, and other information around the globe quickly and cheaply has opened up a world of opportunity for many businesses. It also presents a new world of risks.

The potential for misuse of sensitive personal information has triggered legislative and regulatory action worldwide – the risks are high. Privacy laws are continually evolving, vary by jurisdiction, are interpreted unpredictably, and are in a constant state of flux. Even the most well-meaning, conscientious company can make a false step as it captures, uses, transfers and discloses personal information.

The same applies to cybersecurity, which is becoming increasingly complex. The consequences can be serious: heavy fines, injunctions, government audits, even criminal liability. Perhaps more importantly, companies that run counter to privacy and cybersecurity standards find themselves open to negative media attention and the immeasurable damage of lost consumer trust and confidence.

Our lawyers are certified professionals with CIPP/E and CIPM and we have the depth pf resources to provide integrated, creative and practical advise on the GDPR and privacy-related concerns faced by our clients:

GDPR ‘360 degrees Gap Assessment, including assess maturity levels of existing controls and processes

Identification of non-compliance gaps

Develop prioritized strategic roadmap for GDPR initiative

Analyze data flow mapping

Identification risks and risk assessment on people, processes and technology

Data Privacy Impact Assessment

Binding Corporate Rules

Cross-border data transfer (both intra-group and with third parties)

Data processing and data transfer agreements

Data security breach preparedness and response

Due diligence and warranty negotiation for M&A

Employee privacy

Financial privacy

Healthcare privacy

Marketing policies

Privacy and cybersecurity aspects of cloud computing and other sourcing arrangements

Privacy and cybersecurity policies

Privacy and cybersecurity audits

Privacy-related claims and disputes

Privacy statements for online activities

Privacy aspects of investigations and e-discovery