Head of Data Protection
T: +44 (0)20 7395 3108
James advises organisations in the private, public and third sectors on data protection issues. His experience includes managing global data protection compliance projects for multinational companies, providing advice on discrete data protection issues and advising companies that have suffered a data breach.
James has also developed and delivered data protection audit and training programs to a wide variety of operators.
- Advising a US$14 BN multinational company on the data protection issues arising from a global HR system.
- Delivering a data protection audit and providing ongoing advice to a national construction and homebuilding company.
- Advising a US headquartered global relocation services provider on data protection matters.
- Advising a London Council on data sharing arrangements.
- Providing outsourced data protection officer (DPO) services to a European commercial bank.
- Developing and delivering an accredited Data Protection Officers training course to a European government.
James joined Wedlake Bell in May 2015 as a partner and head of data protection, from PricewaterhouseCoopers (PwCLegal) cyber security and data protection team.
Prior to PwCLegal, James was a senior associate, specialising in data protection at Speechly Bircham.
After obtaining a degree in Law from Queen Mary University in London, he qualified at Japanese investment bank Mizuho International, in 2004. He also took a Legal Practice Course at the College of Law in London.
James regularly writes on data protection and has been published in a wide range of titles, including The Times, The Guardian, Spear’s Wealth, V3, Data Protection Law & Policy, Risk & Compliance and USLaw.
He frequently speaks on data protection and cyber security matters, including appearances on BBC News, LBC Radio, and at The Law Society.
"Practice head James Castro-Edwards is advising [...] on data protection issues surrounding its employees and on GDPR compliance"
— Legal 500, 2017
"James Castro-Edwards is a 'cybersecurity expert'"
— Legal 500, 2017
The legality of microchipping employees – People Management
James Castro-Edwards’ article is published in Information Age
Reporting data breaches – a guide for HR teams
“Tech and data protection law, post-GDPR” – James Castro-Edwards writes for Computing Magazine
“User data controversy instigates Facebook changes as ICO investigates” – James Castro-Edwards comments for Digital Business Lawyer
“Facebook privacy row: Hard fines for tech giants ‘will plug data leaks'” – James Castro-Edwards comments for The Times
James Castro-Edwards and Nikita Saini host Data Protection webinar for The Law Society
“Find out how SMEs can avoid big GDPR fines and penalties” – James Castro-Edwards hosts webinar for Real Business
Partner and Head of Data Protection, James Castro-Edwards, interviewed by the Insurance POST
In Trust: James Castro-Edwards Profile
The Law Society Gazette review Partner James Castro-Edwards’ book on GDPR
Law Lessons: What EU GDPR & NIS Directive Mean For Your Business
General Data Protection Regulation – practical steps to compliance
Companies at risk over personal data compliance
EU General Data Protection Regulation
Wearables and data collection: Insurers should think twice before tracking private data from wearables