Click here to join.

Data Protection

Data protection law is an increasingly important compliance concern for operators in the public, private and third sector. Organisations’ use of outsourced systems and Software as a Service (SAAS), and the increasing globalisation of business means that data protection compliance frequently becomes an international challenge. At the same time, penalties for non-compliance can be severe. Reform in European data protection law has resulted in stronger enforcement powers and heavier penalties still, with jurisdictions elsewhere around the world following suit. Data protection has become an increasingly serious challenge for legal, compliance and risk professionals, who may already be overstretched.

We have a dedicated team of experienced data protection lawyers, who can advise on all aspects of data protection law, whether pre-emptive compliance advice, or response to data breaches. Thanks to our international network of foreign lawyers, we can also handle multinational projects.

Our data protection compliance advice includes data-flow mapping and data inventory analysis; notification with data protection authorities; creation of data protection documentation; advising on complex, cross-border transfers, and data sharing arrangements with third-party service providers and group companies (including international group companies). We have also developed innovative training solutions to help organisations ensure their employees have an appropriate understanding of their obligations. Our depth and breadth of experience enables us to deliver practical, effective solutions.

If the worst should happen and you suffer a data incident such as a data breach, or cyber-attack, we can help guide you through the aftermath, including working with IT, public relations and other relevant professionals to help mitigate the situation and responding to the ICO. Our highly experienced team can give you support when you need it most.

Outsourced Data Protection Officer (DPO) services

The GDPR requires certain types of organisations to appoint a DPO, even where it is not mandatory to do so, voluntary appointment is recommended. We are able to provide outsourced DPO services as a flexible, cost-effective alternative to hiring a full-time member of staff through our outsourced data protection officer service, ProDPO



  • Advising a US headquartered, Fortune 500 company on employee data protection in 15 different jurisdictions.
  • Advising a leading UK charity on data protection matters.
  • Conducting a data protection review for a private bank.
  • Advising an aerospace manufacturer on employee data protection.
  • Providing data protection support to a leading UK construction, property services and development company, including advising on GDPR readiness.
  • Conducting a GDPR readiness assessment for a major Private Equity house.


Protecting our data: Time to take it seriously?

External News

GDPR Practical Steps Compliance

External News

What the ‘snooper’s charter’ means for business and the public

External News

Companies at risk over personal data compliance

External News

Wearables and data collection: Insurers should think twice before tracking private data from wearables

External News

The Law Society Text Book on GDPR

"Wedlake Bell LLP’s ‘excellent’ department is ‘very knowledgeable and well trusted’ by a client roster which includes new gain Deltanet International and Wates Group: practice head James Castro-Edwards is advising the latter on data protection issues surrounding its employees and on GDPR compliance."

— Legal 500, 2017

James Castro-Edwards also assisted the MI Group in relation to its compliance with UK data protection legislation, including employee personal data transfers; and is handling data protection matters for Countrywide.

— Legal 500, 2017

"Other key practitioners include Jonathan Cornthwaite, Adam Edwards, Adrian Heath-Saunders and solicitor Jonathan Wright, who is ‘a highly experienced individual’."

— Legal 500, 2017