Cyber Security

In an ever-evolving digital landscape with rapid adoption of new technologies, cyber security is an essential priority for every business of any size or sector. Cyber-attacks are increasingly common and can have grave consequences for the businesses and individuals that are affected. Our Cyber Security team helps clients implement preventive measures as well providing time-critical support and advice if they become a victim of a successful attack.

They are professional, expert and client-centric. They do what they say they will do and are focused yet pragmatic in their approach.
Chambers & Partners 2016

Our cross-practice team draws lawyers from across the firm. This combined expertise allows our team to ensure cyber-security is central to the legal advice provided in relation to day-to-day business and also guide our clients through incidents efficiently whilst addressing the complex legal and regulatory considerations. We pride ourselves on providing clear and practical solutions, even when the circumstances are challenging.

How we can help you

Cyber security includes a myriad of factors affecting every facet of a business and our lawyers can help you prevent, resolve and manage any such risks.

Preventative measures

Internal processes: developing robust internal policies and procedures
Audit/due diligence: conducting due diligence and audits of policies and agreements to assess an organisation's resilience and exposure to cyber risk
Commercial arrangements: reviewing, drafting and negotiating agreements with a focus on compliance with data protection and privacy laws, information security provisions (including reference to certifications such as Cyber Essentials or compliance with business standards (ISO)), incident response and resolution and an appropriate allocation of risk and responsibility for cyber-security
Training: providing bespoke training and support on all aspects of data protection law and practice which includes how to handle cyber attacks effectively, arranging table-top breach-response simulations
Knowledge sharing: sharing knowledge of emerging regulations and compliance requirements via our website and e-newsletter Business Law Today

During and after a cyber security incident

Responsive support and co-ordination: providing immediate legal support and advice in the event of a cyber incident
Incident management: strategy and potential sanctions and litigation, managing ransomware negotiations
Notification: advising the business on notifications to insurers, the ICO and, where applicable, other regulators and data subjects
Insurance: advising on notification, conduct and coverage under cyber security or liability and business interruption insurance policies which protect you from the regulatory, financial or reputational risks following a data breach, hacking and ransomware attacks
Enforcement actions and regulatory investigations: representing clients in their dealings with the ICO or other regulators
Litigation: advising on civil disputes and class actions that arise as a result of cyber incidents including in respect of data breach claims
Reputation management: advising businesses and the individuals involved in running businesses on reputation management if the incident becomes more widely known
Director liability: advising on directors' duties