Privacy, data protection & cybersecurity

Providing definitive advice on privacy and data protection regulations, their practical application, pitfalls and enforcement

Digital transformation is changing the personal data game. Smart use of customer data lies at the heart of creating better experiences for your customers.

We can offer you an international perspective on privacy and data protection issues via our Data Points publication. And where appropriate, we call on data protection experts from around the world to deliver training to our clients on European, United States, Hong Kong and Australian law and areas where these laws differ from those of New Zealand. 

Advising you across the full spectrum of privacy and data protection issues including:

  • design privacy processes, guidelines and policies
  • new applications and services involving personal information and data security risks
  • information access and regulatory requests
  • providing engaging privacy and data protection legal training programmes.

Our recent notable experience includes advising:

  • a large international technology provider on privacy law reform issues in New Zealand and Australia and general privacy issues relating to its cloud services, particularly as these relate to government departments and financial institutions
  • a number of government agencies on containing and managing high profile data breaches, including successfully obtaining injunctions restraining further distribution of leaked personal information
  • a major bank on privacy and data protection requirements arising from its disclosure obligations to foreign regulators in relation to particular types of transaction data involving OTC derivative products
  • Kiwibank on privacy compliance for new digital services and marketing initiatives, as well as improvements to its privacy policies
  • a private healthcare insurer on privacy and data protection issues arising from various aspects of its business including monitored medical alarms
  • a major New Zealand bank’s insurance business by undertaking privacy risk assessments in transferring its mass channel distribution arrangements and in its divestment and ongoing distribution of its medical insurance business to a life insurer
  • a European tele-insurance company on privacy obligations and reviewing privacy processes for distributing and underwriting medical insurance and handling claims.