Daniel Millard

Daniel advises a diverse range of clients – from blue-chip companies to startups – on transactional, regulatory and compliance challenges relevant to data privacy, cybersecurity and artificial intelligence (AI).

The ever-changing nature of the data privacy regulatory landscape attracted Daniel to this area of law, and he enjoys helping clients navigate the requirements in a practical manner that is proportionate to the risk.

Daniel also helps clients respond to data security incidents, engage with regulators and develop litigation strategies.

Daniel’s representative matters include:

• Counselling technology and life sciences companies on implementing, reviewing and updating global privacy programs designed to comply with both the UK and European Union General Data Protection Regulation (GDPR), as well as the EU’s ePrivacy Directive, the UK’s Privacy and Electronic Communications Regulations, and other EU and UK privacy legislation
• Advising international organisations on personal data breaches, including notifications requirements in the EU, UK and globally
• Implementing data protection compliance frameworks and documentation, including data processing agreements, records of processing activities, data protection impact assessments and privacy notices
• Developing global strategies to help clients navigate the development and/or procurement of AI and machine learning services in an uncertain legal and regulatory environment
• Advising multinationals on international data transfer compliance strategies, including implementing EU standard contractual clauses, the UK international data transfer agreement and binding corporate rules
• Advising a large global technology platform in relation to a UK class action claim alleging breaches of the UK GDPR