Data Protection

  • Overview


As technology has grown, so has the need to protect and regulate the use and processing of personal information. The European Union has recently implemented the General Data Protection Regulation (GDPR), which has had a global impact on how international businesses conduct themselves in relation to individuals protected by the GDPR. In addition, several countries in Africa have recently passed or are considering drafting data protection legislation of their own.

The members of our Pan-African data protection team regularly advise clients on data protection requirements in Kenya, South Africa, Tanzania and Uganda .

We keep abreast of regulatory developments regarding data protection in the jurisdictions that we cover. Our highly experienced lawyers are able to assist clients needing specialist advice on their regulatory obligations as well as data protection issues in the context of particular transactions.

We conduct reviews of our clients’ business policies, protocols, processes and procedures to ensure compliance with current data protection requirements and new requirements under pending legislation. We help our clients to find practical ways of implementing data protection obligations in their businesses.

Our data protection team includes specialists in technology, media and telecommunications,  employment and benefits and governance, compliance and investigations.

Our clients include international financial institutions and banks, telecommunications companies and equipment manufacturers, mining companies, pharmaceutical companies, and retailers.

Specialist services:

  • Auditing of processing activities, processes, procedures and protocols
  • Developing appropriate policies and procedures to regulate data processing activities
  • Drafting data processing and transfer agreements
  • Advising on the application of local data protection laws to multinationals
  • Advising on data breach incidents
  • Undertaking due diligence investigations