Data Protection

  • Overview

Overview

As technology and international trade have developed, so has the need to regulate the processing and cross border flow of personal information. The European Union implemented the General Data Protection Regulation (GDPR), which has had a global impact on how international businesses conduct themselves in relation to individuals protected by the GDPR. In addition, several countries in Africa have recently passed or are considering drafting data protection legislation of their own.

The members of our data protection team regularly advise clients on data protection requirements in Kenya, South Africa, Tanzania and Uganda.

We keep abreast of regulatory developments in the field of data protection in the jurisdictions that we cover. Our highly experienced lawyers are able to assist clients needing specialist advice on their statutory obligations as well as data protection issues in the context of particular transactions.

We conduct reviews of our clients’ business policies, protocols, processes and procedures to ensure compliance with current data protection requirements and new requirements under pending legislation. We help our clients to find practical ways of implementing data protection obligations in their businesses.

Our data protection team includes specialists in technology, media and telecommunications, employment and benefits and governance, compliance and investigations.

Our clients include international financial institutions and banks, telecommunications companies and equipment manufacturers, mining companies, pharmaceutical companies, and retailers.

Specialist services:

  • Conducting privacy impact assessments and audits of processing activities, processes, procedures and protocols
  • Developing appropriate compliance and risk management frameworks, including appropriate policies and procedures to regulate data processing activities
  • Drafting and reviewing data protection contractual clauses
  • Advising on the application of local data protection laws to multinationals
  • Advising on data breach incidents
  • Undertaking due diligence investigations