Skip to main content
  1. Data and cyber

Data and cyber

Data privacy, security and transactions

In a connected economy, data is a valuable commodity. We can help you protect and maximize your rights in proprietary data sets, comply with the ever-more complex web of data privacy laws and other data regulation around the world, and prepare for and manage data security incidents.

With regulators increasingly investigating the privacy, antitrust and consumer law implications of different data uses, our integrated team across these disciplines can deliver comprehensive data strategies that withstand regulatory scrutiny from all sides.

We have market-leading experience on data crises, regulatory investigations and follow-on litigation, and have handled some of the biggest and most complex global data loss incidents including leading cases under Europe’s General Data Protection Regulation (GDPR).

Our data attorneys also leads on some of the most significant, global, data-driven deals. In an acquisition we can secure your rights in data (both from an intellectual property and regulatory perspective). And if you’re collaborating with others, our knowledge of what’s "market" in data licensing will ensure you maximize the value of your investment or partnership. Our global group can help you seize the opportunities in data while managing the risks.

Our data and cyber insights

Load more

Blogs

When GDPR and Data Act clash: what Businesses need to know

Like other parts of the EU Digital Strategy, also the Data Act reaffirms the supremacy of data protection laws, ensuring that the rights and obligations under the GDPR, being the centrepiece of EU…

Author(s): Gernot Fritz, Elisabeth Pferschy, Estella Dannhausen

  • data
  • data protection
  • eu data act
  • eu digital strategy
  • europe
  • gdpr
  • internet of things
  • manufacturing
  • regulatory
  • tech media and telecoms

Building Your Company’s AI Governance Framework

The use of AI has grown rapidly, from simplistic chatbots to sophisticated conversationalists that are close to passing the Turing test of whether a machine can engage in a conversation with a human…

Author(s): Rikki Haria, Theresa Ehlen, Christine Lyon, Jeanne Queneudec, Edward Dean, Christine Chong, Laura Llangozi

  • ai
  • consumer
  • corporate
  • cyber security
  • data protection
  • employment
  • eu ai act
  • europe
  • innovation
  • intellectual property
  • tech media and telecoms

Unlocking the treasure trove: The EU introduces mandatory Business-to-Government data sharing

The EU Data Act has brought a new rule for businesses. Chapter V requires that businesses share their data with the government: Business-to-Government (B2G) data sharing. According to the EU…

Author(s): Gernot Fritz, Estella Dannhausen, Tina Fokter Cuvan

  • data
  • eu data act
  • eu digital strategy
  • europe
  • governments and public sector
  • innovation
  • regulatory
  • tech media and telecoms

The first of its kind: exploring the European Health Data Space

We are going through what is known as the third major global economic wave at an unprecedented pace. This wave is driven by the growth and achievement of industries that rely on data as the most…

Author(s): Gernot Fritz, Estella Dannhausen, Carolina Costa, Ludwig Hartenau

  • eu mobility data space
  • data
  • eu digital strategy
  • europe
  • european data spaces
  • life sciences

Freshfields AI thought-leadership events: Key takeaways for global businesses

Over the past couple of weeks, we’ve been at the heart of two major events focusing on the implications of AI for global businesses.  Hosted by the Rothschild Foundation, and organised by Tortoise…

Author(s): Beth George, Natasha Good, Giles Pratt

  • ai
  • data
  • eu ai act
  • eu ai liability directive
  • europe
  • global
  • regulatory
  • tech media and telecoms
  • us

The 'lead claimant' model - the future for data privacy mass claims?

The Supreme Court’s ruling in Lloyd v Google (on which we have previously blogged), coupled with the vast upfront costs of bringing claims via a group litigation order (GLO), is leading claimant law…

Author(s): Cat Greenwood-Smith, Charlie Fisher

  • data
  • data protection
  • cyber security
  • litigation

UK data protection reforms may be coming soon – after more reforms of the reforms

In November 2023, the UK government introduced further amendments to the already-extensive set of data protection reforms proposed in the Data Protection and Digital Information Bill (the Bill).…

Author(s): Rachael Annear, Giles Pratt, Claudia Chan, Adam Gillert

  • data
  • data protection
  • europe
  • gdpr
  • tech media and telecoms

The 2024 Responsible AI Forum: Making the rules for AI

Freshfields is Knowledge Partner for the Responsible AI Forum 2024. Hosted by the Rothschild Foundation and organised by Tortoise Media, the annual Responsible AI Forum sees well-known figures from…

Author(s): Giles Pratt

  • regulation
  • risk
  • ai
  • intellectual property
  • data

Regulating AI Globally Mimics a Six-Dimensional Game of Chess

Freshfields attorneys address the global nature of regulating AI and the many factors companies must monitor as governments and regulators advance new policies. (Article published by Bloomberg Law, 5…

Author(s): Giles Pratt, Natasha Good, Beth George

  • regulation
  • risk
  • ai
  • intellectual property
  • data

Why the EU Data Act does not care for “well-done” data

The EU Data Act came into force on 11 January 2024. While its provisions will not be applicable for a while yet, businesses will likely need the intervening period to scope out and plan for the…

Author(s): Gernot Fritz, Estella Dannhausen, Ludwig Hartenau, Tina Fokter Cuvan

  • eu data act
  • eu digital strategy
  • data
  • european data spaces
  • europe
  • internet of things
  • regulatory
  • tech media and telecoms

Generative AI driving the M&A landscape

Background Generative AI is everywhere. The world’s brightest minds are racing to excel in what is expected to be the single most important game changer since the internet. The industry is on the…

Author(s): Thomas Mollnhuber

  • ai
  • corporate
  • data
  • eu ai act
  • innovation
  • legaltech
  • mergers and acquisitions
  • tech media and telecoms

A Game-Changer in Data Regulation: The EU Data Act unpacked

The EU Data Act, being a key pillar of the European Data Strategy, came into force on 11 January 2024. It aims at creating a horizontal framework for the access to and sharing of data generated…

Author(s): Gernot Fritz, Tina Fokter Cuvan, Theresa Ehlen, Christoph Werkmeister, Estella Dannhausen

  • eu data act
  • eu digital strategy
  • data
  • european data spaces
  • europe
  • internet of things
  • manufacturing
  • regulatory
  • retail and consumer goods
  • tech media and telecoms

Construction x Technology: Global advancements in BIM adoption

Introduction The use of Building Information Modelling (BIM) on construction projects has become increasingly common in jurisdictions with a developed construction sector given the whole of project…

Author(s): Amr Omran, Clemens Treichl, Jaideep Khanna, Nicolas Makrides

  • arbitration
  • climate change
  • construction and engineering
  • data protection
  • esg
  • governments and public sector
  • infrastructure and transport
  • innovation
  • intellectual property

Legally-binding international treaty on AI – revised draft published

The Council of Europe (CoE) Committee on AI (CAI) recently published a revised draft ‘Framework Convention on Artificial Intelligence, Human Rights, Democracy and the Rule of Law’ (the Convention).…

Author(s): Theresa Ehlen, Adam Gillert, Julia Utzerath, Björn Lambrenos

  • ai
  • data
  • data protection
  • eu ai act
  • eu ai liability directive
  • eu data act
  • eu digital strategy
  • europe
  • global

10 Key MedTech Themes for 2024

Note: this article originally ran in MedCity News Increasing innovation in, and consumer demand for, healthcare technology continue to transform the MedTech industry, including in digital health,…

Author(s): Vinita Kailasanath, Sora Park

  • data
  • life sciences
  • ai
  • medtech

High Court refuses Stability AI’s application for summary judgment in copyright and database infringement case

In one of the first AI-related judgments in the UK, the High Court refused Stability AI’s (Stability) application for reverse summary judgment against Getty Images (US) Inc and its related group…

Author(s): Emma Probyn, Benjamin Ng, Fiona McHugh, Lizzy Matthams

  • ai
  • data

Clarification of requirements for claiming damages following cyberattacks under the GDPR

Cyberattacks present a multi-faceted challenge for organisations around the world. Beyond the immediate burden of handling the attack itself, the aftermath can be of even greater concern. Not only do…

Author(s): Christoph Werkmeister, Martin Mekat, Rhodri Thomas, Dawid Ligocki, Hanna Hoffmann, Christian Sosna

  • cyber security
  • data
  • data protection
  • gdpr
  • litigation

China’s CAC clarifies cybersecurity incident reporting obligations

The Cyberspace Administration of China ('CAC') has released draft measures that would require many cyber and data security incidents in China to be reported within one hour. The draft ‘Measures for…

Author(s): Richard Bird, Fan Li

  • asia-pacific
  • cyber security
  • data protection
  • data
  • regulatory
  • tech media and telecoms

Data localisation in Vietnam – Highlights under Decree 53 and Decree 13

Discussions on data localisation in Vietnam have been in vogue since the issuance of Law No. 24/2018/QH14 on cybersecurity (the ‘Cybersecurity Law’) in 2018. After much anticipation, Decree…

Author(s): Ngan Anh Phan, Tony Foster

  • asia-pacific
  • data
  • regulatory
  • tech media and telecoms
  • cyber security

The California Privacy Protection Agency Releases a First Draft of Automated Decisionmaking Opt-Out and Access Regulations

The California Privacy Protection Agency (CPPA) has been steadily making strides to progress rulemaking under the California Consumer Privacy Act (CCPA) on requirements for cybersecurity audits, risk…

Author(s): Christine Lyon, Christine Chong

  • ai
  • cyber security
  • data
  • data protection
Vorherige
Nächste
Read all blogs

Podcasts

View all podcasts

Our data and cyber experience

Including: its acquisition of The Yield Book, a fixed income analytics platform, and Citi Fixed Income Indices, an index business comprising a family of fixed income indices; its investment in Nivaura Ltd, a fintech company offering digital platform solutions for end-to-end automation for issuance and administration of debt, equity and structured notes; and its acquisition of Refinitiv, a global provider of financial markets data and infrastructure.  

Meet the team

Announce carousel

Weltweit

Regionen

Europa

Amerika

Asien und Ozeanien

Naher Osten

Afrika

Sprachen