We help clients to plan and execute their data protection compliance measures, whether by business-wide audits, data mapping and implementation projects, or by assisting with discreet datasets.  This includes identifying a dataset's life cycle and reflecting this in public-facing privacy notices, consent-flows, privacy impact assessments, policies and procedures and internal accountability records.

Data breach and security incidents

We assist clients to develop and implement data breach policies and procedures, and provide legal input in supporting security measures, each of which are key elements for demonstrating GDPR compliance. No matter how strong these measures are, data breach incidents can occur, and we assist clients in analysing the legal implications of the incident, including requirements for regulatory notifications and liability. Our early engagement in these matters can afford clients the benefit of legal privilege in respect of incident related communications.  

Data sharing and international data transfers

Sharing EU personal data, whether within a corporate group or with third party service providers, is closely regulated.  We advise on various data sharing arrangements, including the exploitation of big data. We help clients with their planning and implementation of cross-border data sharing arrangements of varying complexity. This includes challenging multi-jurisdiction data sharing frameworks involving the flow-down of processor obligations at multiple sub-processor levels.  

Data sharing and data processing contracts

We advise on data protection and privacy issues arising from commercial contracts. This includes drafting and negotiating processor obligations under sourcing arrangements and other service contracts, advising on the allocation of liability and indemnities, and the treatment of consumer and employee data in the context of a business or share acquisition.     

Emerging technologies

We assist clients, ranging from start-ups to long-established multinationals, on the data protection and privacy aspects of the new technologies they have developed or wish to purchase for their business. We carry out compliance reviews on a wide variety of IoT products and service offerings, including those in the automotive, health, medical and financial sectors, to identify potential legal issues and supply practical solutions.

ePrivacy, direct marketing and cookies

We help clients to structure their advertising and marketing efforts across all electronic channels, developing user-centric consent flows and ‘soft opt-in’ alternatives for e-marketing.  We advise clients seeking to deploy cookies and similar technologies in the context of profiling and online advertising; and guiding clients on the use of location-based technologies.

Compliance programs and policies

Data protection compliance is an ongoing requirement.  The principle of accountability, introduced by the GDPR, means that compliance measures must be monitored and enforced. We assist clients by auditing current compliance measures, reporting on and implementing measures where enhancements are required.  Our involvement in this process allows clients to leverage legal privilege over all our findings and related communications.

International compliance

The GDPR can apply to organisations with no business presence in the European Economic Area (EEA) if they offer goods or services to individuals in the EEA, or if they monitor the behaviour of individuals in the EEA.  We assist companies located in the United States, Canada, Cayman Islands and other non-EEA locations of the implications of the GDPR’s extra-territorial reach, including the requirement to appoint a GDPR representative in a relevant EU member state, the possible requirement for the appointment of a Data Protection Officer, and other mandatory GDPR obligations which apply when processing EU-governed personal data.

Information security

Our information-security team of specialist data, technology, litigation and dispute resolution lawyers help clients to mitigate and manage cyber risks. On a pre-emptive basis, we advise on regulatory compliance, data audits and security, cyber insurance and developing response plans. If a security incident occurs, including a data breach, our responsive team can help clients with regulatory and customer notifications, communications with law enforcement, issues surrounding confidential information and trade secrets, and the pursuit of the perpetrators of the security incident. 

Experience

  • Data Protection
  • Data breach and security incidents
  • Data sharing and international data transfers
  • Data sharing and data processing contracts
  • Emerging technologies
  • ePrivacy, direct marketing and cookies
  • Compliance programs and policies
  • International compliance
  • Information security
Head of Practice
Photo of Aideen Burke

Aideen Burke

Partner
Data Privacy

aburke@lkshields.ie
+353 1 637 1574


More from our Data Privacy team

Awards &
Recommendations

‘The individuals are experts which means that they are approachable and able to handle even the most complex issue with ease.’ Recommended for Data Privacy and Data Protection.

Legal 500 2022
Awards &
Recommendations

Recommended for Data Privacy and Data Protection.

Legal 500 2021
Awards &
Recommendations

Recommended for Data Privacy and Data Protection.

Legal 500 2020
Awards &
Recommendations

Recommended for Intellectual Property and Information Technology.

Chambers Europe 2019
Awards &
Recommendations

Recommended for Intellectual Property.

Legal 500 EMEA 2019
Awards &
Recommendations

Recommended for Intellectual Property and TMT: Information Technology.

Chambers Europe 2018
Awards &
Recommendations

Partner Jeanne Kelly recommended for TMT: Information Technology.

Chambers Europe 2018
Awards &
Recommendations

Recommended for Intellectual Property and TMT: Information Technology.

Chambers Europe 2017
Photo of Aideen Burke

Aideen Burke

Partner

aburke@lkshields.ie
+353 1 637 1574

Photo of Jane O’Grady

Jane O’Grady

Senior Associate

jogrady@lkshields.ie
+353 1 637 1554

Photo for article  Aideen Burke Announced as New Head of Intellectual Property, Technology, Media and Data Privacy

Aideen Burke Announced as New Head of Intellectual Property, Technology, Media and Data Privacy

Aideen Burke joins leading corporate and commercial law firm LK Shields Solicitors as a Partner and their new Head of...

Photo for article The Legal 500 2022

The Legal 500 2022

LK Shields Solicitors LLP has once again been highly ranked in the latest edition of The Legal 500 2022 guide to outstanding...

Photo for article Data Protection Commission’s Annual Report 2021

Data Protection Commission’s Annual Report 2021

by
Photo for article Back to Basics – DPC Decision in Move Ireland

Back to Basics – DPC Decision in Move Ireland

by
Photo for article WhatsApp Decision and the Data Protection Commission

WhatsApp Decision and the Data Protection Commission

by
Photo for article Virtual Voice Assistants: Data Protection Guidance Published

Virtual Voice Assistants: Data Protection Guidance Published

Guidelines on Virtual Voice Assistants have been published by the European Data Protection Board (EDPB). A virtual voice assistant (VVA)...

Photo for article Collecting and Processing Vaccination Data in the Workplace

Collecting and Processing Vaccination Data in the Workplace

The Data Protection Commission Issues Guidance. Jeanne Kelly and Ciara O'Kennedy explain. With the pending return to the...

Photo for article Bauer Media Audio Acquires Communicorp Group

Bauer Media Audio Acquires Communicorp Group

We were delighted to act for Denis O’Brien in the sale of longstanding client, Communicorp Group Limited to...

By using this website you allow us to place cookies on your computer. Our cookies do not personally identify you.