Regulatory risk
Key Privacy Reforms – A significant security uplift: The new APP 11.3 and technical and organisation
Click each term for related articles
The potential reputational damage, operational disruption and financial exposure from a cyber incident can be significant. That’s why we’ve developed One. Our specialist team provides expert advice on how to address compliance risks, navigate crisis response, and respond to data protection and privacy issues across the full cyber lifecycle.
We can provide support whenever and wherever you need it to restore continuity and get you back to business as usual. We assist clients on all cyber and related issues, from breach readiness audits to breach response, and through to successful resolution.
One manages every aspect of cyber risk through Readiness to Response and Recovery.
Readiness - Boost your resilience and preparedness.
Response - Mitigate risk through decisive action following a cyber incident.
Recovery - Get back to business as quickly as possible.
Having managed over 5,000 incidents globally, we know how to manage cyber risks.
We are a law firm, but not your typical law firm. We have one of the largest dedicated cyber teams across our network of 60+ offices and offer a ‘follow-the-sun’ model, with our teams in different regions available to assist around the clock.
One brings together the best of Clyde & Co’s international experience, combined with a network of specialist partner cyber firms, adopting One approach, One standard and One process. We provide an unmatched platform of specialists delivering services in English and local languages wherever we operate under the One network.
In the event of a cyber incident, we would support you with a flexible suite of services, depending on the requirements, ranging from initial legal advice to providing a comprehensive breach response.
Partner
St Botolph Building
138 Houndsditch
London
EC3A 7AR
UK & Europe
Helen jointly leads the global cyber team and advises both insurers and corporate entities on a wide range of cyber risk matters including incident response. She works closely with the global team on cross-jurisdictional incidents and has significant experience dealing with data protection regulators, including coordinating EU wide regulatory investigations.
helen.bourne@clydeco.com +44 (0) 20 7876 5000 View detailsPartner
Clyde & Co
Level 15,
333 George Street
Sydney
NSW 2000
Asia Pacific
John is a recognised leader in cyber risk and incident response space and jointly leads the global cyber team. John manages Australia’s leading cyber incident response teams and his team have advised on over 700 cyber incidents in recent times, including on some of the most high profile and complex incidents, both locally and globally.
john.moran@clydeco.com +61 2 9210 4974 View detailsPartner
St Botolph Building
138 Houndsditch
London
EC3A 7AR
UK & Europe
Ian advises corporate and insurer clients on managing domestic and international cyber incidents and data breaches, claims and recovery actions, regulatory investigations and subsequent litigation including group claims. Ian jointly leads the global cyber team and assists clients to improve their overall cyber resilience through a range of pre-breach services such as cyber simulations.
Ian.Birdsey@clydeco.com +44 20 7876 6272 View detailsWatch the highlight reel, read the report, download the Under The Hood Guide and check out the photos from the day here.
Read More
The breach which necessitated notice to all 28 EU supervisory authorities and involved managing a number of regulatory investigations across the EU.
Acting for one of the largest water distributor-retailers in Australia in relation to its incident response following a high value, major technology supply chain failure which had the potential to impact services to over 1.5 million customers.
This included negotiations with the ICO and dealing with employment law implications and customer communications.
Acting on the instructions of a multi-national insurer as local breach counsel in respect of a fraudulent payment scheme involving suspected social engineering under its South Africa cyber policy.
Advising a financial institution in Singapore following a personal data breach incident involving unauthorised emails sent from the computer system of a third party service provider to the customers of the financial institution.
Advising a local New Zealand government agency on cloud services contracting risks including cross-border data breach reporting obligations.
Advising a Saudi government company on adjustments to its terms and conditions to address cyber risk and liability.
Advising a government entity in Oman on the outsourcing of services to a third party operator to support the establishment of a national cybersecurity operations centre
This resulted in the loss of significant numbers of customer data including financial, sensitive personal data and credit card details.
Advising in relation to a high profile claim in Hong Kong involving the breach of personal data privacy laws, the first large-scale contactless smartcard payment system in Hong Kong, including defence of investigations by the PCPD.
Acting on the instructions of a multi-national insurer as local breach counsel in respect of a fraudulent payment scheme involving suspected social engineering under its South Africa cyber policy.
Assisting a nationwide fuel trucking business following a ransomware attack infecting multiple servers which resulted in the potential inability to provide fuel to a number of the largest transport operators in Australia.
Acting for one of the largest water distributor-retailers in Australia in relation to its incident response following a high value, major technology supply chain failure which had the potential to impact services to over 1.5 million customers.
Advising in relation to a high profile claim in Hong Kong involving the breach of personal data privacy laws, the first large-scale contactless smartcard payment system in Hong Kong, including defence of investigations by the PCPD.
Advising a local New Zealand government agency on cloud services contracting risks including cross-border data breach reporting obligations.
Advising a financial institution in Singapore following a personal data breach incident involving unauthorised emails sent from the computer system of a third party service provider to the customers of the financial institution.
Advising a government entity in Oman on the outsourcing of services to a third party operator to support the establishment of a national cybersecurity operations centre
Advising a Saudi government company on adjustments to its terms and conditions to address cyber risk and liability.
Advising companies on their cybersecurity posture and risk management techniques.
Litigating claims arising out of negligent cybersecurity and data maintenance, and data privacy claims.
Development and drafting of cyber incident response plans for clients, including employee education presentations.
Advising policyholders and insurance industry participants on the risks presented by the possession of cryptocurrency and suggested mitigation strategies.
Development and drafting of cyber insurance policies for insurance companies.
Representing insurers in insurance coverage litigation arising under cyber insurance policies.
Litigating a claim against a vendor that suffered a data breach leading to business interruption losses by our client.
This included negotiations with the ICO and dealing with employment law implications and customer communications.
This resulted in the loss of significant numbers of customer data including financial, sensitive personal data and credit card details.
Advice extended in one case to any potential recovery of the misdirected funds and in another, to defence of contractual claims in circumstances where the client owed outstanding sums as a result of the fraud.
The breach which necessitated notice to all 28 EU supervisory authorities and involved managing a number of regulatory investigations across the EU.
Including managing the internal investigation and dealing with the ICO, Financial Conduct Authority and the Prudential Regulation Authority.
This was following a multi-million dollar payment diversion fraud including notifying regulators and clients in dozens of different jurisdictions and settling the claim by the defrauded customer.
Partner
Partner
Partner
Partner
Partner
Partner
Partner & Chair of APAC
Partner
Partner
Partner
Show more