Marc helps clients to evaluate and manage data protection and cyber risk in cross-border compliance programs, in technology projects involving the development of machine learning/artificial intelligence, Internet of Things, cloud applications, in life sciences and medical device projects covering healthcare apps, remote diagnostics, clinical trials and investigations and genomic research, and in the financial services sector across the lifecycle of product development and FinTech applications.
Marc also advises on cyber security incidents, and regulatory investigations and disputes involving data protection, misuse of private information and breaches of confidentiality, and has experience of devising voluntary redress schemes for individuals affected by such misuse or breaches.
In the area of digital regulation, Marc assists clients to navigate the EU’s digital services legislative framework, advising amongst others on the Data Act, the DSA, NIS2, DORA and related legislation.
Some of Marc’s work highlights include:
- Defending a global advertising technology platform against proceedings brought by a leading privacy campaigner for alleged breaches of GDPR in the field of real time bidding.
- Advising on numerous cyber incidents, with a sector focus advising banks, law firms and barristers chambers on responding to incidents and on subsequent investigations and enforcement action by data protection authorities.
- Defending a leading global advisory services firm against threatened SLAPP proceedings and advising them on numerous subject access requests.
- Advising providers and deployers of AI, including a sector focus in HR, advising international leadership consulting firms on the development of AI in the field of recruitment and performance management.
- Defending a multinational data analytics and consumer credit reporting company in enforcement proceedings brought by the ICO.
- Advising firms in the life sciences and healthcare sectors on the full range of GDPR issues in their sector, including research institutions on anonymised data, pharmaceutical companies on medical research and clinical trials, medical device companies on development of devices, an NGO in the field of vaccine development against pandemics, and a global leading university on Freedom of Information and on international data transfers.
- Advising banks in the UK, EU and Middle East on data transfer impact assessments, the adoption of cloud, AI customer service operations and anti-fraud technologies.
- Advising technology suppliers on the development and supply of technologies with a particular focus on EU ePrivacy rules and their intersection with the GDPR.
- Advising a Chinese FinTech on GDPR compliance in the development of its AML solutions for banks.
- Supporting a leading global car manufacturer on its connected vehicle strategy.
- Advising a FTSE100 retailer on a range of GDPR compliance issues.
- Defending firms in several sectors against noyb complaints.
- Supporting our Corporate and Medical Regulatory teams on data protection due diligence on a range of mid-tier acquisitions and disposals.
- Advising an MVNO on its obligations under UK interception of communications legislation and on a range of GDPR issues.
- Supporting a multinational commodities company on its end-to-end GDPR compliance programme.
- Developing BCRs for a global management consulting and technology firm.
Marc advises on both UK and EU law, covering GDPR, the Data Protection Act 2018 and the ePrivacy Directive, the Network and Information Systems Regulations including NIS2, DORA and the Cyber Resilience Act, the Digital Services Act, the EU AI Act and the EU Data Act, the Freedom of Information Act and Environmental Information Regulations, the Investigatory Powers Act and the data protection and security aspects of financial services legislation and regulation (such as PSD2 and the SYSC rules in the FCA Handbook).
Marc is a member of the International Association of Defense Counsel, International Association of Privacy Professionals and ITech Law.
Marc has a good working knowledge of German and Swedish.
Data Protection publication
Read here