Dautlich
<p>Marc helps clients to evaluate and manage data protection and cyber risk in cross-border compliance programs, in technology projects involving the development of machine learning/artificial intelligence, Internet of Things, cloud applications, in life sciences and medical device projects covering healthcare apps, remote diagnostics, clinical trials and investigations and genomic research, and in the financial services sector across the lifecycle of product development and FinTech applications.</p>
<p>Marc also advises on cyber security incidents, and regulatory investigations and disputes involving data protection, misuse of private information and breaches of confidentiality, and has experience of devising voluntary redress schemes for individuals affected by such misuse or breaches.</p>
<p>In the area of digital regulation, Marc assists clients to navigate the EU’s digital services legislative framework, advising amongst others on the Data Act, the DSA, NIS2, DORA and related legislation.</p>
<p>Some of Marc’s work highlights include:</p>
<ul>
<li><strong>Defending</strong> a global advertising technology platform <strong>against proceedings</strong> brought by a leading privacy campaigner for alleged breaches of GDPR i<strong>n the field of real time bidding.</strong></li>
<li>Advising on numerous <strong>cyber incidents</strong>, with a sector focus advising banks, law firms and barristers chambers on <strong>responding to incidents</strong> and on <strong>subsequent investigations and enforcement action</strong> by data protection authorities.</li>
<li><strong>Defending</strong> a leading global advisory services firm against threatened <strong>SLAPP proceedings</strong> and advising them on numerous <strong>subject access requests.</strong></li>
<li>Advising <strong>providers and deployers of AI</strong>, including a sector focus in <strong>HR</strong>, advising international leadership consulting firms on the <strong>development of AI</strong> in the field of recruitment and performance management.</li>
<li>Defending a multinational <strong>data analytics and consumer credit reporting </strong>company in <strong>enforcement proceedings</strong> brought by the <strong>ICO.</strong></li>
<li> Advising firms in the life sciences and healthcare sectors on the full range of GDPR issues in their sector, including research institutions on <strong>anonymised data</strong>, pharmaceutical companies on <strong>medical research and clinical trials</strong>, medical device companies on development of devices, an NGO in the field of <strong>vaccine development against pandemics</strong>, and a global leading university on <strong>Freedom of Information</strong> and on <strong>international data transfers.</strong></li>
<li>Advising <strong>banks in the UK, EU and Middle East</strong> on data transfer impact assessments, the adoption of <strong>cloud</strong>, <strong>AI customer service operations</strong> and <strong>anti-fraud technologies.</strong></li>
<li>Advising <strong>technology suppliers</strong> on the development and supply of technologies with a particular focus on <strong>EU ePrivacy</strong> rules and their intersection with the GDPR.</li>
<li>Advising a <strong>Chinese FinTech</strong> on GDPR compliance in the development of its <strong>AML solutions</strong> for banks.</li>
<li>Supporting a leading <strong>global car manufacturer </strong>on its <strong>connected vehicle strategy.</strong></li>
<li>Advising a <strong>FTSE100 retailer</strong> on a range of GDPR compliance issues.</li>
<li>Defending firms in several sectors against <strong>noyb</strong> complaints.</li>
<li>Supporting our <strong>Corporate and Medical Regulatory teams</strong> on data protection due diligence on a range of <strong>mid-tier acquisitions and disposals</strong>.</li>
<li>Advising an <strong>MVNO</strong> on its obligations under <strong>UK interception of communications legislation</strong> and on a range of GDPR issues.</li>
<li>Supporting a <strong>multinational commodities company</strong> on its end-to-end GDPR compliance programme.</li>
<li>Developing <strong>BCRs</strong> for a global <strong>management consulting and technology firm.</strong></li>
</ul>
<p>Marc advises on both UK and EU law, covering GDPR, the Data Protection Act 2018 and the ePrivacy Directive, the Network and Information Systems Regulations including NIS2, DORA and the Cyber Resilience Act, the Digital Services Act, the EU AI Act and the EU Data Act, the Freedom of Information Act and Environmental Information Regulations, the Investigatory Powers Act and the data protection and security aspects of financial services legislation and regulation (such as PSD2 and the SYSC rules in the FCA Handbook).</p>
<p>Marc is a member of the International Association of Defense Counsel, International Association of Privacy Professionals and ITech Law.</p>
<p>Marc has a good working knowledge of German and Swedish.</p>
Marc DautlichPartner – Data protection, privacy & cyber
Marc is a technology specialist with 30 years’ experience in private practice and in-house at Equifax and Microsoft. He advises clients in the technology, life sciences and financial services sectors on data protection & privacy, cyber risk and digital regulation.