Data privacy advice provided to major African mining companies, international car manufacturers, various large local and international retail groups, local and international telecommunication service providers, major media companies, investment holding companies, a gaming and entertainment group, local and international logistic and courier companies, international law firms and other organisations. The advice included data privacy compliance programmes, personal information impact assessments and compliance gap analysis, as well as complex data privacy issues such as direct marketing consents, responsible parties versus operators, liability of information officers, prior authorisation and intergroup sharing of data.
Big data advice provided to large telecommunication service providers, major media companies and fintech companies, including all aspects of using big data for commercial purposes and compliance with laws affecting privacy and security.
Data protection advice, including related agreements, policies and procedure documents, provided to major local and international banks, global social media and messenger platform providers, various large retail groups, a telecommunication service provider, major media companies, investment holding companies, and a gaming and entertainment group.
Security breach assistance provided to major retailers, mining companies, banks, technology and telecommunication companies, as well as lifestyle and fitness companies. This included managing and responding to breaches, regulatory investigations, and data / cyber breach notifications to regulators and data subjects.
Acted for a variety of corporate entities against former employees involved in theft of data, and advised on steps to reduce reputational and other damage. This included representing a large corporate in urgent court proceedings to preserve and recover data stolen during a data breach.
DATA SUBJECT ACCESS REQUESTS
Promotion of Access to Information Act (PAIA) and Protection of Personal Information Act (POPIA) advice provided to multinational retailers, international vehicle manufacturers, local and international telecommunication service providers, major media companies, investment holding companies, local and international logistic and courier companies, and large mining companies, regarding requests made to these organisations for information.
Training of staff, management and information officers on POPIA and General Data Protection Regulation (GDPR), including marketing, HR, IT, intergroup data sharing, cross-border data sharing, policy implementation and managing data breach incidents.
Since 2014, ENS has been part of the
United Nations Global Pulse Data Privacy and AI Expert Group, a body comprising some of the world’s leading data privacy lawyers, regulators and academics.
Preparation and implementation of comprehensive incident response plans for a multinational oil and gas company, major retailers and a large telecommunication service provider.
Opinions on wording, coverage, reinsurance and interpretation of insurance policies (including cyber coverage wording) for major retailers, an international mining company and a large telecommunication service provider.