Mithila GupteSenior Associate

I advise clients on a range of data protection and privacy issues, including privacy notices, data processing/sharing arrangements, and commercial contracts to which the transfer and use of data is integral. I also provide clients with strategic advice on the use of cookies and other direct marketing concerns, and helping clients to future-proof their contracts and data protection practices in light of Brexit. I work for clients across a variety of sectors, with a focus in the technology and advertising sectors and businesses providing professional services. I hold the IAPP CIPP/E Data Protection accreditation.

My experience includes:

• In-house experience supporting the privacy function at a large tech company, regularly advising on direct marketing queries, data protection aspects of commercial negotiations, and regulatory investigations.
• Supporting an in-house legal team of a leading international law firm, focusing on ad hoc commercial and data protection queries, drafting and negotiating data processing agreements, and advising on complex data sharing arrangements.
• Conducting GDPR audits to assess the ‘health’ and data protection compliance of a business, including assessing risk levels of any non-compliance and drafting policies to bolster compliance.
• Regularly advising companies on international transfers and Schrems II compliance.
• Obtaining and collating advice from local counsel in various jurisdictions, on topics such as direct marketing and the processing of diversity and inclusion data.