TLT has announced Gareth Oldale as its head of privacy and cyber security.
Gareth will have a particular focus on expanding TLT’s service offering, including the use of legaltech to help solve clients’ challenges in this complex area of the law.
The firm's data protection, information law and cyber security products and services have evolved rapidly in recent years, led by specialists Brian Craig - who was appointed legal director in April 2018 - and Gareth who joined as a partner in April 2019.
TLT offers legaltech solutions as part of its existing service, including a fully outsourced service for responding to data subject access requests (DSARs) under the GDPR. Automated technology is used to perform searches and respond to requests, helping clients to manage costs and improve speed and efficiency.
Gareth Oldale, partner and head of privacy and cyber security at TLT, says: “We have been assisting clients in all sectors with a range of issues stemming from recent changes in the law, not least the high volume of often complex issues relating to the GDPR and the Data Protection Act.
“With the emergence of new cyber security threats and the increased focus on incident management, together with other legislative changes in this field, this trend of increasing demand for our services is expected to continue in the years ahead.
“Legal technology and automation is key to helping clients meet their privacy and data protection obligations, and in detecting and responding to cyber security incidents. I am looking forward to working with the team to develop further our offering in this area.”
Gareth is a specialist in data protection, privacy and information law. He acts as external data protection officer for a number of clients and is regularly instructed to advise on cyber security and cyber breach issues.
TLT’s privacy and cyber security team is continuing to run its popular data protection think tanks in 2020, and has recently released a podcast episode on responding to data subject access requests.
Following the ICO’s first fine under the GDPR in December since it came into effect, we revisit how the decision confirmed that the presence of a sub-contractor does not absolve a data controller of its responsibilities...