Privacy & Data Protection Journal - Contributors

The following experts have contributed articles to recent editions of Privacy & Data Protection Journal:



Thierry Bernard
Founding Partner
Quadridge (Paris)



Thierry Bernard is a French lawyer and founding partner of the law firm Quadrige (Paris) and responsible for its Information Technologies practice. Thierry has extensive experience in advising international clients on any legal issue regarding data protection (compliance audit, international transfer of data, outsourcing contracts, notifications to the CNIL,...) and information technologies in general, both in an advisory capacity and in litigation, in France and in the Maghreb countries. Thierry regularly leads training events and conferences and published articles in French and foreign magazines.


Carolyn Bigg Simmons & Simmons

Carolyn Bigg
Managing Associate
Simmons & Simmons



Carolyn Bigg is a managing associate in Simmons & Simmons' Information, Communications and Technology group. She advises on all forms of IT, communications and commercial contracts, specialising in outsourcing arrangements and systems supply/integration agreements, acting for both customers and suppliers in a variety of sectors. Carolyn has significant experience of advising on data privacy regimes across the EU and Asia Pacific regions, on international data transfers and management of data security risks. Carolyn also advises on software licensing, e-commerce and Internet issues.
Carolyn has industry and in-house experience, having undertaken secondments to an international telecoms operator, a US software house, a forensic service provider and a global insurance company.

Carolyn qualified as a solicitor in England and Wales in 2003 and Hong Kong in 2010. Carolyn has been based in Hong Kong since January 2009.



PDP Journals | Kate Brimsted - Of Counsel - Herbert Smith LLP

Kate Brimsted
Reed Smith


Kate Brimsted
is a Counsel at Reed Smith and has specialised in Data Protection and Privacy law for fifteen years.

She regularly advises clients in the UK, continental Europe and North America on a wide variety of data protection matters, such as whistleblowing schemes, international data transfer solutions, subject access requests in high value disputes, release of personal data in the context of regulatory investigations, internal privacy and IT security policies and risk analysis in corporate acquisitions and disposals.

She is a solicitor advocate and an experienced conference speaker. Kate regularly designs and presents bespoke professional training for clients on information law.




James Castro-Edwards

James Castro-Edwards is a solicitor at PriceWaterhouseCoopers Legal.

His recent work includes ownership of global data protection compliance projects for multinationals, including implementation of Sarbanes-Oxley driven whistleblower hotlines.

James has significant experience of the differing requirements of the many European data protection authorities particularly in relation to data transfers. He has advised clients in relation to subject access requests, acting for both data controllers and data subjects, and enabled database owners to optimise their personal data for marketing purposes while remaining in compliance with the law.

James also advises online and innovative businesses looking to exploit new intellectual property. In doing so he has advised in relation to distribution, supply and licensing agreements, and regularly advises clients in relation to new online business models. James provides practical advice and commercial solutions to data hosting businesses.


Greg Clark

James Clark
Senior Associate
DLA Piper



James Clark is a Senior Associate in the Data Protection, Privacy and Cyber Security group at DLA Piper.  He advises a broad range of private and public sector clients on compliance and contract issues in the fields of data protection, privacy, direct marketing and freedom of information law, and also regularly helps clients to respond to and manage multi-jurisdictional data security incidents.   In addition to his practice area, James is a member of his firm's multi-disciplinary Insurance and Life Sciences sector teams, and regularly attends, organises and speaks at events attended by organisations in these sectors.   James is also the co-editor of DLA Piper's popular Data Protection Laws of the World website and handbook.

Peter Given, Associate, Bond Pearce LLP

Peter Given
Legal Director
Bond Dickinson



Peter Given is a Legal Director specialising in data protection and privacy law. He advises clients on a wide range of data protection matters in a variety of contexts, including in relation to general data protection compliance, data processing and outsourcing arrangements, direct marketing, data subject access requests, personal data breaches and cross-border transfers of data.
Peter has previously undertaken secondments to a global US-based financial institution and a major European pharmaceutical organisation. In both secondments Peter supported the internal legal teams on a variety of matters and projects, including those relating to data protection and privacy.


PDP Journals | Richard Hollis - Chief Executive Officer - Orthus

Richard Hollis
Risk Factory



Richard Hollis is the Chief Executive Officer of Orthus, a European information security risk management consulting firm specialising in providing independent information risk management services. As a Certified Information Security Manager (CISM), Certified Protection Professional (CPP) and a Payment Card Industry (PCI) Qualified Security Assessor (QSA), Richard designs, implements and manages comprehensive information security programmes and architectures for technology driven companies. Over the course of his career Richard has served as Director of Security for Phillips and Deputy Director of Security for the US Embassy Moscow Reconstruction Project, as well as a variety of sensitive security positions within the US government and military.


Evy Cynthia Marques, Santos Neto & Montgomery Advogados

Evy Cynthia Marques
Santos Neto &
Montgomery Advogados



Evy Cynthia Marques is a partner in the corporate commercial department of Santos Neto & Montgomery Advogados in São Paulo, Brazil. She has 10 year experience specialising in advising foreign and multinational clients on establishing and conducting business in and with Brazil. She has a wealth of knowledge with regard to Brazilian data protection and privacy issues, particularly when dealing with the collection, processing and especially transfer abroad of personal data obtained from Brazilian subsidiaries. Most notably she has provided this service to European and American organisations operating within Brazil. She has written articles for various privacy periodicals, including PDP, and has spoken at national and international events.


Marion Oswald, University of Winchester

Marion Oswald
Solicitor &
Senior Lecturer
of Winchester



Marion Oswald is a solicitor and a Senior Lecturer in Law at the University of Winchester, and founder of the Centre for Information Rights at the University. With experience in legal management roles within private practice, international technology companies, including Apple and McAfee, and UK Central Government, she has worked extensively in the fields of data protection, freedom of information and information technology, advising on a number of information technology implementations, data sharing projects and statutory reforms. Since joining the University of Winchester in September 2009, Marion has presented, published and advised on the subjects of information technology, data protection and information law.


Stephanie Pritchett, Solicitor, Pritchetts Law

 Stephanie Pritchett
Pritchetts Law



Stephanie Pritchett is a Solicitor and Principal of Pritchetts, a specialist data protection and privacy law firm.

She advises a wide range of both private and public sector clients on all aspects of data protection, freedom of information and privacy law.

This has included advising on data protection and data retention audits, implementing internal compliance programmes and policies, compliant transfer of data in and outside the EEA, buying and selling of databases, marketing and website compliance, data security, use of CCTV and dealing with subject access requests as well as on the interaction between FOI and data protection legislation.

Stephanie is a highly experienced speaker and trainer.



Sian Rudgard, Director Field Fisher Waterhouse

Sian Rudgard
Hogan Lovells



Sian Rudgard is Counsel at Hogan Lovells in London having previously worked as a Solicitor at the Information Commissioner’s Office. Sian advises clients in both the public and private sector on a wide range of data protection and freedom of information issues with a particular focus on global compliance solutions. Sian is a regular and experienced contributor to conferences and training on data protection and freedom of information.


Monica Salgado, Speechly Bircham


Monica Salgado
Speechly Bircham



Monica Salgado is a registered Portuguese lawyer at Speechly Bircham LLP. Monica has experience assisting clients with the most varied data protection issues, both in Portugal and in the UK. Monica has advised on filings with the relevant data protection authorities, outsourcing, trans-border flows of personal data, data protection compliance measure and tools, compliance assessments and training. She has also provided legal advice on how to comply with the e-privacy rules, notably by conducting company audits, drafting cookies policies and implementing cookie consent tools.

Monica has been referred by clients in the Legal 500, 2011 Edition as “providing top-notch client service”


Manish Soni

 Nick Soni



Nick Soni is Managing Director at the digital risk consultancy, CyberStreet (  A core aim of CyberStreet is to save his clients money by integrating risks across cybersecurity and data privacy as they are often related. Nick holds the prestigious CISSP (Certified Information Systems Security Professional) cybersecurity certification and Fellow of Information Privacy (FIP) accreditation. Nick is also a Cyber Essentials and IASME Cyber Assured Assessor. Nick’s experience stems from diverse IT and legal backgrounds and his practice is very much “hands-on” cybersecurity and privacy.  Nick’s experience includes a combination of in-house (Ford Motor Company, Cognizant and CBRE) and law firm experience (Herbert Smith Freehills and Macfarlanes).



Eduardo Ustaran Field Wisher Waterhouse

Eduardo Ustaran
Hogan Lovells


Eduardo Ustaran is a dually qualified English Solicitor and Spanish Abogado and a partner at Hogan Lovells. He advises on the impact of EU data protection and e-commerce law on the operational activities of all types of organisations, including FTSE 100 companies and public sector bodies. He advises international clients on the adoption of global privacy strategies. Eduardo is a regular contributor to legal and industry journals and has taken part in many UK and international speaking engagements. He is co-author of the Law Society’s Data Protection Handbook.


Damien Welfare, Barrister, Cornerstone Barristers

Damien Welfare
Cornerstone Barristers


Damien Welfare is a Barrister at Cornerstone Barristers. He specialises in information law, including freedom of information, data protection, and the Environmental Information Regulations (of which he has made a special study), and local government law.

Damien appears in the Information Tribunal, advises on a wide range of EIR, FOI and data protection issues, and regularly addresses conferences and seminars on these topics. Damien is a member of the Editorial Board of Freedom of Information, and contributes articles on FOI and EIR topics, as well as a regular update of ICO decisions.


Olivia Whitcroft, Solicitor

Olivia Whitcroft


Olivia Whitcroft led the data protection practice at PricewaterhouseCoopers Legal LLP for several years before setting up her own specialist firm. Olivia specialises in all aspects of data protection compliance, including conducting compliance audits and reviews, drafting data protection policies, contracts and frameworks, and advising on compliance and good practice.

Olivia has worked on projects across a wide range of industries including financial services, media, technology, retail, education and the public sector. She has advised both large multinationals and small UK companies alike, each benefitting from her experience of understanding and addressing the different needs of businesses of different sizes, and at different stages in their evolution.








Practitioner Certificate in Data Protection (UK)

Subscribe to PDP Journals
Renew your subscription to PDP Journals


Sixth edition (2020)


Data Protection -
A Practical Guide
to UK and EU Law
The latest edition of
Peter Carey’s
best selling book on practical
data protection compliance can be purchased