Photo of Alice O'Donovan

Alice is an associate in the firm's Business and Securities Litigation department. She represents a diverse range of clients in complex multijurisdictional cases in the High Court, the Court of Appeal, and in international arbitrations in forums such as the London Court of International Arbitration (LCIA) and the International Chamber of Commerce (ICC). Alongside her litigation work, Alice also specializes in advising multinational clients on compliance with UK and EU data protection laws. She holds the CIPP/E certification as a Certified Information Privacy Professional from the International Association of Privacy Professionals (IAPP).

After 25 May 2018, data protection will be a high-risk issue for all retailers who fall within the scope of the GDPR. Organizations can be fined up to 4% of annual worldwide turnover or 20 million euros (whichever is greater) for violations of the GDPR. Moreover, the GDPR applies to any business that targets goods or services at individuals located in the EU – so retailers can be caught by the GDPR even if they have no physical presence in the Union.

Retailers should pay particular attention to how they obtain customers’ consent to marketing. The GDPR requires a high standard for consent to use personal data, and violation of the consent is a serious infringement.Continue Reading Retailers, Consent and the GDPR: Is Your Business in Breach?