Our focus is you

What policies and contracts does my business need for a strong cyber security strategy?

 As cyber threats continue to proliferate, having a tailored cyber security strategy in place is now a commercial priority. At DMH Stallard we help businesses devise commercial strategies and security policies that help minimise the risks to the business. This can be a long-term process, including educating and training staff so that there is a high level of awareness across the business about the risk of cyber threats. It also involves advising on how a business interacts with its customers and clients and what it should do when entering into binding commercial agreements with third parties.

A key part of any cyber security strategy will be a cyber or information security policy that embeds cyber security best practice across your organisation. All employees must adhere to the policy and proactively act in accordance with its requirements.

The goal of any effective cyber security strategy is to reduce the risk that your business will be attacked in the first place. It’s also to ensure that if an attack does occur you have the tools available to deal with it in a way that minimises the financial and reputational impact.

Stay connected, sign up for updates

Stay connected

Recent work

Legal advice relating to a ransomware attack

Advising client whose supplier was subject to a ransomware attack. We act for a client in relation to the provision of IT Services from a supplier, who was subject to a ransomware attack leading to repercussions for our client. We are advising our client on their rights and potential claim to damages.

Advising retail solutions provider on cyber and data protection issues

Advising client on structure of framework contracts, master services arrangements and IT solutions, including data protection structure and processing provisions. Advising on international data transfers agreements, use of SCCs/International Data Transfer Agreement and Transfer Risk Assessment for adhering to technical and organisational and other data security measures.

Legal support to airline technical solutions provider

Advising on provision of SaaS service and data processing arrangements, including cross-border data transfer arrangements for airlines in different jurisdictions, international data transfer contracts and risk assessments, data security considerations and linking to cyber security insurance. Advising and drafting a Data Breach Policy and Data Retention and Deletion Policy (internal and external versions), to support GDPR compliance obligations.

Advising IT platform development and infrastructure provider

Advising on data protection matters, regulatory compliance and drafting suite of data protection documents including general Privacy Policy, Cookies Policy, Data Handling Policy, Employee Data Protection Policy, Data Protection Impact Assessments, Legitimate Interests Assessments, Subject Access Request Process, intra-company Data Sharing Agreements (including international data transfer provisions) and Data Retention Policy.

Web shop terms and data processing

Advising a plumbing fixtures manufacturer on an agreement with an Instagram influencer and their web shop terms, as well as the provision of advice relating to data processing.

News and insights

Impending passing of the Renters (Reform) Bill spells trouble for tenants and landlords

Media spotlight


Ian Narbeth shares his insights with Property118 on the potential impact of the Renters (Reform) Bill  for tenants and landlords

Ian Narbeth


How to convince your employer to let you work from home

Media spotlight


Greg Burgess shares his advice with the Telegraph on how to get your flexible working request approved with your employer

Greg Burgess