Advising on Cyber Security Policies and Processes
Development of internal policies and procedures for system security
Our focus is you
What policies and contracts does my business need for a strong cyber security strategy?
As cyber threats continue to proliferate, having a tailored cyber security strategy in place is now a commercial priority. At DMH Stallard we help businesses devise commercial strategies and security policies that help minimise the risks to the business. This can be a long-term process, including educating and training staff so that there is a high level of awareness across the business about the risk of cyber threats. It also involves advising on how a business interacts with its customers and clients and what it should do when entering into binding commercial agreements with third parties.
A key part of any cyber security strategy will be a cyber or information security policy that embeds cyber security best practice across your organisation. All employees must adhere to the policy and proactively act in accordance with its requirements.
The goal of any effective cyber security strategy is to reduce the risk that your business will be attacked in the first place. It’s also to ensure that if an attack does occur you have the tools available to deal with it in a way that minimises the financial and reputational impact.
We have offices in London and across the South East including Gatwick and Crawley, Hassocks, Horsham, Brighton and Guildford.
Please note that visits to our office is by appointment only. If you wish to contact one of our cyber security experts you can do via our online enquiry form
Stay connected, sign up for updates
Stay connected
Meet the cyber security team
Recent work
Sectors
Legal advice relating to a ransomware attack
Advising client whose supplier was subject to a ransomware attack. We act for a client in relation to the provision of IT Services from a supplier, who was subject to a ransomware attack leading to repercussions for our client. We are advising our client on their rights and potential claim to damages.
Advising retail solutions provider on cyber and data protection issues
Advising client on structure of framework contracts, master services arrangements and IT solutions, including data protection structure and processing provisions. Advising on international data transfers agreements, use of SCCs/International Data Transfer Agreement and Transfer Risk Assessment for adhering to technical and organisational and other data security measures.
Legal support to airline technical solutions provider
Advising on provision of SaaS service and data processing arrangements, including cross-border data transfer arrangements for airlines in different jurisdictions, international data transfer contracts and risk assessments, data security considerations and linking to cyber security insurance. Advising and drafting a Data Breach Policy and Data Retention and Deletion Policy (internal and external versions), to support GDPR compliance obligations.
Advising IT platform development and infrastructure provider
Advising on data protection matters, regulatory compliance and drafting suite of data protection documents including general Privacy Policy, Cookies Policy, Data Handling Policy, Employee Data Protection Policy, Data Protection Impact Assessments, Legitimate Interests Assessments, Subject Access Request Process, intra-company Data Sharing Agreements (including international data transfer provisions) and Data Retention Policy.
Web shop terms and data processing
Advising a plumbing fixtures manufacturer on an agreement with an Instagram influencer and their web shop terms, as well as the provision of advice relating to data processing.
Commercial Business Law
News and insights
Insights
An overview of the environmental regulator’s approach to the enforcement and prosecution of environmental offences which outlines the potential penalties and other implications for a businesses who breaches environmental legislation
25/02/2015
