COVID-19 and beyond.
California’s next wave of privacy legislation, the California Privacy Rights Act (CPRA), expands the freshly enacted California Consumer Privacy Act (CCPA).
Legal tech is constantly changing, but with so many tools out there, finding the best solutions takes time and effort. Enter the Observatory.
Got data? Of Course You Do! Data is the biggest opportunity of the next decade.
Orrick’s CFIUS Assessment Tool guides parties through the complex legal scheme surrounding foreign investment in the United States.
COVID-19 and beyond.
California’s next wave of privacy legislation, the California Privacy Rights Act (CPRA), expands the freshly enacted California Consumer Privacy Act (CCPA).
Legal tech is constantly changing, but with so many tools out there, finding the best solutions takes time and effort. Enter the Observatory.
Got data? Of Course You Do! Data is the biggest opportunity of the next decade.
Orrick’s CFIUS Assessment Tool guides parties through the complex legal scheme surrounding foreign investment in the United States.
6 minute read | December.20.2022
Orrick’s Founder Series offers monthly top tips for UK startups on key considerations at each stage of their lifecycle, from incorporating a company through to possible exit strategies. The Series is written by members of our market-leading London Technology Companies Group (TCG), with contributions from other practice members. Our Band 1 ranked London TCG team closed over 310 growth financings and tech M&A deals totalling US$26bn in 2021 and has dominated the European venture capital tech market for 27 consecutive quarters (PitchBook, Q3 2022). In our previous instalments, we have guided founders through the process of incorporating a private limited company, building their team, how to use share options to attract and incentivise their employees, protect their ideas, identify key compliance considerations and get ready to raise.
For many, cybersecurity is an area that is intimidating and hard to navigate – especially for smaller companies who often lack the resources (and sometimes knowledge) to protect effectively against cyber risks.
Individuals or groups which target companies with cyber threats (often called “threat actors”) continue to aim primarily at companies which are highly likely to pay a ransom, or those lacking cybersecurity defences, including: companies which are IP or data-rich, important to supply chains, those in industries such as financial services, healthcare and energy, or which are perceived to work with governmental bodies, and small or earlier stage companies with limited cybersecurity defences.
Failing to implement appropriate cybersecurity defences has a real cost: data breaches can cost millions, even for small companies. This includes the expense of investigating and notifying regulators, legal costs, as well as downtime, customer, and reputation loss.
It is never too early to get clued up on cybersecurity – our Cybersecurity Jargon Buster is available here (produced in collaboration with S-RM and Thomson Reuters Practical Law).
Read on for our summary of the top 10 cybersecurity considerations for startups.
Our Cyber, Privacy & Data Innovation team can assist you at all stages of your cybersecurity process from preparation, incident response and post-incident review, kicking off any advice with an introductory meeting where they can learn about your business and objectives, and provide strategic advice on:
If you would like more details on any of the issues above, please contact Kelly Hagedorn or Cameron Carr.
London
London
Jamie’s practice focuses on venture capital with significant experience in advising start-ups through to unicorns.
Jamie acts for both early and late stage companies in intellectual property rich sectors and those who invest in them, including some of the most active venture capital funds, corporate or individual investors.
Jamie has a passion for disruptive technologies, innovation and entrepreneurial business. He has acted on countless transactions across a broad range of sectors both in the UK and internationally, but is most known for his experience in acting on investments into fintech and Artificial Intelligence companies.
Jamie has deep knowledge of the practice area in which he operates and market trends, which he leverages to provide clear and concise advice on a range of corporate issues taking high growth technology companies from start-up through to exit.
He presents on corporate law and venture capital to clients and at seminars in the City, including practitioners’ conferences on practical legal issues in venture capital transactions and SEIS/EIS investments.
An active participant in the venture capital community, Jamie Moore has contributed to industry standard form documentation, acted as a mentor for various Seedcamp portfolio companies and hosted office-hours for the Barclays’ TechStars cohort.
London
London
Kristy advises on a broad range of corporate matters affecting early and late-stage technology companies and their investors.
Kristy has experience working with companies as well as investors and venture capital funds throughout a company’s life cycle, including early-stage financings, institutional funding rounds and exits.
London
London
Kelly Hagedorn supports global clients on legal and regulatory issues involving data privacy regulation and litigation, using her extensive enforcement background to help clients mitigate risk under United Kingdom (UK) and European (EU) data protection laws. She has significant experience helping clients navigate white-collar investigations and international disputes involving major fraud allegations in the growing area of privacy enforcement and litigation. Kelly was previously named in Global Data Review’s inaugural “40 Under 40” list of the best and brightest upcoming data lawyers.
Kelly provides comprehensive regulatory advisory services to clients, including counseling on the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. She has designed and implemented data protection compliance programmes for clients in a range of sectors, including technology, gaming, manufacturing, and private equity.
Kelly has worked with companies to respond to data incidents that range from small-scale issues that do not attract regulatory attention to large, multi-jurisdictional breaches requiring coordination across numerous different regulatory regimes. She has also advised extensively on litigation matters involving allegations of fraud and financial crime, and in connection with securities laws.
During her career, Kelly has undertaken secondments to the Serious Fraud Office and a major telecommunications company. At the Serious Fraud Office, she worked on a number of cases dealing with restraint and confiscation matters. During her time with the telecommunications company, she helped develop and implement the company’s group-wide anti-bribery compliance programme security associated with data retention, processing, and transfer.
London
London
Cameron provides strategic advice to clients on cyber incident response and cyber risk management. He also uses his experience to offer practical advice on cyber insurance coverage and policy wordings.
Cameron has supported clients across a substantial number of high-profile cyber incidents, both in the UK and abroad. As breach response counsel, he has co-ordinated multiple expert teams to help clients respond to sophisticated malicious cyber acts and wider cyber incidents.
He applies his experience on the ground to his approach to cyber risk management and insurance. He has advised on multiple cyber insurance policy wordings and “silent cyber” projects across the London market.
He also provides strategic advice to incident response firms, including those looking to enhance market presence in incident response, and threat intelligence.
Cameron has completed two secondments in claims teams at major international insurers.
London
London
Anna advises clients on cross-border and domestic transactions in the areas of venture capital, M&A and private equity, in addition to advising on general commercial, intellectual property, IT and data privacy issues.
Anna has experience working with early stage and high-growth companies on a wide variety of matters across the technology, telecommunications, energy and retail sectors. Anna maintains a passionate interest in ethical and social issues associated with her practice, including data ethics, artificial intelligence, data protection and privacy.
© 2022 Orrick Herrington & Sutcliffe LLP. All rights reserved.
Please do not include any confidential, secret or otherwise sensitive information concerning any potential or actual legal matter in this e-mail message. Unsolicited e-mails do not create an attorney-client relationship and confidential or secret information included in such e-mails cannot be protected from disclosure. Orrick does not have a duty or a legal obligation to keep confidential any information that you provide to us. Also, please note that our attorneys do not seek to practice law in any jurisdiction in which they are not properly authorized to do so.
By clicking “OK” below, you understand and agree that Orrick will have no duty to keep confidential any information you provide.