Privacy, Data & Cybersecurity

+ 10 other experts

From Silicon Valley's big tech firms

... major digital platforms, leading financial institutions, and other data-heavy industries, through to telecommunications companies – across different sectors: we lead the way in complex privacy and data security work. We have a multidisciplinary approach bringing together experts in privacy, data protection, cybersecurity, competition, consumer, business and human rights, financial regulation, litigation and administrative law: one bespoke integrated teams of experts to match the client's requirements.

Understanding the opportunities and risks associated with the platform economy, we help digital platforms to harness the power of data analytics by navigating the complex legal landscape for privacy and consumer protection. We also enable companies to realise customer-centric innovation and analytics, through cutting-edge advice on the application of pseudonymisation, machine learning and related technologies. Our excellent standing with the relevant regulatory authorities enables us to assist clients with their internal investigations, mass claims and enforcement actions by Data Protection Authorities, the European Commission and the Dutch Consumer and Markets Authority.

We advise on major international cybercrime and cyber security matters, and handle many multi-jurisdictional data breaches and potential post-breach litigation matters. We are involved in most of the major mass claim and privacy related litigation matters in the Netherlands.


Related expertise

Tech & DigitalLitigation

Recent Matters

29 November 2019

Madison Industries agrees to buy Holmatro

Madison Industries, one of the largest privately held companies in the world, has agreed to buy Netherlands-based provider Holmatro N.V. Madison Industries focuses on companies that are essential to collective health and wellbeing. As a provider of innovative hydraulic equipment for rescue, industrial and special tactics applications worldwide, Holmatro is well aligned with this objective. Read more about this deal here. De Brauw team: Arne Grimme and Heather Giannandrea.
15 December 2016

Reed Business divests Elsevier Weekly and BeleggersBelangen to New Skool Media

De Brauw has assisted Reed Business Information, part of RELX Group, in the sale of magazines Elsevier Weekly and BeleggersBelangen to New Skool Media. Going forward, RELX Group will associate the Elsevier brand name exclusively with its scientific, technical and medical activities. Reed Business Information's strategy is increasingly focused on providing data and information solutions to professionals across various global industries. Consequently, the Dutch activities of the brands involved no longer align with the focus of RELX Group, but are well-suited for publishing company New Skool Media, which deals primarily with the Dutch business-to-business market. De Brauw also advised RELX on the consultation procedures with the Editorial Staff Meeting (Redactievergadering) and Editorial Board (Redactieraad) of Elsevier magazine in accordance with the Editorial Articles of Elsevier magazine. After a lengthy consultation process, the Editorial Staff Meeting approved the transaction.TeamKlaas de Vries (lead partner), Carel van Swaay, Gertjan Harryvan, Ben Wekker, Stefan Sagel, Janneke van der Kroon, Tobias Cohen Jehoram, Selmer Bergsma, Bertrand ter Woort

They shine in litigation related to privacy, data protection and cyber security. The practice has deep understanding of and experience in Dutch litigation combined with excellent knowledge and a track record in data protection & cyber security... The absolute go-to firm in The Netherlands for high-profile data privacy matters.

Legal 500, 2021


5 July 2023

China’s new counter-espionage law and recent enforcement raise data security compliance bar

On 1 July 2023, the newly revised Counter-Espionage Law came into effect in China. The amendments significantly expand the scope of activities that can be considered espionage by adding a catch-all provision, and codify the enforcement powers of relevant authorities. The revised law was first introduced in April 2023 amid a surge in Chinese enforcement activity against US-linked consultancy and due diligence firms, including a raid that was nationally broadcast in China.
11 April 2023

Digital Operational Resilience Act: time to start implementing

The Digital Operational Resilience Act (DORA) – EU legislation in force since 16 January 2023 – sets out requirements for ICT security systems that support the business processes of financial entities. DORA's aim is to centralise legislation related to ICT compliance, but this does not mean it is a mere collection of existing obligations. The requirements laid down in DORA are likely to have a substantial impact on how financial entities arrange the governance of their ICT risks. The industry has been given two years to prepare and implement the necessary changes before DORA starts applying on 17 January 2025. While this may seem far away, significant action is likely to be needed, and financial entities are advised to start preparations as soon as possible.
26 January 2023

2022 – looking back on a European digital year

2020 marked the start of Europe's Digital Decade, an ambitious policy programme that sets the groundwork for having a complete digital transformation of Europe by 2030. When first announced by the Commission, the programme threatened to be yet another drawn-out project, destined to be mired in political debate and unlikely to have any real-world impact for the foreseeable future. But a mere two years into the project, a different story unfolds: the European Union has kicked one of the most significant reforms in Europe into high gear. With no fewer than 13 fast-tracked legislative proposals, it looks like the Digital Decade will be completed in half of the expected time.