- People
- Expertise
Our expertise
We are a team of more than 500 professionals, with the depth of experience which makes us genuine experts in our fields. Together, gunnercooke’s people have strength across just about every corporate discipline and sector. We provide legal, commercial and strategic advice that delivers real value to the clients we work with, which span from multinational enterprises through to unicorns and non-for-profit organisations. Our breadth of expertise covers some of the most interesting and important emerging disciplines, from ESG and charity law, to blockchain and competition.
Search by practice areaDispute ResolutionDispute Resolution OverviewMeet the Dispute Resolution TeamIntellectual Property DisputesFinancial Services & FinTech OverviewProceeds of CrimeEmployment TribunalTax InvestigationProperty Dispute ResolutionInsolvency DisputesMediationCivil Fraud & Asset TracingHealth & SafetyBusiness Crime & InvestigationsLitigation & ArbitrationInternational Arbitration - International
International Offices
gunnercooke has 12 offices globally including the UK, Scotland, US, Germany and CEE, with further plans for growth in the coming years. These offices enhance the existing in-house capability of our dedicated international teams and dual-qualified experts that cover China and Hong Kong, Spain, France, Italy, Brazil and Portugal. Our team has experience working across 101 different countries, speaking 30 languages and are dual-qualified in 15 jurisdictions. Our expertise means we can offer large teams to carry out complex cross-border matters for major international clients.
- Our story
Our story
gunnercooke is the fastest growing corporate law firm in the UK, now making its mark globally. We comprise a rapidly growing number of experts spanning legal and other disciplines. Clients benefit from flexible options on fees to suit their needs, access to a wider network of senior experts throughout the relationship, and legal advice which is complemented by an understanding of the commercial aspects of running a business.
- Reading Room
- News & Insights
The Information Commissioner’s Office (ICO) has fined the Cabinet Office £500,000 for a data leak in 2020 that exposed the full names and addresses of the New Year Honours recipients on its web page.
More than 1,000 people were affected by the leak, with notable inclusions such as Sir Elton John, Dame Olivia Newton-John, and Sir Iain Duncan Smith.
gunnercooke Data Protection, Public law & Procurement partner, Tim Heywood, looks at how the failure to mitigate basic data risks can have significant consequences for your organisation. He also looks at the importance of conducting a GAP Analysis to avoid a similar occurrence.
“This time last year, the Cabinet Office made some basic administrative and technical errors which have resulted in a significant ICO fine.
“1,000 people having their names and corresponding addresses posted online is precisely the sort of personal data sharing that compromises individual’s safety and security and increases the risk of being exposed to identity fraud.
“In this case, Cabinet Office employees were reportedly under pressure and attempted a “quick fix” for an IT issue instead of testing thoroughly and ensuring the system was fit for purpose.
“There were reportedly no specific or written processes in place at the time to ensure the proper sign- off or authorisation prior to the publication of content containing personal data.
“The Cabinet Office did apparently act swiftly once the breach became apparent and undertook a full incident review which included looking at system security, implementing information management training and improving internal processes for data handling.
“However, this is a little like closing the stable door after the horse has bolted. The incident raises legitimate questions about the privacy practices of other government departments and agencies.
“When data breaches occur, it’s rare to find that human error isn’t the main factor, and that simple checks and balances could have resulted in a far better outcome.
“Focussed and incremental operational and technical improvements are often required in order to achieve compliance with data protection laws.
“It’s why we offer a detailed UK GDPR GAP analysis (otherwise known as a data protection audit) for numerous organisations every year.
“The resulting recommendations can usually be implemented quickly and easily.
“We determine the breadth and strength of your policies and procedures relating to the processing of personal data, and crucially, whether they have been implemented effectively and are being followed.
“The adequacy of controls in place are stress tested and the GAP analysis informs what changes or improvements might be necessary to ensure your data privacy framework is robust but agile enough to adapt to changing operational and legislative factors.
“When things do go wrong, we also have significant experience in handling data breaches and engaging with the ICO, including representing central government departments and agencies.”
If you have any queries relating to your GDPR policies and procedures, then contact Tim Heywood or Brian Miller.
You can also view our full Data Protection and GDPR GAP analysis proposition here.
