James is a partner in Orrick's Cyber & Data Privacy Enforcement & Litigation Practice in London. He assists clients to achieve better regulatory and judicial outcomes in all aspects of international data privacy enforcement and litigation.

James helps clients respond to cyberattacks, data breaches, and action by data protection regulators.

James has led the response to significant enforcement investigations by international and domestic regulators, including the UK’s Information Commissioner’s Office, law enforcement agencies and Parliamentary Select Committees. He also has experience in conducting internal investigations on behalf of international corporations.

With extensive litigation experience, James also defends his clients when data privacy issues lead to civil litigation.

    • Acting for a client specialising in data insights and identity verification services in connection with a compulsory data protection audit by the Information Commissioner’s Office.
    • Acting for a client that collects and aggregates financial and credit information in connection with a data protection audit and preliminary enforcement action by the Information Commissioner’s Office.
    • Acting for clients in connection with a ransomware attack impacting on service availability.
    • Acting for a FTSE 100 company in connection with regulatory and governmental interference in individual privacy rights.
    • Acting for numerous clients in respect of small, medium and large personal data breaches and advising on notification and counselling on risk management and reputation risk.
    • Acting for before the House of Commons Privileges Committee arising from a 2012 Committee’s report alleging a contempt of Parliament.
    • Conducting numerous internal investigations for global corporates into anti-corruption and compliance matters.
    Please note: James' experience includes that prior to joining Orrick.