Partner

Francesca Blythe

- GoodLifeSci

Healthcare
Privacy and Cybersecurity

fblythe@sidley.com

London +44 20 7360 2058

- GoodLifeSci
- Letter
- A4

FRANCESCA BLYTHE advises international clients on a wide range of data protection, privacy, and cybersecurity issues. She has in-depth experience with a number of industries, including asset management and private equity, payments, technology, e-commerce, and manufacturing. Francesca has a particular focus on life sciences, where she advises on a broad range of issues in relation to, for example, real world evidence and secondary research, clinical studies / investigations, digital health, and use of novel technologies (including artificial intelligence).

Francesca was previously in-house counsel at the largest international health and beauty retailer in Asia and Europe. While there, she regularly gave advice on compliance and strategies relating to data protection laws, including subject access requests, Privacy Impact Assessments, direct marketing campaigns, biometrics, and employee monitoring. Francesca also assisted in the planning and delivery of a UK-wide privacy audit and managed a global privacy compliance project.

Francesca has received acknowledgement from numerous industry ranking guides:

Chambers UK 2024 – Named as “Up and Coming” for Data Protection and Information Law, where sources noted that "When it comes to privacy advice, Francesca stands out to me as a knowledgeable and practical counsel.”
The Legal 500 UK 2024 – Recognized for Data Protection, Privacy and Cybersecurity, where clients commented that “Francesca Blythe is extremely commercially minded and pragmatic. Her advice is already ‘ready to use’ and I don’t need to spend more time digesting what she says.”
Chambers UK 2023 – Named as “Up and Coming” for Data Protection and Information Law, where clients commented: “Francesca is amazing. She is incredibly efficient, knowledgeable and a true pleasure to work with.”
The Legal 500 UK 2023 – Recognized for Data Protection, Privacy and Cybersecurity, where clients describe her as “very responsive, pragmatic and clear in her advice.”
Who’s Who Legal 2023 – Ranked as a Thought Leader for Data Privacy and Protection and Data Security and as Global Leader for Data Privacy and Protection, Data Security, and Information Technology.
Women in Business Law EMEA Awards 2022 – Won the “Rising Star – Corporate” award.
Law.com International’s 2022 – Included on the “Rising Stars: The UK’s Best Up and Coming Female Lawyers” list. The annual feature highlights the “25 women aged under 40 paving ways in the UK legal industry as the next generation of female legal powerhouses.”

Experience

Recent examples of Francesca’s work include advising:

Northwood Investors on the Sale of 20 Gracechurch Street in London.
Kiniciti on its investment in Ncardia, a leader in developing stem cell-based solutions for drug discovery and cell therapy.
KKR on its majority acquisition of Biosynth Carbosynth, a Swiss life sciences reagents and custom synthesis and manufacturing services company.
Arthur J. Gallagher & Co., a global insurance brokerage, risk management, and consulting services firm, in its acquisition of the treaty reinsurance brokerage operations of Willis Towers Watson for US$3.25 billion.
A global pharmaceutical company on EU data protection issues related to clinical trials including, the use of artificial intelligence.
A global (re)insurance company on a group-wide data protection project to deal with EU data protection requirements, including the GDPR and a subsequent refresh of the program.

Life Sciences:

A healthcare technology company on the collection and re-use of data related to clinical trials and the formation of a data lake for scientific research purposes.
A leading medical device manufacturer on cybersecurity breach response, including breach remediation and notices to individuals and regulators and advising on GDPR project implementation.
A biotechnology company on the international transfer of personal data including a response to Schrems II.
A leading medical device manufacturer on cybersecurity breach response affecting large numbers of individuals in Europe, the U.S., and the Middle East, including breach remediation and notices to individuals and regulators and advising on GDPR project implementation.
Dplegal (“data privacy” legal), a networking group of in-house lawyers in life sciences companies examining international data protection issues.

Financial Services and Payments:

One of the world’s leading investment banks regarding the impact of Brexit on its current EU data privacy and future GDPR compliance and the associated development of policies and procedures.
A global (re)insurer on EU data protection issues including specific requirements under the GDPR, the implications of Brexit, responding to data subject and regulator requests, potential fines under the GDPR and international transfers.
A global real estate investment advisor on compliance with the GDPR, including the review, development, and implementation of numerous policies and procedures on a multi-jurisdictional level.
A U.S. payments company on the application of the GDPR to its processing activities.

Technology, Manufacturing, and Retail:

A multinational technology company on the ability to disclose consumer data to competition authorities in the context of a European investigation.
A global manufacturing company on issues arising following a business-wide cybersecurity incident, including requirements around responding to regulators and subsequent remediation activities.
A large public manufacturing company on global privacy and data protection compliance, cybersecurity readiness, and response, and novel questions of data analytics and de-identification.
A global online direct sales company on data protection issues in the EU, including GDPR project implementation and advising on global data transfer solutions including a response to Schrems II.
A multinational ad-tech company on its GDPR compliance activities, including as it relates to the cross-border sharing of data.

Transactions:

Fortress Investment Group on the acquisition of Punch Pubs & Co.
KKR on its investment in Ornikar, a European provider of road safety education.
Great Hill Partners in connection with its acquisition of Notonthehighstreet, a UK curated online marketplace.
Arthur J. Gallagher & Co. on its US$3.57 billion acquisition of Willis Towers Watson Assets.
KKR on its investment in Feedzai, a leading cloud-based financial risk management platform.
Great Hill Partners in connection with its investment in BigChange, the leading mobile workforce management technology company for the service and transport sectors.
Cubic Corporation in its acquisition by Veritas Capital and Evergreen Coast Capital for an enterprise value of US$2.8 billion.
Regal Beloit Corporation in its US$9.1 billion combination with the Process & Motion Control (PMC) Business of Rexnord Corporation.
KKR on its participation in a US$530 million funding round in Wolt, a leading European food delivery business based in Finland.
Arvelle Therapeutics, a Swiss-based biopharmaceutical company, on its sale to Angelini Pharma for a total cash consideration of up to US$960 million.
Quest Software, a global systems management, data protection, and security software provider, in the acquisition of Erwin, Inc.
Summit Partners on its €50 million investment in Solactive AG, a technology-enabled provider of indices and index solutions to the global financial services industry.
GIC in connection with a US$1 billion investment in Convex Group, led by GIC and Onex Partners.
KKR on its acquisition of Argenta, a leading animal pharmaceutical research and manufacturing company.
Massachusetts Mutual Life Insurance Company on its acquisition of a shareholding in Rothesay Life.
KKR on its investment in Zwift.
H.I.G. Capital and Vernacare on the acquisition of Infection Prevention.
KKR on its investment and follow-on investment in music platform Artlist.
Goldman Sachs on its investment in tech platform LumApps.
GHO Capital Partners LLP on its acquisition of Ardena.
One of the world's leading investment banks regarding the impact of Brexit on its current EU data privacy and GDPR compliance and the associated development of policies and procedures.
Goldman Sachs Private Capital on its investment in DocPlanner Group, a healthcare booking platform provider with operations in 15 countries.
eBay Inc. on its acquisition of Motors.co.uk from Cox Automotive Relation Solutions.
A global e-commerce company on dealing with an international data security breach.
A global manufacturing company with a global data protection project, including implementation of Binding Corporate Rules.
A global mobile marketing platform on governance protocols and privacy issues relating to Big Data, including in the context of the GDPR.

Francesca is a member of the UK Pro Bono Committee and has acted for a number of pro bono charity clients, principally advising on the application of the GDPR to their processing activities.

Women in Privacy, an international networking group for women data protection and privacy professionals
IAPP (International Association of Privacy Professionals)

Francesca Blythe

Credentials

Admissions & Certifications

Education

Contact