Senior Managing Associate

Denise Kara

Privacy and Cybersecurity
Banking and Financial Services

dkara@sidley.com

London +44 20 7360 2099

- Letter
- A4

DENISE KARA provides practical and strategic advice on a wide range of data protection, privacy, and cybersecurity matters, including in relation to the General Data Protection Regulation (GDPR), e-Privacy laws, the NIS Directive, and international data transfers (including compliance with Schrems II). Denise has in depth knowledge across various industries including private equity, financial services, healthcare, telecommunications, technology, and e-commerce.

Denise’s recent experience in assisting clients in matters involving privacy, cybersecurity, regulatory and enforcement issues include:

Advising a multinational sustainable food organisation in its cross-border data breach and cyber incident notification obligations.
Advising a multinational organisation in its global response and investigation following a cybersecurity incident.
Advising e-commerce, financial services, healthcare, insurance, life sciences, telecommunications, and technology companies on complex regulatory and enforcement matters.
Developing external and internal-facing policies, procedures and notices to facilitate compliant data collection and handling, including privacy notices, data privacy policies and privacy risk assessments.
Advising on privacy and data protection compliance and risk mitigation in Big Data analytics and emerging technologies.
Developing GDPR preparedness programs and counselling companies on GDPR compliance matters.
Assisting clients with data breach readiness planning and the prevention of cyber intrusions, to incident response and the handling of disputes arising from such events.

Prior to Sidley, Denise spent several months on secondment to a leading retail financial services group as corporate counsel to a start-up team in Australia involved in establishing an online credit-score website for consumers. Whilst there she regularly gave advice on compliance and strategies in relation to data protection and privacy related issues as well as direct marketing campaigns.

*Only admitted to practice in Australia. Not admitted to practice in England and Wales.

Experience

Denise’s recent experience also involves advising clients in transactional matters regarding privacy, cybersecurity and data protection compliance, as well as risk mitigation and integration planning strategies. Some examples include advising:

Recharge Industries, a portfolio company of Scale Facilitation, on its acquisition of Britishvolt Limited.
Achieve Partners on its acquisition of a majority stake in Boclips.
EQT Private Equity and PRO Unlimited in PRO Unlimited’s acquisition of outsourced workforce management provider Geometric Results, Inc.
Clearlake Capital Group and Motive Partners in their acquisition of BETA+ assets from LSEG (London Stock Exchange Group).
Newfold Digital in the acquisition of YITH, one of the largest independent sellers and developers of WooCommerce plugins and themes for WordPress, a free and open-source content management system.
KKR on its participation in a US$530 million funding round in Wolt, a leading European food delivery business based in Finland.
Fortress Investment Group on the acquisition of Punch Pubs & Co.
Goldman Sachs on its investment in tech and software platform LumApps.
Clearlake’s acquisition of Confluence Technologies, a global software and data solutions provider.
EQT Private Equity and PRO Unlimited in connection with PRO Unlimited’s acquisition of Workforce Logiq.
KKR on its investment in Leapwork, a Danish incorporated no-code automation platform.
Precisely Software Incorporated on its acquisition of Winshuttle LLC, a global software company.

Denise is a member of the UK Pro Bono Committee and has acted for a number of pro bono clients, principally advising on the application of the GDPR to their processing activities.

Women in Privacy, an international networking group for women data protection and privacy professionals
IAPP (International Association of Privacy Professionals)

Credentials

Admissions & Certifications

High Court of Australia
New South Wales, Australia

*Only admitted to practice in Australia. Not admitted to practice in England and Wales.

Education

Flinders University of South Australia, LL.B., 2011
Flinders University, Bachelor of Behavioural Science, 2010