Associate

Subhalakshmi Kumar

Privacy and Cybersecurity

skumar@sidley.com

London +44 20 7360 2516

- Letter
- A4

SUBHALAKSHMI KUMAR advises international clients on a wide range of data protection, privacy, and cybersecurity issues, including advising on compliance with the EU General Data Protection Regulation (GDPR), the UK Data Protection Act 2018, and ePrivacy legislative frameworks such as the EU ePrivacy Directive and the UK Privacy and Electronic Communications Regulations (PECR). Subhalakshmi has been closely tracking and advising on the EU’s package of new digital data legislation, including the EU’s Digital Services Act and the proposed EU Data Act, as well as the EU’s cyber reforms, including the NISD2 and the proposed Cyber Resilience Act. Subhalakshmi has also assisted clients with their response to emerging UK privacy and digital data laws, including the newly proposed Data Protection and Digital Information Bill and UK Online Safety Bill (OSB).

Subhalakshmi has a particular interest in novel technologies, including artificial intelligence (AI). She closely monitors relevant developments in and advises on emerging legal and regulatory frameworks on AI in the EU and UK. Drawing on her experience advising clients on GDPR and other global compliance projects, she assist clients with the development and implementation of AI compliance projects. She also regularly publishes insights on the EU’s proposed AI Act and the UK’s AI Strategy.

Subhalakshmi trained and qualified as a solicitor in Sidley’s office in London, where she also gained experience in the firm’s Restructuring, M&A and Private Equity, and Litigation practices.

Experience

Some of Subhalakshmi’s recent experience includes:

Advising Recharge Industries, a portfolio company of Scale Facilitation, on its acquisition of Britishvolt Limited.
Reviewing and assessing synergies and commonalities between various AI legal frameworks and the creation of a concrete principles-based work plan;
Managing and implementing multi-jurisdictional GDPR and global data privacy compliance projects for clients in various industries, including those in the financial services, tech, life sciences and retail industries.
Advising a global emerging supercomputing company on AI, data sovereignty and digital data laws, across the EU.
Advising a leading surveillance equipment manufacturer on the use of AI, facial recognition technology, automated decision-making and biometrics in compliance with EU/UK data privacy requirements, including monitoring and responding to public consultations.
Advising multi-national companies on launching novel technologies including regarding the impact of ePrivacy requirements.
Managing incident responses and global data breach notifications for multi-national companies across a variety of industries, including the financial services and insurance industry.
Developing global data transfer solutions and advising on the implications of the European Court of Justice’s Schrems II judgment.
Developing external and internal-facing policies and procedures to facilitate lawful data collection and sharing, including privacy notices, data privacy policies and privacy risk assessments.
Assisting with privacy and cybersecurity due diligence in connection with corporate transactions (e.g., M&A transactions).

Subhalakshmi was shortlisted for the 2021 Sidley London Prize for Pro Bono Services and regularly acts for a number of pro bono charity clients, principally advising on the application of the GDPR to their processing activities.

Subhalakshmi Kumar

Credentials

Admissions & Certifications

Education

Languages

Contact