Harriet is an experienced Associate in the Data Protection team who has experience advising clients across the full spectrum of data protection, e-privacy, and cybersecurity issues, including regulatory audit and compliance, B2C direct marketing and CRM management, use and implementation of AI/GenAI s, security incident reporting, data subject rights, and international data transfers.

She also has experience supporting on the data-related aspects of large-scale corporate transactions for clients across all sectors, combining a keen regulatory focus with technical and commercial expertise.


Harriet's recent experience includes:

  • Advising a medical technology manufacturer on the pilot implementation of its generative AI diagnostic tool in the NHS.
  • Advising a non-departmental public body on the transfer of medical samples and sensitive health records to a third-party and drafting the asset transfer agreement.
  • Advising an international, state-owned railway provider on the development of a new platform designed to hold amalgamated data of all public transport providers in the state.
  • Advising the world's largest vendor of computer software in respect of its cyber incident reporting obligations in multiple jurisdictions across Europe, APAC and the US.
  • Supporting with a highly sensitive DSAR response for a world-renowned private hospital, including the review of documents and provision of strategic advice on approach.