Data Protection | Global

Baker McKenzie has impressive regional coverage across Asia, including Australia, Singapore, the Philippines, Thailand, Japan and mainland China. The firm boasts of a prominent regulatory practice, advising multinational companies on compliance with various governments' data protection and cyber security legislation. The team are also adept at risk management, internal privacy policies, including managing employee personal data, and cyber security. It has an impressive clientele, advising companies in the technology, life sciences, hotels and financial services space.

DLA Piper provides a noteworthy pan-Asia offering, which is well integrated into its global practice. It demonstrates particularly strong capability in Hong Kong, Japan, Thailand, Australia and New Zealand. The firm regularly advises clients on their data compliance and audit programmes, data breach responses, including notifications and investigations, as well as data transfer. Its key clients include Standard Chartered Bank, Levi Strauss and Stripe Payments.

Hogan Lovells fields an outstanding global data protection practice, which includes a highly respected Asia-wide outfit and is especially well regarded in China. The firm has expertise across data sharing and transfers, commercialisation and the data protection aspects of technology projects, including digitisation and the introduction of AI. In addition, its extensive international team are able to handle multi-jurisdictional compliance audits and is also active in thought leadership.

Morrison Foerster is well regarded for handling client's privacy obligations in highly regulated sectors such as telecommunications, technology and financial services. It regularly advises on compliance with China's cyber security law, including data export security assessment issues and data localisation, as well as notable coverage of Japan and Singapore. Additionally, the firm is recognised for its track record advising on data breaches and subsequent investigations by the regulator.

Norton Rose Fulbright advises on compliance with data protection laws concerning data transfer, data storage and new technology and data-intensive products such as AI. The team handle APAC-wide audits and reviews of clients' data policies, as well as their liaisons with regulators and responses to data access requests. The firm also assists clients with responding to cyber security and data breaches, including reporting obligations and investigations.

The Mayer Brown team is well versed in data protection matters, with a strong track record advising clients on compliance with existing and new legislation across the region. The firm advises on personal data requirements, data management systems and cross-border transfers. Furthermore, the firm also assists in responding to cybersecurity breaches, including litigation. It advises clients from a broad range of sectors, including media, technology, manufacturing and insurance. Its key clients include Zoom, Airport Authority Hong Kong and Warner Media.

Reed Smith has a strong regional and cross-disciplinary offering, operating primarily out of its China and Singapore offices. Its team consults on compliance with data and privacy regulations across Asia. The firm handles cross-border data transfers, processing and disclosures, as well as advice on third-party data. Its clientele includes fintech, media, technology and retail companies.

Nagashima Ohno & Tsunematsu is recognised for its market-leading full-service practice in Japan, in addition to its notable coverage of the region through its offices in Singapore, Indonesia, Thailand, Vietnam and China. The team consults on internal policy reviews and updates, data governance and cross-border transfers, as well as data-related litigation. The firm also offers counsel on the data aspects of M&A transactions and the launching of data-intensive products in the life sciences, technology and automotive industries.

Nishimura & Asahi is a leading Japanese firm with notable practices in China, Taiwan, Singapore, Thailand, Vietnam and Myanmar. The firm has a growing data protection practice, which already fields a number of specialists in the area who have experience with regulatory investigations and disputes, compliance across multiple jurisdictions and data localisation. Its teams also handle privacy impact assessment, data processing and internal policy reviews. The firm counts Toyota Motor, the Personal Information Protection Commission and INPEX among its key clients.