Lorna Louise Cropper#1076

Lorna Louise Cropper

Solicitor, Fieldfisher
Lorna advises on data protection compliance and strategy across a range of sectors including technology, gaming, social media, cloud computing, retail and healthcare. She has in depth experience of working on extensive GDPR compliance projects including accountability, an area of particular expertise. As the topic of regulating children's data and children's activity online grows exponentially and with the ICO's Age Appropriate Design Code now in force, Lorna has become a go to expert in children's data.

She has an in depth knowledge of working on complicated, large scale data subject access requests (DSAR) including contentious employee DSAR as well as dealing with complaints made by data subjects to the regulator and managing subsequent regulatory investigations.

During 2019 – 2020 Lorna undertook a secondment to the Information Commissioner's Office. A keen supporter of Fieldfisher's pro bono work, Lorna is also a regular contributor to Fieldfisher's Privacy Blog. She has written the UK and EU chapter for the IAPP's book on Children's Data and holds a LLM in data protection and technology.
Contributed to

2

Age assurance methods—data protection and online safety applications
Age assurance methods—data protection and online safety applications
Practice Notes

This Practice Note explores age assurance in online environments, emphasising its importance for compliance with a number of legal frameworks. It provides a practical introduction to age verification and age estimation methods and associated technologies. It highlights their role in compliance with legal frameworks like the United Kingdom General Data Protection Regulation, Assimilated Regulation 2016/679 (UK GDPR) and the Online Safety Act 2023, among others. It also provides an overview of the global context, and discusses key enforcement actions and the role of stakeholders in implementing age-appropriate measures, including those aimed at the protection of children.

EU GDPR—2021 standard contractual clauses for transfers of personal data internationally
EU GDPR—2021 standard contractual clauses for transfers of personal data internationally
Practice Notes

This Practice Note provides guidance on the set of standard contractual clauses (SCCs) for international transfers of personal data published by the European Commission in June 2021 (the 2021 EU SCCs).

Practice Area

Panel

  • Contributing Author

If you expected to see yourself on this page, click here.