LEXISNEXIS_ICON4_SIGNIN Contact us
Contact us
William Long#2738

William Long

Partner, Sidley Austin
WILLIAM LONG is global co-chair of Sidley’s highly ranked Privacy and Cybersecurity practice and heads the EU Data Protection group. He is also a member of the firm’s top-ranked Crisis Management and Strategic Response team, and he serves on the Steering Committee of the firm’s AI Working Group. William advises international clients on a wide variety of AI, GDPR, cyber incident, data protection, privacy, information security, social media, e-commerce, and other regulatory matters.

William has been a member of the European Advisory Board of the International Association of Privacy Professionals (IAPP) and on the DataGuidance panel of data protection lawyers. He is also on the editorial board of e-Health Law & Policy and also assists with dplegal (“data privacy” legal), a networking group of in-house lawyers in life sciences companies examining international data protection issues. 

William was previously in-house counsel to one of the world’s largest international financial services groups. He has been a member of a number of working groups in London and Europe looking at the EU regulation of e-commerce and data protection and spent a year at the UK’s Financial Law Panel (established by the Bank of England) as assistant to the chief executive working on regulatory issues with online financial services.

Contributed to

2

Conducting clinical research—data protection implications
Conducting clinical research—data protection implications
Practice Notes

This Practice Note explores the data protection implications of conducting clinical research. In particular, this Practice Note considers the responsibility for data protection compliance in the context of clinical research, the relevant legal grounds for processing personal data for research purposes, transparency requirements, collaborative research and data sharing as well as exceptions to data subject rights when processing personal data in the context of research. Finally, this Practice Note provides a checklist of practical data protection considerations to bear in mind when planning research activities.

mHealth—data protection considerations
mHealth—data protection considerations
Practice Notes

Digital health developers, manufacturers and distributors of mobile health (mHealth) apps, and any connected software as medical devices (SaMD) or artificial intelligence (AI) system, must comply with significant data protection regulations in parallel with regulatory compliance throughout the life cycle of an app’s development and commercialisation to market. This Practice Note focuses on the data protection and privacy considerations for mHealth apps, devices or connected medical software (SaMD) in the UK and EEA. mHealth, like telehealth, is a subset of eHealth under the digital health umbrella and refers to the use of mobile applications to allow users to monitor, evaluate and improve their health using mobile devices. Further discussion addresses the more stringent protections required for health data referred to as ‘special category’ data or ‘sensitive’ personal data.

Practice Areas

Panels

  • Contributing Author
  • Other Publications

Qualified Year

  • 2008

Membership

  • Association of Privacy Professionals European Board
  • International Association of Privacy Professionals (IAPP) European Advisory Board
  • American Chamber of Commerce
  • Social Media Governance Forum
  • Centre for European Policy Studies Working Group on eCommerce Regulation

Qualification

  • LLB (1989)

Education

  • Queen Mary College, London (1989)
Lexis+
Clear, practical guidance for all legal professionals

If you expected to see yourself on this page, click here.