Associate (Data Protection)
Iris Rad is an Australian-qualified Associate with over six years’ post-qualification experience, specialising in global privacy and data protection and advising on complex commercial contracts. Iris regularly supports on cross-border matters across the UK and EU and has authored articles for the Australian Privacy Law Bulletin, DataGuidance and Lexology.
Iris has spoken on privacy, digital regulation, and technology topics at industry events and webinars, including as a panellist for the Law Council of Australia’s Digital Commerce Committee alongside the former Australian Privacy Commissioner and has contributed to consultation responses for the UK's Information Commissioner's Office and the Law Commission (England and Wales).
Representative engagements include:
- Providing strategic guidance on the applicability and compliance requirements of NIS2 and the Digital Operational Resilience Act (DORA), including conducting red flag reviews for organisations subject to European cybersecurity regulations.
- Delivering privacy advice on workforce monitoring technologies, such as attendance tracking systems and CCTV implementation, ensuring compliance with local and international privacy laws.
- Drafting and advising on data sharing agreements, privacy compliance policies, data subject access request procedures, retention policies, and data charters for a range of organisations.
- Supporting regulatory investigations and notification obligations, including incident response and communications with regulators and affected individuals.
- Negotiating complex commercial contracts, including multi-million value agreements and panel head arrangements for government agencies.
- Conducting privacy impact assessments for government projects, identifying compliance gaps and recommending remediation strategies.