George Wheeler-Carmichael specialises in technology-related commercial matters and data protection, and is a consultant working with the firm’s Data Privacy, Cybersecurity & Digital Assets team in London. He has spent the 2010-2020 period working as in-house general counsel at an IT services, cloud and digital solutions provider. Before that, he spent several years as a partner in London law firms.
George has been involved in helping senior leadership teams and business owners with the challenges of information governance and compliance with data protection law, especially since the arrival of the GDPR in 2018. He frequently works with information security specialists and has played a role in a number of GDPR and UK GDPR compliance exercises and ISO27001 implementations, seeking to make optimal use of tools available in systems to help the governance, risk and compliance functions of the business.
George has more recently been working part-time at a large multinational market research, insights and brand growth group of companies. He is a member of their privacy legal team, reporting directly to the DPO, working on projects such as improving records of processing activities, implementing OneTrust, updating business processes and agreements to reflect new data protection laws in various parts of the world (such as laws relating to international data transfers), developing template documents for data processing and carrying out numerous risk assessments (DPIAs) as a result of new technology procurement and changing ways of working. He has also assisted in developing know-how and presenting updates at training sessions for data protection “champions” in the business units.
Much of George’s work also consists of drafting and negotiating a wide range of technology contracts, from outsourcings and agreements for cloud services, to smaller software agreements.