Cyber, Privacy & Data
Technology is core to LK’s practice. We embrace the possibilities presented by new and emerging technologies to create efficiencies in the delivery of legal services and advise clients on the use of cutting-edge technology in their business. LK works with clients to build, test and reinforce their cyber security, privacy, data protection and governance frameworks. In the event of a cyber or data incident, we assist clients to manage their response, comply with legal obligations and pursue remedies.
We advise businesses and individuals across the full lifecycle of digital risk — from building robust data and cybersecurity frameworks to pursuing urgent legal action when assets or information are compromised.
Protecting What You Build
Technology sits at the heart of modern commerce, and so do its risks. We help clients design, test, and strengthen cybersecurity, privacy, and data governance frameworks that stand up to regulatory scrutiny and real-world threats. When incidents occur, we guide organisations through containment, notification, and recovery, ensuring obligations are met and value is protected.
Recovering What’s Taken
We are equally recognised for acting for victims of digital asset fraud and misappropriation. Our lawyers specialise in tracing and recovering stolen or lost crypto-assets and other digital property arising from sophisticated scams, exchange hacks, and complex cross-border frauds.
Drawing on deep expertise in civil fraud and asset recovery litigation, we pursue urgent proceedings in the English courts, including freezing and proprietary injunctions, disclosure orders against exchanges and third parties, and claims in tracing and restitution. Our approach is forensic, strategic, and relentless — focused on identifying wrongdoers, preserving dissipating assets, and maximising recovery.
Clients instruct us when the stakes are high: significant financial loss, sensitive data exposure, regulatory risk, or reputational threat. We respond with speed, discretion, and technical fluency, coordinating with forensic experts, investigators, and international counsel where needed.
Experience
Australian Utility Company
Led a comprehensive data governance project for a major electricity company, including uplifting and streamlining of their data governance framework and associated policies, procedures and guidelines to ensure compliance with applicable data, privacy and sector-specific laws and regulations.
Bank Fraud
Advised and led the identification, tracing, security and recovery of bank data globally following data breach, including strategic and commercial advice on recovery options and pursuit of third parties.
Manufacturer AI Project
Advised drinks manufacturer on the implementation of an AI tool and accompanying AI governance framework.
Cyber Incident Response
Advised a large Australian property company on its response to, and recovery from, a cross-border cyber incident. Assisted with PII review, notifications, reporting and available legal remedies, including recovery of almost 50% of the stolen funds from international organisations, as well as network and cyber posture uplift.
Recovery of Digital Assets
Representing a high net worth individual in English proceedings to recover misappropriated digital assets.
US Bank Data Spill
Advised a US institutional bank in relation to an inadvertent data spill of information relating to the bank’s top 1% of high net-worth individuals and entities in Australia.
Breach of Confidential Information Dispute
Represented a multinational medical and technology group in litigation arising from unauthorised access to computer servers, email systems and confidential information.
Critical Infrastructure Provider Data Incident
Advised an Australian critical infrastructure owner and operator in relation to an unauthorised data incident and associated mitigating steps and reporting obligations under relevant laws.
