All modern organisations, irrespective of sector, store “personal data” (eg employee records) and are therefore required to comply with data protection legislation. This is no longer a new area of law but the digitisation of personal data and the proliferation of mobile data devices mean that organisations need to think even harder about achieving compliance with this legislation and securing both personal and other forms of valuable information. Modern commercial models such as outsourcing, strategic alliances and joint ventures increase the likelihood that data may be transferred to and processed by a party other than the original supplier. Bevan Brittan regularly provides expert advice on compliance issues and provides pragmatic guidance on the risks associated with regulatory breaches.