Louise Weatherhead

Louise is an Associate in the Healthcare department. She has experience advising both private and public sector healthcare clients on a range of Data Protection and commercial matters. She advises on GDPR/Data Protection Act 2018 compliance and on data breach protocol with what is often highly sensitive and confidential information.

Louise’s background is in acting for pharmaceutical clients in product liability class actions against allegations of defective medical devices. Louise has been involved in settling complex ADR’s with multi-jurisdictional scope for clients in the healthcare sector.


  • Advising healthcare clients across public, private and the third sector on data protection compliance;
  • Guiding clients through breach notification protocols and advising on whether ICO reporting threshold has been met;
  • Acting in relation to data controller/data processor relationships and drafting/negotiating data processing and data sharing agreements;
  • Directing clients in relation to data transfers outside the EEA and advising on data transfer mechanisms;
  • Supporting corporate teams in relation to data transfer and risk exposure on sale/purchase transactions in the healthcare sector;
  • Providing training to contract and project managers on data protection legislation and raising data consciousness of staff;
  • Drafting data protection policies and privacy notices or statements and advising in relation to the governance aspects of handling and processing personal data; &
  • Advising clients in relation to privacy, direct marketing and data storage/retention.