Robert Bateman
Robert is a respected voice on data protection, privacy, and security law. He built his profile creating in-depth reports on legislation, compliance guidance documents for organizations, and news articles about the latest sectoral developments worldwide.
Robert’s passion for privacy and security began while studying for a postgraduate law degree. His dissertation, on the compatibility of the U.K.’s Data Protection Act with the European Convention on Human Rights, won the DMH Stallard Prize for best research project.
Since then, Robert has worked with privacy and security-focused tech firms and startups, creating detailed guidance and policy documents to help organizations comply with their data protection and security compliance obligations.
A passionate advocate for digital rights, Robert has also worked as a journalist reporting on the latest developments in digital privacy, tech policy, and state surveillance.
Throughout his career, Robert has interviewed some of the sector’s most prominent figures such as privacy campaigners Max Schrems and Johnny Ryan, plus representatives from leading NGOs including Privacy International, the Electronic Frontier Foundation (EFF), and European Digital Rights (EDRi).
Contact info
- Feature
GDPR Four Years On: How Has the Law Changed the World, and How Can It Be Improved?
The General Data Protection Regulation (GDPR) is perhaps the EU’s best-known and most-misunderstood law.
- Article
The Splintering of Global Data Flows: Is the ‘Risk-Based Approach’ Dead?
To combat foreign government surveillance, European data protection regulators are taking an increasingly hardline stance on GDPR enforcement that could drastically change the internet. Some argue that a more pragmatic, “risk-based approach” could help avoid severe disruption. But a recent decision against Google suggests those people are losing the debate.
- Feature
Is the UK Data Protection Regulator’s Independence Under Threat?
In an interview with POLITICO on 23 March, UK Information Commissioner John Edwards said he had “made it very clear” that the government’s proposed data protection reforms must not “undermine the independence” of the country’s data regulator, the ICO.
- Opinion
PrivSec China: Navigating China’s Privacy and Security Framework
On 15 March 2022 GRC World Forums launched PrivSec China, a one-day livestream experience exploring China’s privacy and security regime.
- Feature
International Women’s Day: Four Leading Women in Privacy Share Their Experiences
According to the UN, women make around 77 cents for every dollar earned by men. The disparity is generally wider in developing countries and narrower in Europe and the US.
- Feature
Can Florida’s Draft Privacy Law Overcome the ‘Private Right of Action’ Problem?
Florida lawmakers are considering two comprehensive state privacy laws this session, one of which includes a “private right of action”. But the state’s House of Representatives rejected similar legislation last year—precisely because it included such a provision.
- News
Ukraine Crisis: NCSC Urges UK Organisations to Improve Cyber Resilience
The UK’s National Cyber Security Centre (NCSC) has issued a warning to all UK organisations, urging them to “bolster their cyber security resilience” in response to the cyberattacks currently targeting Ukraine.
- Feature
‘Data Privacy Day’ vs ‘Data Protection Day’
Happy Data Protection Day. Or is it Data Privacy Day?
- Feature
Data Protection Day 2022: Top PrivSec Global Sessions of the Past 12 Months
Data Protection Day comes but once a year, but privacy and security professionals work all year round to keep personal data safe and ensure people’s data protection rights are respected.
- News
RegTech Investment Up 244% in 2021 As Vendors Raise Nearly $19 Billion
Around $18.9 billion was raised in funding deals by RegTech companies throughout 2021—more than double the $7.8 billion total raised in 2020—as businesses seek technical solutions to increasingly complex compliance and security demands.
- Feature
Cloud Modernisation and Data Protection 101
Cloud modernisation has accelerated rapidly since the start of the pandemic. But just because a third party is looking after your data, this doesn’t mean you’re no longer responsible for protecting it.
- Feature
Data Democratisation: Three Foundation Stones
Data democratisation extends data access to everybody (or nearly everybody) within an organisation. The process of data democratisation also involves ensuring that non-technical employees feel comfortable working with and interpreting your company’s data.
- News
Law Firm Fined £232,500 Over Money Laundering Concerns
Law firm Mischon de Reya has received a record fine after failing to conduct appropriate customer due diligence and breaching money-laundering regulations.
- News
China’s PIPL Increases Demand, and Legal Liability, for DPOs
The Personal Information Protection Law (PIPL), China’s comprehensive data protection legislation that took effect last November, provides unprecedented opportunities for privacy professionals in China—but also puts them at direct risk of potential legal action.
- News
US and UK Governments Announce Privacy-Enhancing Tech Prize
The US and the UK are partnering on “bilateral prize challenges” to encourage the development of privacy-enhancing technologies (PETs).
- News
Director at Belgian Data Regulator Quits, Alleging Conflicts of Interest
A director of the Belgian data protection authority (DPA) has resigned over concerns that some members of the regulator lack independence.
- Feature
ESG World Forum Day 2: The ‘Real Work’ of Reducing Carbon Emissions and Driving Social Change
ESG is sometimes criticised as “box-ticking,” by those who see reporting on environmental and social issues as a distraction from actually fighting climate change and closing social divides.
- News
Irish Regulator Submits Draft Decision on Instagram’s Use of Children’s Data
The Irish data regulator has submitted a draft decision about Instagram’s user registration process to other EU data protection authorities, bringing the total number of Irish decisions regarding Meta (formerly Facebook) companies to three.
- Feature
ESG World Forum Day 1: Exploring the “How” and the “Why” of ESG
Day 1 of the inaugural ESG World Forum took place on 7 Dec, bringing ESG and compliance professionals to discuss their vision of bringing about a cleaner, more ethical, and more sustainable world.
- News
Microsoft Takes Control of Cybercrime Sites Following Court Order
A Virginia court has allowed Microsoft to seize websites operated by Nickel, a Chinese cybercrime group that has been conducting cyberattacks in 29 countries.