Home / People / Emma Burnett
Portrait of Emma Burnett

Emma Burnett

Partner
Head of Data Protection

CMS Cameron McKenna Nabarro Olswang LLP
Cannon Place
78 Cannon Street
London
EC4N 6AF
United Kingdom
Languages English

Emma Burnett is a partner in the Commercial Team and her practice focuses on data protection, technology and outsourcing. She regularly advises high profile international clients on her core specialism of data protection and has significant experience in information technology and intellectual property law, having previously undertaken a secondment to Royal Mail Group Limited as acting Head of the IT/IP legal team.

Emma has extensive experience in drafting and negotiating commercial agreements, including licences and terms and conditions for the supply of goods and services. Emma is known for her proactive, solutions orientated approach and acts for clients across a wide range of industry sectors, including the technology, media and telecommunications, life sciences and financial services sector. Emma sits on the editorial board of Lexis PSL where she advises on data protection, IT and telecoms. She is also a member of the Financial Markets Law Committee, as part of which she has participated in a European Data Protection Reforms Working Group on the EU’s General Data Protection Regulation. 

more less

We think Emma Burnett is great, really proactive and helpful. She comes up with solutions and does what she says she will do.

Client Feedback

Relevant experience

  • A retail company in relation to a comprehensive IT transformation project with a value of between £1-2bn.  The new IT operating model involves the appointment of a ‘service integrator’ supplier who will manage and integrate all IT services. 
  • An international telecoms company drafting binding corporate rules and interfacing with the Information Commissioners Office  including assisting in the analysis of the business’ data flows, current methods of international data transfer and managing the project as a whole, as well as presenting it to internal stakeholders.
  • A retail company on an MVNO creating a major new entrant in the mobile retail sector. As this was a multi supplier solution, Emma advised the business on the overall contracting structure and on each individual agreement with over 11 suppliers to ensure the integration of services, devices and systems to ensure a seamless customer experience. 
  • A major logistics business on the implementation of a group wide governance strategy including advising on the personal data and security issues relating to the development, launch and operation of an HR IT platform; support in lobbying and responding to the Ministry of Justice call for evidence on the proposed draft General Data Protection Regulation and on the strategic approach to a requested ICO audit.
  • A leading international asset manager on a complex multi-jurisdictional project co-ordinating advice from 14 countries across Europe. The project related to the client’s direct marketing and privacy notice requirements in each jurisdiction. Emma also advised in the development of a single comprehensive website privacy notice designed to address the legal requirements across multi-jurisdictions.
  • An international retailer on the unified procurement of its global communication services for all group companies in the UK, Ireland, France, Germany, Spain, Portugal, Poland, Russia, Turkey, Hong Kong and China.
  • A retail bank on the licensing, hosting and support arrangements for a European trading platform.
  • A multinational organisation on a review of its privacy policies across 85 jurisdictions worldwide.
  • Clients in various sectors on installation and monitoring of CCTV and telemetry systems within vehicles, including specific advice on undertaking impact assessments.
  • A retail bank on the outsourcing of its group-wide domestic and global courier services.
more less

Memberships & Roles

  • Member,  the Financial Markets Law Committee
  • Member, the editorial board of Lexis PSL
more less

Education

  • 1996 – LPC (Commendation), College of Law, Guildford
  • 1995 – CPE (Commendation), College of Law, Guildford
  • 1994 – BA (Hons) History (2:1), University of Exeter, Exeter
more less

Feed

01/03/2022
The Mo­bile Cen­tury 2022
CMS is de­lighted to sup­port The Mo­bile Cen­tury, a pub­lic­a­tion writ­ten by wo­men in the di­git­al space, pub­lished by the Glob­al Tele­com Wo­men’s Net­work (GT­WN).The GT­WN 30th An­niversary Pub­lic­a­tion is a spe­cial edi­tion. The theme “Re­flec­tions” brings to­geth­er the per­spect­ives of the older gen­er­a­tion of wo­men who have lived ex­per­i­ence of the evol­u­tion of ICT over the past three dec­ades and bey­ond, with wo­men of the young­er gen­er­a­tion, while look­ing ahead to what work re­mains to be done.This sem­in­al work in­cludes es­says by glob­al ex­perts in: Tech evol­u­tion from the early days of the in­ter­net and the mo­bile phone to today; Tech ESG and how di­git­al tech­no­logy can drive sus­tain­ab­il­ity in­to the fu­ture; Tech safety, pro­tect­ing your­self and oth­ers on­line; Tech equity, bridging the di­git­al di­vide; and Fu­ture tech, with a fo­cus on the im­pact of ar­ti­fi­cial in­tel­li­gence. You can either browse the pub­lic­a­tion on­line or fill in your de­tails be­low to down­load the full pub­lic­a­tion.
30/09/2021
CMS ad­vises Vi­ac­om­CBS and Com­cast on joint ven­ture part­ner­ship to launch...
In­ter­na­tion­al law firm CMS has ad­vised Vi­ac­om­CBS and Com­cast on as­pects of their part­ner­ship to launch a new sub­scrip­tion video on de­mand (SVOD) stream­ing ser­vice, Sky­Show­time.The part­ner­ship will be...
16/08/2021
Data pro­tec­tion and se­cur­ity
Ex­pert leg­al ad­visers
11/08/2021
Leg­al pre­ci­sion in pri­vacy, data se­cur­ity and data pro­tec­tion - Ex­pert...
Ex­pert leg­al ad­visers in Africa
23/07/2021
GDPR 3 years on – The greatest hits (and misses)
More than three years have passed since the GDPR ap­plied and a lot has happened in the world of data pro­tec­tion dur­ing that time – fines, class ac­tions, court chal­lenges and more. We give our “playl­ist”...
16/07/2021
Data pro­tec­tion up­date: latest de­vel­op­ments on EU and UK trans­fers
Back­ground On 28 June 2021, the European Com­mis­sion is­sued two EU ad­equacy de­cisions fi­nally bring­ing to an end the un­cer­tainty over wheth­er trans­fers of per­son­al data from the EU to the UK could con­tin­ue...
22/03/2021
UK reg­u­lat­ors out­line roadmap for co­oper­a­tion in the reg­u­la­tion of di­git­al...
On 10 March 2021, the Di­git­al Reg­u­la­tion Co­oper­a­tion For­um (DRCF) pub­lished its first an­nu­al plan of work for 2021/2022 for co­oper­a­tion, co­ordin­a­tion and a co­her­ent reg­u­lat­ory ap­proach to di­git­al and...
05/03/2021
Data pro­tec­tion and cy­ber­se­cur­ity laws in the United King­dom
Data pro­tec­tion 1. Loc­al data pro­tec­tion laws and scope The Data Pro­tec­tion Act 2018 (“DPA”) cov­ers gen­er­al pro­cessing of per­son­al data in the UK.The DPA sup­ple­men­ted the EU Gen­er­al Data Pro­tec­tion...
Comparable
22/02/2021
Pro­gress to­wards ad­equacy: European Com­mis­sion pub­lishes draft ad­equacy...
Back­ground On Fri­day 19 Feb­ru­ary, the European Com­mis­sion an­nounced that it had form­ally launched the pro­ced­ure to ad­opt two ad­equacy de­cisions for data trans­fers to the UK. While the de­cisions have not...
28/01/2021
Data Pro­tec­tion in a post-Brexit world: what hap­pens to trans­fers to and...
When the Brexit trans­ition peri­od drew to a close at the end of 2020, the UK moved to a new data pro­tec­tion re­gime known as the UK GDPR but that isn’t the end of the story. At the same time, busi­nesses...
18/09/2020
How will in­valid­ity of the Pri­vacy Shield and new rules for Stand­ard Con­trac­tu­al...
In a re­cent rul­ing, the EU Court of Justice struck down the EU-US Pri­vacy Shield and, though it ruled that stand­ard con­trac­tu­al clauses re­main val­id for trans­fers of per­son­al data out­side the EEA, in­ter­preted...
21/08/2020
Na­tion­al Cy­ber Se­cur­ity Centre (“NC­SC”) re­port high­lights cy­ber risk to...
A re­cent NC­SC re­port has high­lighted a num­ber of cy­ber-at­tacks by hack­ers against the sports in­dustry, lead­ing its Dir­ect­or of Op­er­a­tions, Paul Chichester, to urge sports or­gan­isa­tions to re­view their...