No image available

Benjamin Scrace


Benjamin advises on strategic commercial transactions, and data protection, e-privacy, and cybersecurity matters.

In particular, he has experience of large compliance projects and complex regulatory matters in relation to UK GDPR, PECR, and the NIS Regulations. He regularly advises on cross-border M&A transactions and multi-jurisdictional transactional and advisory privacy matters.

Benjamin recently returned from a seven month secondment to the Information Commissioner’s Office, where he supported the Information Commissioner’s policy and enforcement legal functions, and in 2020 was seconded to a multinational technology and electronics company supporting the European and global data protection offices, where he advised on the launch of new products and services.

He is a regular commentator on legal and regulatory developments in data protection and cybersecurity, including publishing articles on Practical Law, and has recently co-edited a comparative guide to data protection and data transfers in cross-border investigations, and an overview of cybersecurity legislation in England & Wales.


Representative matters

A multinational telecommunications company on transactional data protection aspects of its GBP31.4bn joint venture with Telefónica to merge Virgin Media and O2’s fixed, broadband and mobile businesses in the UK.

A multinational technology company in relation to innovative and novel processing activities subject to regulatory review, including drafting the data protection impact assessment and applicable privacy notices.

A multinational consumer healthcare and goods company in relation to marketing activities and data protection compliance matters.

A multinational hotel and leisure company on various data protection and e-privacy matters, including in relation to cookies, marketing, and regulatory liaison.

A multinational technology and electronics company on data transfer impact assessments and intra-group data transfer arrangements.

A multinational building automation and aerospace company in relation to various data protection matters, including the application of innovative technologies.

A multinational pharmaceutical and biotechnology company in relation to the submission and maintenance of binding corporate rules.

Several utilities companies in relation to the application of the NIS Regulations.

Pro bono

Supporting the Stonewall 2017 campaign on gross indecency (the “Turing law” pardons).

Supporting a human rights charity in responding to queries from members of the public on data protection and privacy rights.

Supporting a London legal charity in relation to direct marketing and e-privacy requirements.

Published Work

  • Author, 2021, “The ICO’s consultation on international transfers”, Thompson Reuters (Practical Law)
  • Co-Author, 2021, “Cybersecurity Guide 2021 (England and Wales)”, International Comparative Legal Guide
  • Co-Author, 2020 and 2021, “Data Privacy & Transfers in Investigations”, Global Investigations Review



Solicitor, England and Wales, 2019


BA, History, Oxford University (St John’s), 2015

GDL, BPP University, 2016

MA LPCB (Masters LPC with Business), BPP University, 2017

A&O Shearman was formed on May 1, 2024 by the combination of Shearman & Sterling LLP and Allen & Overy LLP and their respective affiliates (the legacy firms). Any matters referred to above may include matters undertaken by one or more of the legacy firms rather than A&O Shearman.