Claudia Dennison

Full Profile

Claudia is a Special Counsel specialising in cyber incident response, privacy, data breach regulatory investigations, IT liability and cyber funds recovery.

Claudia brings many years of advisory and civil and criminal litigation experience gained locally and also globally in her former role as a specialist asset recovery and proceeds of crime prosecutor and is a go to for managing high profile complex incident and advisory work across all industry sectors from SME to ASX-listed, government and not for profits.

Claudia is admitted to practise in Australia and England & Wales and is experienced in guiding the C-suite and their boards in crisis response on multijurisdictional matters.  

Claudia’s practice extends across the full cyber incident life cycle from initial crisis-mode project management, legal and regulatory notification obligations, liaison with government agencies, law enforcement and key stakeholders, funds recovery assistance and strategic advisory on recovery actions against or brought by third parties, privacy complaints and regulatory investigations.

Experience

• Incident response – acting as breach coach managing the response for all industry sectors and organisation sizes across the life cycle of a cyber incident from discovery to closure/settlement of regulatory investigation or claims dispute settlement.
• Legal & Regulatory – advising organisations in respect of their legal and regulatory obligations under the Privacy Act 1988 (Cth) and equivalent state-based legislation following suspected or actual data breaches and response to regulatory inquiries/investigations.
• Privacy complaints – advising organisations in responding to formal complaints made to the Office of the Australian Information Commissioner (OAIC).
• Funds recovery – assisting organisations in pursuing recovery of misdirected funds via law enforcement and financial institutions following business email compromise incidents. 
• Recovery claims & dispute settlement – advising organisations in relation to pursuing claims against third parties or defending claims received from stakeholders following cyber incidents.