Handley Gill
AWARD-WINNING LEGAL & REGULATORY COMPLIANCE CONSULTANTS
hero_pattern.png

Home

Handley Gill Limited is an award-winning legal and regulatory compliance consultancy based in London and SE, with links to NW & NE, offering specialist data protection, responsible artificial intelligence (AI), online safety, content moderation and regulation, information access, human rights and ESG advice and services.

We work with a range of industries in the UK and globally, and with the public sector. We have particular specialisms in journalism and content creation, social media, tech and law enforcement.

Data Protection Impact Assessments

-

Outsourced Data Protection Officer

-

Privacy Policies

-

International Data Transfer Risk Assessments

-

Data Processing Agreements

-

International Data Transfer Agreements

-

Legitimate Interests Assessments

-

Incident Response

-

Data Subject Rights

-

Training

-

Vendor Risk Assessments

-

Breach Preparedness

-

Marketing Compliance

-

Privacy By Design

-

Regulatory Enforcement

-

Governance & Oversight

-

First Tier Tribunal (Information Rights) Appeals

-

Lawful Basis for Processing

-

Data Ethics

-

Artificial Intelligence (AI) Risk Assessments (AIRAs)

-

Age Appropriate Design Code / Children's Code

-

UK Representative

-

ESG Compliance

-

Data Breach Remediation

-

Online Safety

-

Outsourced Artificial Intelligence (AI) Responsible Officer (AIRO)

-

Human Rights Impact Assessments

-

Equality Impact Assessments

-

Illegal Content Risk Assessments

-

Children's Access Assessments

-

Children's Risk Assessments

-

Algorithmic Transparency Recording Standard (ATRS) Reports

-

Terms & Conditions

-

Community Standards

-

Data Protection Impact Assessments - Outsourced Data Protection Officer - Privacy Policies - International Data Transfer Risk Assessments - Data Processing Agreements - International Data Transfer Agreements - Legitimate Interests Assessments - Incident Response - Data Subject Rights - Training - Vendor Risk Assessments - Breach Preparedness - Marketing Compliance - Privacy By Design - Regulatory Enforcement - Governance & Oversight - First Tier Tribunal (Information Rights) Appeals - Lawful Basis for Processing - Data Ethics - Artificial Intelligence (AI) Risk Assessments (AIRAs) - Age Appropriate Design Code / Children's Code - UK Representative - ESG Compliance - Data Breach Remediation - Online Safety - Outsourced Artificial Intelligence (AI) Responsible Officer (AIRO) - Human Rights Impact Assessments - Equality Impact Assessments - Illegal Content Risk Assessments - Children's Access Assessments - Children's Risk Assessments - Algorithmic Transparency Recording Standard (ATRS) Reports - Terms & Conditions - Community Standards -

Featured
All-Around AI
All-Around AI

Handley Gill’s specialist AI governance consultants review the implementation of the EU AI Act and highlight the obligations coming into force on providers of general-purpose AI models, including those posing systemic risk, in just 4 months’ time from 02 August 2025.

On Hand March 2025
On Hand March 2025

March 2025 edition of Handley Gill’s monthly digital newsletter, On Hand, with all the latest developments in data protection (UK, EU and global), cyber security, AI and machine learning, content regulation, open justice, access to information, reputation management, digital markets regulation, human rights & ESG. Presented in a readily digestible digital format, those who prefer the traditional newsletter format can export the newsletter to pdf.

Information Wrongs
Information Wrongs

Handley Gill’s specialist online safety consultants analyse the fine imposed on the provider of OnlyFans, its second fine against a video sharing platform provider for failure to comply with an information notice issued under Part 4B Communications Act 2003, the precursor to the Online Safety Act 2023 regulating video sharing platforms, examining common themes in Ofcom’s approach to enforcement having regard to its earlier fine on TikTok and, considering the implications for entities subject to the Online Safety Act 2023.

Poster Child
Poster Child

Handley Gill’s AI governance consultants identify the children’s rights under the UN Convention on the Rights of the Child most relevant to the development and deployment of AI systems, and consider their enforceability in the context of summarising the 5Rights Foundation’s recently launched Children and AI Design Code and analysing its implications for developers and deployers of AI systems, addressing the extent to which they are obliged to comply with its requirements.

Common Cause III
Common Cause III

Handley Gill’s specialist data protection consultants report on the final sessions of the House of Commons Public Bill Committee on the Data (Use and Access) Bill on 11 March 2025, when the government reversed several amendments made in the House of Lords.

Child Development
Child Development

Handley Gill’s specialist data protection consultants summarise and comment on the efficacy of the Information Commissioner’s strategy to enforce its Age Appropriate Design Code aka the Children’s Code, the likely targets of future enforcement activity and, the impact of regulatory co-operation with Ofcom.

Frame by Frame
Frame by Frame

Handley Gill’s specialist artificial intelligence (AI) governance consultants analyse the requirements of the Council of Europe’s Framework Convention on Artificial Intelligence (AI), and its HUDERIA methodology for conducting artificial intelligence (AI) impact assessments (or conformity assessments under the EU AI Act) addressing the impact of AI systems impact on human rights, democracy and the rule of law.

Time's up
Time's up

Handley Gill’s specialist online safety consultants highlight the passing of the deadline for online services to complete their illegal content risk assessments under the Online Safety Act 2023 and comment on next steps, including the obligation to implement mitigations against the identified risks and the online safety regulator, Ofcom’s, enforcement measures.

Won’t you forget about me?
Won’t you forget about me?

Handley Gill’s specialist data protection consultants highlight the European Data Protection Board’s (EDPB’s) announcement of action throughout 2025 under its Co-ordinated Enforcement Framework on the right to erasure, or right to be forgotten, under Article 17 GDPR, identifying likely recipients, how controllers can prepare and how they might respond.

Winner Winner: 2025 Cybersecurity and Resilience Awards
Winner Winner: 2025 Cybersecurity and Resilience Awards

Handley Gill is the winner of the 2025 Cybersecurity and Resilience Award for Best Cybersecurity Awareness Campaign for our work securing amendments to the Institute of Directors’ voluntary Code of Conduct for Directors to reflect that risk management, including cyber risk, and business resilience across supply chains are essential tenets of responsible business. But we’re not stopping there, and are calling on the government to incorporate several provisions into the Cybersecurity & Resilience Bill to protect the people, property and prosperity of UK plc.