Tim's excellent service is invaluable to our company. We appreciate his dedication to finding the best solutions for our legal needs. (Chambers, UK, Data Protection & Information Law, 2025)
Tim Hickman knows his stuff, seems to know every privacy law available. (The Legal 500, UK, Data Protection, Privacy and Cybersecurity, 2025)
Biography
Tim is head of the Firm's Data, Privacy & Cybersecurity practice, and advises on all aspects of data protection law and artificial intelligence (AI) regulation. Tim has a detailed knowledge of the General Data Protection Regulation (GDPR) and the UK GDPR, and co-authored White & Case's GDPR Handbook and GDPR National Implementation Guide. Tim is a Contributing Editor of the International Comparative Legal Guide to Data Protection. He is also closely familiar with the EU AI Act and similar laws around the world, and led the publication of White & Case's EU AI Act Handbook and global AI regulatory tracker, AI Watch.
Clients appreciate Tim's ability to find pragmatic and commercial solutions to complex multi-jurisdictional data protection questions.
Tim has significant experience of working with a wide range of clients in the UK, the EU, Asia and the US. He has spent time on secondment at Google, advising on cutting-edge privacy and data protection issues. He has also spoken at several events at Harvard Law School, and the University of Cambridge.
Experience
His experience includes:
Representation of Meta / Facebook on pre-litigation and litigation matters involving privacy and data protection in the UK and the EU.
Representation of Google on privacy and data protection matters during two secondments.
Representation of Nestlé on data protection compliance matters globally, including in relation to the GDPR.
Representation of Boeing on various UK and EU data protection maters.
Representation of Deutsche Bank on the negotiation of data protection clauses in a range of commercial agreements.
Representation of fashion brands Oasis and Warehouse on GDPR compliance strategies and approaches to electronic direct marketing.
Representation of MSI on global data protection issues.
Representation of AGCO on EU data protection and electronic direct marketing compliance strategies.
Representation of Centerbridge Partners on privacy and data protection matters.
Representation of several clients on the successful implementation of Binding Corporate Rules for international data transfers.
Representation of LINE Corporation on international data protection issues, including in the context of online instant messaging.
Representation of several clients in compliance investigations by the Information Commissioner's Office.
'Tim Hickman with his legal expertise, attention to detail, and clear communication, has been invaluable.'
Data Protection, Privacy and Cybersecurity, Legal 500 UK, 2026
'Tim has a thorough understanding of legal trends in privacy law. He evaluates the gaps between legal requirements and the practical operations of the company to provide balanced insights.'
Data Protection & Information Law, Chambers UK, 2026
