Sophie Bradshaw

AREAS OF EXPERTISE

Privacy Law; Intellectual Property; Technology; Commercial Law

AWARDS

• Best Lawyers (Australia), Lawyer of the Year – Commercial Law, Winner 2024
• Best Lawyers (Australia), Commercial Law, 2016 – 2025
• Best Lawyers (Australia), Outsourcing Law, 2022 – 2024
• Best Lawyers (Australia), Entertainment Law, 2022 -2024
• Best Lawyers (Australia), Privacy and Data Security Law, 2015 – 2017
• Australian Cyber Security Awards, Cyber Security Lawyer of the Year, Finalist , 2023
• Doyle’s, Leading Technology, Media & Telecommunications Lawyers – Queensland, 2022

QUALIFICATIONS

• Bachelor of Laws (Hons), Bachelor of Business (Communications) – Queensland University of Technology
• Admitted to practice in Queensland, New South Wales, and England & Wales

SELECTED REPRESENTATIONS

• Advising Australian airline on various procurement projects for business-critical services, including in-flight catering and related retail sales cloud solutions, the establishment of IT services panel, and appointment of strategic media buying and creative media agencies. These projects involved working closely with external consultants and in-house legal and procurement teams throughout the procurement and contract negotiations. Sophie regularly advises the airline on privacy, IP and brand/marketing matters.
• Acted for a Queensland University on various privacy matters, including the conduct of a privacy compliance audit and risk assessment (including extensive stakeholder engagement), data breach response and notification obligations, and a review of privacy policy and other documents.
• Acted for healthtech company on the supply of its next-generation hospital data visualisation and analytics platform in Australia and overseas. Sophie also provided this client with a global review of applicable data privacy and data security laws applicable to its operations in Australia and overseas jurisdictions.
• Advised proptech start-up on IP protection advice and strategy, including brand protection strategy and advising on terms of supply and data input/data sharing arrangements.
• Advising major corporate on data breaches affecting multiple parties, including advising on notification obligations under the Privacy Act, critical infrastructure legislation and FIRB conditions, working with the third-party supplier and other impacted customers to prepare notifications to the Office of the Australian Information Commissioner and affected individuals, preparing comms, and advising on review of the incident and contractual rights and remedies.
• Advising financial services clients (including within the wealth management, cryptocurrency and AFS licensee sectors) on data retention and destruction and other privacy compliance obligations, including navigating the tension between record-keeping obligations applicable to the financial services industry and the obligations under the Privacy Act.
• Advising critical infrastructure client on the development of a coordinated data breach and cyber security incident response plan to facilitate reporting and other compliance obligations under various regimes, both in Australia and overseas.