Our Website Uses Cookies 

We and the third parties that provide content, functionality, or business services on our website may use cookies to collect information about your browsing activities in order to provide you with more relevant content and promotional materials, on and off the website, and help us understand your interests and improve the website.

For more information, please contact us or consult our Privacy Notice.

Your binder contains too many pages, the maximum is 40.

We are unable to add this page to your binder, please try again later.

This page has been added to your binder.

Mark Young
Mark Young
London +44 20 7067 2101 myoung@cov.com Download V-card

Mark Young advises clients on data protection, cybersecurity and intellectual property matters. He has particular expertise in regulatory compliance and legislative advocacy, cyber and data security incident preparation and management, and online IP enforcement.

According to the latest edition of Chambers UK (2018), he has "a really sharp analytical mind and good understanding of key regulations." In previous editions, he has been recognized as "a trusted adviser - practical, results-oriented and an expert in the field," and "enjoying a growing reputation for his expert advice to a number of sophisticated clients on data protection and cybersecurity issues, and is particularly well thought of for his insight into the EU General Data Protection Regulation."

  • Data protection - pharma sector. Counseled GlaxoSmithKline (GSK) on the development, implementation and authorization of its Binding Corporate Rules (BCRs) that allow GSK to transfer personal data from the European Economic Area (EEA) to affiliates located outside of the EEA in compliance with European data privacy rules.
  • Data protection - tech sector. Advises Facebook on EU data privacy compliance in relation to new features and products.
  • Cybersecurity. Counsel to multiple clients who have experienced a cyber / data security incident, including supervising technical investigations, advising on notification obligations and other legal risks, and representing clients before regulators around the world.
  • Legislative advocacy. Advises Microsoft, the Business Software Alliance, and other technology industry clients on various EU legislative initiatives, including reviews of the Data Protection Framework, Network and Information Security Directive, e-Commerce Directive, IP Enforcement Directive and the Telecommunications Framework, as well as proposals regarding cloud computing, child online safety, electronic IDs and other technology related matters.
  • Online IP enforcement. Advises a range of clients, including the National Football League, several major publishers, software providers, and fashion and luxury brands on strategies and enforcement programs to combat online IP infringement.
  • EU and international data privacy and security counsel to a leading global pharmaceutical company, advising on a range of matters including cloud computing service contracts, international transfers of data, clinical trials, eHealth services, compassionate use programs, corporate transactions, data analytics, and internal investigations.
  • Advises a leading global cloud computing provider on complex cross-border regulatory issues, including data privacy, data retention, security, hosting liability and law enforcement access to data, as well as on specific outsourcing and security regulations in the financial, healthcare and public sectors.
  • Advises a leading financial institution on biometrics and smart phone apps and applicable data privacy and security regulations.
  • Assists Expedia and other leading internet-based companies with compliance aspects of their online services, and developing privacy policies and other data privacy compliance materials.
  • Advised eBay on transferring personal data internationally in the context of e-discovery.
  • Counseled Telefónica O2 UK on data retention matters.

Pro Bono

  • Advising Privacy International, the privacy-rights NGO, with respect to emerging EU and other privacy and data retention laws (2007-2012).

Memberships and Affiliations

  • IAPP 
  • IPSoc
  • Society for Computers and Law

Previous Experience

  • Trained with and qualified into the IP department of a leading City of London law firm
  • First Data International, seconded to the in-house legal team
  • BBC, Vodafone, the Times newspaper, legal internships
  • PricewaterhouseCoopers, IT Management Consultant (2000-2002)
  • Chambers UK, Data Protection and Information Law (2014-2019)
  • Chambers UK, Parliamentary & Public Affairs (2013-2014), recognised as “an expert on data protection law and policy”
  • Legal 500 UK, Data Protection (2016) and Public Affairs (2011)
  • Sports, Media and Entertainment Team of the Year (Intellectual Property Magazine Awards, 2010)