Lilly Taranto

Lilly Taranto

Senior Associate

Email lilly.taranto@​

Phone +44 20 7296 5987

Fax +44 20 7296 2001


Practice groupGlobal Regulatory

As a senior associate in the global Privacy and Cyber Security practice of Hogan Lovells, Lilly Taranto has in-depth knowledge in advising major international and domestic companies on data protection compliance programs, cross-border data transfers and data sharing projects including e-marketing, data security breaches, online privacy and binding corporate rules. Lilly has experience in running complex multi-jurisdictional data privacy projects in the life science, online retail, travel, technology, and finance sectors.

Member of the IAPP with Certified Information Privacy Professional (Europe) (CIPP/E) status Lilly has written many articles and is also one of the authors of the IAPP's 'European Privacy: Law and Practice for Data Protection Professionals'.

Lilly is bi-lingual (English and Italian).

Awards and recognitions


Education and admissions


Legal Practice Course, BPP University Law School, 2007

Graduate Diploma in Law, BPP University Law School, 2006

MSc in Media and Communications Regulation, London School of Economics and Political Science, 2002

LL.B., LUISS Guido Carli University, 1999


IAPP - International Association of Privacy Professionals

The Law Society

Bar admissions and qualifications

Certified Information Privacy Professional (CIPP/E)

Related knowledge


Representative experience

Advising life science companies on GDPR compliance.

Advice on data protection aspects of clinical trials and clinical research.

Carrying out privacy impact assessments on the products of a cutting-edge technology company.

Advising and coordinating the advice of local counsel on international data transfers for a financial services company operating in over 80 countries.

Advising and coordinating the advice of local counsel on employee monitoring and e-marketing for a travel company, operating globally.

Drafting and negotiating data processing and data sharing agreements.

Drafting global consumer facing privacy policies for multinational travel companies.

Drafting policies on data retention, BYOD, employee monitoring, cookies, data security and acceptable use.

Drafting data transfer agreements and coordinating their submission/approval by national Data Protection Authorities.

Carrying out data protection audits for companies operating in the financial, technology and retail sectors.

Loading data