Lilly Taranto

Lilly Taranto

Senior Associate

Email lilly.taranto@​

Phone +44 20 7296 5987

Fax +44 20 7296 2001


Practice groupGlobal Regulatory

As a senior associate in the global Privacy and Information Management practice of Hogan Lovells, Lilly Taranto has in-depth knowledge in advising major international and domestic companies on cross-border data transfers including binding corporate rules, employee monitoring, e-marketing, data security breaches, online privacy and general data protection compliance issues. Lilly focuses in running large multi-jurisdictional data privacy projects involving more than 80 countries in the travel, entertainment, technology, telecom, pharmaceutical, finance and retail sectors.

Member of the IAPP with Certified Information Privacy Professional (Europe) (CIPP/E) status Lilly has written many articles and is also one of the authors of the IAPP's 'European Privacy: Law and Practice for Data Protection Professionals'.

Lilly is bi-lingual (English and Italian), but Italian is her mother language.

Awards and recognitions


Education and admissions


Legal Practice Course, BPP University Law School, 2007

Graduate Diploma in Law, BPP University Law School, 2006

MSc in Media and Communications Regulation, London School of Economics and Political Science, 2002

LL.B., LUISS Guido Carli University, 1999


IAPP - International Association of Privacy Professionals

The Law Society

Bar admissions and qualifications

Certified Information Privacy Professional (CIPP/E)

Related Knowledge


Representative experience

Carrying out privacy impact assessments on the products of a cutting-edge technology company.

Advising and coordinating the advice of local counsel on international data transfers for a financial services company operating in over 80 countries.

Advising and coordinating the advice of local counsel on employee monitoring and e-marketing for a travel company, operating globally.

Drafting and negotiating data processing and data sharing agreements.

Drafting global consumer facing privacy policies for multinational travel companies.

Drafting policies on data retention, BYOD, employee monitoring, cookies, data security and acceptable use.

Drafting data transfer agreements and coordinating their submission/approval by national Data Protection Authorities.

Carrying out data protection audits for companies operating in the financial, technology and retail sectors.

Loading data