John Kuah

I am a technology, media and communications lawyer based in Singapore. I provide timely and effective legal solutions which enable clients to achieve their commercial objectives.

Clients at the cutting-edge of innovation often require clear, practical and commercially sound legal advice. As a member of the Technology & Communications team, I am fortunate to work alongside a group of talented legal minds who share the goal of delivering high-quality advice to every client we work with. In that regard, I adopt a collaborative approach in working and communicating with each client to identify optimal legal solutions tailored to the client's specific needs.

My clients include businesses in a variety of industries and range from fast-moving start-ups and SMEs, to established multinational corporations. I have also advised non-governmental organisations and government agencies.

I have extensive experience advising on data protection and cybersecurity matters. I have formulated data protection policies and procedures, advised on cross-border data transfers, and drafted commercial agreements for transactions involving the sharing or disclosure of personal data. I have assisted clients with the management of data breaches, including efforts at mitigating the fall-out of such breaches and engaging with regulators in the course of data breach investigations.

I regularly draft and negotiate complex commercial contracts, and advise on legal and regulatory issues relating to technology aspects of such transactions.

I am passionate about topics such as artificial intelligence and big data.

I am qualified as a lawyer in Singapore and England & Wales, and am an IAPP Certified Information Privacy Professional.

• Advised an international oil and gas company on data protection and telecommunications regulatory requirements for the roll-out of an in-house Voice over Internet Protocol project.
• Advised a Singapore-based Fintech start-up on its negotiations for a software development project with an American investment bank. The software was to be developed through an iterative agile development method.
• Advised a subsidiary of a Singapore-listed company on the handling of a data breach after it suffered a ransomware attack which resulted in customer personal data becoming compromised. Represented the client in its interactions with the Singapore Personal Data Protection Commission.
• Advised an international cruise line company on data protection issues relating to a proposed project for the use of facial recognition technology to track guest participation in onboard activities.
• Drafted and reviewed e-commerce website terms & conditions and privacy policies for a number of local and international companies including for the consumer retail website of a renowned French fashion house, and the website of a technology start-up focusing on smart lighting solutions.