Data Privacy and Security

Decisive Steps Before, During and After a Breach

Data breaches pose particularly immense concerns, particularly in industries that handle personally- identifiable information (PII) like banking, healthcare and retail. We help you analyze the probability and impact of breach scenarios, develop and implement incident response policies, lead investigations when a breach occurs and handle dispute resolution with affected parties and regulators after the incident.

Compliance with Confidence

We support you in your efforts to comply with an ever-expanding universe of privacy and data security regulations. We help craft the policies and practices that address your data compliance risks and obligations and ensure proper privacy and security protections are built into your employment and commercial relationships. Our attorneys will guide you in determining exactly how different regimes apply to you, including HIPAA, the Gramm-Leach-Bliley Act, the Payment Card Industry Data Security Standard (PCI), the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks, EU General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA).

Transactions Executed Confidently 

We understand the significance data has on the success of emerging technology businesses and the risks it brings to the table. When a transaction is in the works, it is particularly crucial to conduct a data privacy and security assessment as part of the due diligence process. We counsel you regarding data protection requirements, indemnification and risk allocation. We also assist you with identifying, auditing and partnering with existing counterparties and business partners to ensure data security and risk management processes do not hamper the deal.

Consistent Across Borders

Data knows no borders, yet privacy laws and regulations vary drastically around the world. Our counsel extends across U.S. state and international lines to help you assess and comply with the privacy and related regulatory regimes that apply to you.