Skip to main content

Practices Practices Section


Privacy & Cybersecurity

Overview Experience Press Room


As innovations in technology make it easier to track, collect and process personal information about individuals, companies of all kinds are challenged to manage the way that they use data to both comply with U.S. and non-U.S. laws and to protect such data from unauthorized access. In addition to maintaining compliance in a continuously evolving legal landscape, companies must also contend with industry standards promulgated by a wide array of diverse and sometimes overlapping industry groups. Yet, on a daily basis we hear reports of companies having suffered data breaches, as the data thieves always seem to find a new way to hack, connive or steal sensitive data from the coffers of seemingly secure enterprises. Any company or enterprise that maintains consumer or employee information must be attentive to data protection and take measures to mitigate the risk of loss of the sensitive information in its possession. Ignoring these issues is not an option, as serious legal ramifications and public relations and business problems face companies that do not handle personal information the right way. Our Privacy & Cybersecurity Group has the knowledge and experience to help clients understand and comply with the various laws and standards that regulate the collection, use, sharing and protection of personal data.

We are leaders in this developing area, advising clients on all aspects of compliance, ranging from U.S. federal and state laws, to international laws such as the EU Personal Data Directive, to industry standards. With our help, our clients demonstrate to their customers and investors that they not only comply with the laws that apply to them but they are genuinely concerned with individual privacy and the protection of private individual data.

We have one of the largest privacy and data security groups of any law firm, which Chambers USA says is “very much on top of the law” with a “solid grasp of data protection requirements and particular knowledge of the implications for U.S. companies doing business overseas.”

Areas of Focus

  • Consumer and Employee Privacy
  • Data Security
  • Data Breach Response and Notification
  • Identity Theft Risk “Red Flags” and Mitigation
  • Online Advertising and Behavioral Marketing
  • Data Sharing
  • Direct Marketing
  • Privacy and Data Security Audits
  • Health / Pharmaceutical Privacy
  • Financial Privacy
  • Children’s Privacy
  • Education Privacy
  • Telecommunications Privacy
  • Cable Privacy
  • Utilities Privacy
  • Retailer/Point of Sale Privacy
  • Payment Card Data Security
  • International Privacy Laws
  • Data Breach Litigation
  • Consumer Protection Litigation
  • General Privacy and Data Security Compliance
  • Telematics, Mobile and Geolocational Privacy
  • Data Retention Policies

Read about the latest developments and cases affecting the world of privacy and data security in our Privacy Law Blog


Videos Right Arrow

Kristen Mathews - Privacy on the Web

Kristen Mathews: Social Networks & Privacy

Monitoring Employee E-mail After Stengart

Outliers in State Data Security Laws