Government Regulations and Legislation

Overview

Data privacy is an evolving field where companies must comply with laws governing national security, consumer privacy, health care privacy, financial services and telecommunications. Our team collaborates across our other industry-specific practices to guide clients in monitoring new legislation and complying with the following laws, among others:

Bank Secrecy Act,
California Consumer Privacy Act (CCPA),
CAN-SPAM Act,
Children’s Online Privacy Protection Act,
Communications Assistance for Law Enforcement Act,
Fair Credit Reporting Act,
Federal Right to Privacy Act,
General Data Protection Regulation (GDPR),
Gramm-Leach-Bliley Act,
Health Insurance Portability and Accountability Act,
IRS disclosure rules,
Money-laundering regulations,
Sarbanes-Oxley Act,
Telecommunications Act, and
USA PATRIOT Act.

Experience

CCPA
Advise on CCPA readiness and draft appropriate policies.
GDPR
Assess GDPR readiness and provide ongoing counsel.
Breach of credit card information
Respond to breaches of client credit card information in multiple states; research state requirements and interface as required with state law enforcement officials or others.
Board of National Industry ISAC
Privacy, Cyber, and General Counsel to the Board of a National Industry-Specific Information Sharing and Analysis Center.
Retail and consumer credit card security and fraud
Represent various retail clients regarding PCI compliance, credit card fraud and loss, and fraudulent e-commerce orders.
Data breach response
Coordinate response to loss of protectable or sensitive data in electronic form, including personal credit information, vendor account credentials and customer payment authorizations.