Search form

Privacy, Data and Cybersecurity

For organizations across the globe, accessing, maintaining and exchanging information creates unlimited possibilities—and new risks and vulnerabilities.

Overview

The challenges associated with ensuring privacy and securing data come from within and outside an organization. The complexity of those challenges requires careful collaboration both within the organization and with outside resources on planning, governance and vigilance.  

Data cuts across your whole enterprise. Our Privacy, Data and Cybersecurity Practice Group understands the issues that organizations face when collecting and processing data, whether for managing human capital or for commercial activities. Just as importantly, our team understands the interplay of technical, administrative, contractual and legal risks in the industry-specific regulatory environments where our clients operate.

Regulations and policies addressing data are evolving as quickly as the threats that target that data. Our group maintains up-to-date information on both regulations and threats and we are ready to operate and respond on the state, federal and international levels. We take a holistic, value-added approach to advise our clients on the latest legal developments and threats and to identify best practices that deliver a competitive advantage—and balance business objectives with risk tolerance.

If an incident arises, our teams of CIPP-certified attorneys collaborate with seasoned consultants and industry professionals to develop strategies that address the entire problem/incident. Our team bridges the full continuum of issues and manages investigations, compliance, recovery, vendor management, breach response and beyond. And we draw on our deep roots in employment law to deliver targeted advice about employee-focused training, policy writing, discipline and litigation.

The group provides end-to-end services in the areas of data incidents and response, privacy and security.

Chart of end-to-end services

Data Incidents and Response

Has an electronic device (such as a laptop, smartphone, or thumb drive) been lost or stolen? Are you locked out of your data because of ransomware? Have company records or data been improperly accessed, discarded or obtained? Has an employee been a victim of a phishing attack requesting tax records? Are your businesses’ email or electronic systems corrupted or under attack? Has your third-party vendor called to tell you they have had. Read More

Privacy Rights

Does your organization collect, maintain, process, or share personal or confidential information? Do you monitor your premises, employees, and/or customers? Is your organization struggling to balance the balaua of data with individual privacy rights or expectations? Read More

Security

Do you possess or control large amounts of information or data? Are you aware of your legal, professional, and/or contractual duties to safeguard? We work with clients to secure their data and develop enterprise-wide strategies for maintaining compliance. Read More

The Team

See All
Showing 1-8 of 29
Advanced Filtering
All A-Z
A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z
See All
Showing 1-8 of 29

See All Webinars

Archived

Watch Now

The Fault Line of Privacy Legislation: How the CCPA Changes Everything

October 8, 2019 - 2:30 PM to 3:30 PM EST

Credits: Continuing education credit was offered for the live broadcast of this seminar.
You cannot earn credit for watching the archived webinar.

Watch Now

Archived

Watch Now

Is Your Company Prepared To Comply With The NYS Dep’t of Financial Services Cyber Regulations? First Compliance Deadline Is August 28

August 24, 2017 - 2:00 PM to 3:00 PM EST

Credits: Continuing education credit was offered for the live broadcast of this seminar.
You cannot earn credit for watching the archived webinar.

Watch Now

Archived

Watch Now

Cybersecurity Risk Management for Law Firms Webinar Series

April 19, 2017 - 1:00 PM to 2:00 PM EST

Credits: Continuing education credit was offered for the live broadcast of this seminar.
You cannot earn credit for watching the archived webinar.

Watch Now

See AllPublications

Advanced Filtering
Showing 1-3 of 35
Newest
Most Read
October 10, 2019

California Consumer Privacy Act FAQs for Covered Businesses

October 10, 2019

Set to take effect January 1, 2020, the California Consumer Privacy Act (CCPA), considered one of the most expansive U.S. privacy laws to date, places limitations on the collection and sale of a consumer’s personal information and provides consumers certain rights with respect to their personal information. Organizations should be... Read More

August 1, 2019

Healthcare Organizations, Is Your Patient Portal Secure?

August 1, 2019

Healthcare organizations’ traditional cybersecurity measures are insufficient against today’s cyberattacks, according to a report from LexisNexis® Risk Solutions and the Information Security Media Group released in July 2019. Even as healthcare organizations embrace new technologies (such as patient portals), the report shows that... Read More

July 26, 2019

New York Enacts SHIELD Act, Adding Data Security Requirements and Strengthening Data Breach Requirements

July 26, 2019

New York has enacted the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act) to amend the state’s data breach notification law to impose more expansive data security and data breach notification requirements on companies. The move aims to ensure New York residents are better protected against data breaches of their private... Read More

Showing 1-3 of 35

See AllIn the News

Showing 1-3 of 57
Newest
Most Read
October 24, 2019
Law360

Joe Lazzarotti Discusses Biometric Data Privacy Concerns Regarding Wearable Devices for College Athletes

October 24, 2019

Joe Lazzarotti discusses concerns surrounding potential threats to student athletes’ biometric data privacy stemming from the increasing popularity of wearable devices designed to monitor vitals and lifestyle habits in “States On Deck To Protect College Athlete Biometric Privacy,” published by Law360. Subscription may be required to... Read More

October 8, 2019
Bloomberg Law

Joseph Lazzarotti Comments on the Upcoming Changes to New York’s Data Breach Notification Law

October 8, 2019

Joseph Lazzarotti comments on the upcoming changes to New York’s SHIELD Act, implementing a biometric data breach notification requirement in “New York Set to Launch New Biometric, Health Breach Notice Rules,” published by Bloomberg Law. Subscription may be required to view article Read More

August 27, 2019
Legaltech News

Joseph Lazzarotti Discusses the Elevated Risk of Cyber Breaches During M&A Deals

August 27, 2019

Joseph Lazzarotti discusses the increased risk of of phishing attacks and proper cybersecurity controls during M&A deals in "Gone Phishing: M&A's Unique Cyberthreat and How to Protect Against It," published by Legaltech News.  Subscription may be required to view article Read More

Showing 1-3 of 57

See AllBlogs

Massachusetts Governor Announces Cybersecurity Program
November 15, 2019

State and local governments have increasingly become targets of cybersecurity attacks. This year cybersecurity attacks on Baltimore and Lincoln County, North Carolina reportedly will cost those government entities $18.2 million and as much as $400,000, respectively to recover from the attacks. Read More

Disclosure of State Employees’ Birthdates Not Protected Per Washington Supreme Court
November 13, 2019

The Washington State Supreme Court ruled recently that state employees’ birthdates associated with their names are not exempt from disclosure pursuant to a freedom of information records request. In so holding, the Court strictly construed the applicable statute that did not expressly exempt birthdates from disclosure. Wash. Pub. Emps. Read More

US Senate Bill Passes, Seeking to Establish “Cyber Hunt and Incident Response Teams”
November 11, 2019

More than 500 United States schools (connected with 54 different education entities such as school districts and colleges) have been infected with ransomware during the first nine months of 2019, according to a recent report by cybersecurity firm Armor, making the education sector one of the leading ransomware targets, following only muni Read More

See All Videos

Mar 5

Watch Now

State Data Breach Laws

Sarah Ryan and Daniel Moses discuss the various state laws governing data breach notification, the recent developments of GDPR and the California Consumer Privacy Act.

Watch Now

Nov 13

Watch Now

Privacy Issues and Data Breaches

Adam Guttell and Jeffrey Schlossberg discuss privacy issues and how employers can prevent data breaches.

Watch Now