Our attorneys have a wide range of experience in state, federal, and international regulations, as well as industry best practices related to privacy and data security, including:

• Healthcare privacy: Health Insurance Portability and Accountability Act (HIPAA), Electronic Health Records (EHR), Health Information Technology for Economic and Clinical Health (HITECH)
• Financial privacy: Gramm-Leach-Bliley Act (GLBA), Fair Credit Reporting Act (FCRA)
• International privacy: General Data Privacy Regulation (GDPR)
• Technology privacy: Children’s Online Privacy Protection Act (COPPA)
• Information security privacy: Payment Card Industry (PCI), Family Educational Rights & Privacy Act (FERPA)
• Communications privacy: Telephone Consumer Protection Act (TCPA), Telemarketing Sales Rule (TSR)

Our team also serves clients in the following areas:

• Data risk and privacy impact assessments
• Data incident investigation, data breach response and ransom response
• Record retention policies and procedures
• California Consumer Privacy Act (CCPA) counseling
• Agreements for technologies and services
• Cyber insurance review, negotiation and claims recovery
• Complex litigation and financial class action defense
• Website policies and terms of use
• Vendor due diligence
• Employment information confidentiality and handbook provisions
• Restrictive covenants and enforcement of restraints of trade