I use a practical, business-driven strategy to advise clients on a variety of comprehensive data privacy and cybersecurity matters. I have managed responses to dozens of data breaches, both large and small, and guide my clients through complex and ever-changing data privacy legislation, both domestic and international. I represent clients in a broad range of information-driven and technology-focused industries, including healthcare, finance and banking, computer hardware and software, medical devices, and emerging technologies. My computer engineering background helps me assist my clients with a wide range of data privacy, cybersecurity, and technology legal issues, including:
- Leading teams in data breach incident response, including data breach planning, mitigation, and reporting
- Monitoring changes in relevant law or judicial decisions, and providing advice and compliance suggestions according to those changes
- Data privacy contracting with clients and third party vendors
- Assisting with and conducting Data Privacy Impact Assessments (DPIA)
- Performing periodic data privacy and protection audits, and associated reports
- Reviewing and maintaining compliance documentation
- Handling and responding to data subject rights requests
- Maintaining current privacy and data handling policies, both internally and externally
- Providing employee data privacy training and awareness
- Providing advice in response to privacy concerns that may arise