Think of a privacy law that impacts your industry. Is it just a pointless rule that poses little risk to your company, meriting only the most minimal viable compliance attention? Or does it create serious litigation exposure for your company, imperiling your bottom line? Should you quickly take a conservative approach — or even over-comply — to keep customers happy and fend off the competition, or should you just wait and see? Is it worth the effort to create new processes to address this law’s quirks, or is your existing compliance program safe enough? Will next year be different?
Those are all important questions. Our extraordinary knowledge of the law and the technology make us the right partner to get you the answers you need. Since our firm’s inception, the vast majority of our clients have been at the forefront of creating or leveraging bleeding-edge technology and data products and services that raise the most novel, urgent issues in privacy and data protection law. We’ve been living on the front lines of this expanding field since day one.
It’s no wonder we were selected Privacy Group of the Year by Law360 and are the only boutique to be highly ranked by Chambers for Privacy & Data Security. But unlike big firms that spend a bit of time with modern privacy problems and a lot of time slogging through the privacy work of a decade ago, our focus on the difficult issues makes us wise beyond our size. We have the confidence to give you the realistic, actionable advice you need.
Frequent areas of assistance include:
- California Consumer Privacy Act (CCPA) compliance
- General Data Protection Regulation (GDPR) and ePrivacy compliance (including for cookies and similar technologies)
- Cross-border data transfers, including in relation to Standard Contractual Clauses and the Data Privacy Framework (DPF)
- Privacy notices and privacy policies
- Internal privacy governance
- Transactions , including data licenses, data protection addenda, and vendor agreements (Learn more)
- Product counseling
- Employee privacy
- Vendor management
- Data mapping
- Privacy issues in M&A (Learn more)
- Market intelligence
- Internet of Things
- Connected cars
- Comprehensive privacy and data protection assessments
- Data subjects’ rights: managing requests from individuals
- Direct marketing and communications rules for emails, texts, phone calls and other channels, including under the Telephone Consumer Protection Act (TCPA) and mobile carrier rules for short codes
- Government demands for user data (Learn more)
- AdTech and MarTech privacy (Learn more)
- HIPAA and health privacy (Learn more)
- Financial privacy and fintech issues (Learn more)
- Children’s Online Privacy Protection Act (COPPA) and children’s privacy (Learn more)
- EdTech, Family Educational Rights and Privacy Act (FERPA), and education privacy (Learn more)
- Training and awareness
- State and federal privacy compliance generally
- Data security (Learn more)
- Data breach and incident response (Learn more)
- Regulatory investigations and enforcement actions (Learn more)
- Privacy litigation (Learn more)
Global data protection
We’re based in the U.S. and have significant experience advising on global data protection laws. When needed, we can seamlessly draw on our international network of privacy and data protection lawyers around the world. Since we are not beholden to a one-stop-shop big firm model, we can team up with the best lawyers we can find.