Privacy + Cybersecurity

As businesses today face an increasingly sophisticated threat environment compounded by aggressive regulatory enforcement, companies need a partner who can help mitigate risk and respond to the unthinkable. Our Legal 500 and Chambers ranked Privacy + Cybersecurity practice is one of the longest-standing of any AmLaw 50 firm. Dating back to the late 1990s and established formally in 2004, our practice is fully integrated and leverages the firm's core strengths, with the group's lawyers coming from our technology, financial institutions, licensing, litigation, regulatory and appellate practices. Our unique approach, focusing on client needs and value, enables us to engage specialists whose experience is framed by a holistic understanding of clients' greatest risks in this threatening environment.

Coast to coast in the US, our talented group of privacy and cybersecurity specialists includes a senior trial attorney who has handled hundreds of data breaches, a former Chief Privacy Officer for the United States Department of Homeland Security, an experienced former Federal Prosecutor and former Assistant U.S. Attorney in the Northern District of California. In Europe, our growing team of lawyers is actively advising clients on the EU General Data Protection Regulation (GDPR), the most significant advancement in data privacy regulation in decades, which became effective on May 25, 2018.

Our practice provides a full spectrum of services from advice and counseling, to providing transaction-related advice, to defense of class action litigation and government enforcement actions. Having counseled on hundreds of data breaches and litigated landmark cases, we provide practical advice on all aspects of information-related management and risk before, during and after breaches.

We offer a broad range of privacy & cybersecurity services including:

Advisory Services

  • Due diligence for privacy, data security and information rights (M&A, IPOs, outsourcing, and private placements)
  • Compliance and risk management (C-suite counsel, internal privacy and security program creation, policy development)
  • Transaction and deal support (drafting and negotiation of agreements related to confidentiality, privacy and residual rights, strategic counseling for data enterprises)
  • Compliance with the EU General Data Protection Regulation (GDPR), and other international privacy laws

Litigation, Investigations, and Regulatory Services

  • Consumer class action defense on privacy and data protection issues
  • Defense of actions, inquiries, and investigations by the FTC, HHS, OCR, FCC, state Attorneys General, and financial regulators
  • Security breach investigation and related incident response and crisis management
  • Email, text, fax, and telemarketing defense for organizations that communicate with consumers
  • Assistance with litigation hold/destruction of evidence issues, motions practice, and e-discovery



Professional Photo View Bio

Brenda R. Sharton

Chair, Privacy + Cybersecurity
Meet the Team

All Services A-Z