Privacy & Data Security

Carmody MacDonald’s team of lawyers is experienced with matters involving both U.S. and international privacy and data security laws that span former US-privacy counsel leads for publicly traded companies to certified information privacy professionals.

Our privacy and data security attorneys advise clients in a variety of industries, including financial services, insurance, communications, health care, advertisers and marketers (including Ad-Tech), retailers (e-commerce and traditional brick and mortar), legal, technology, and manufacturing. The issues they routinely address for clients include:

• Discovery, development and implementation of effective customer, employee and data privacy policies, notices and practices
• Risk management and compliance strategies
• Privacy and data security audits
• Data Transfer and Data Processing Agreements
• Employee training programs
• Regulatory response
• Bring Your Own Device (BYOD) programs and policies
• Network security gap analysis
• Document retention strategies
• Data breach preparedness and response
• Litigation on behalf of clients whose data has been stolen to contain and recover the stolen data
• Litigation brought against clients as a result of data breaches
• General Data Protection Regulation (GDPR)
• Privacy Notices and Privacy Policies
• Website Terms and Conditions
• Obtaining consents
• Data Processing / Transfer Agreements
• Children’s Online Privacy Protection Act (COPPA)
• Health Insurance Portability and Accountability Act (HIPAA) and Health Information Technology for Economic and Clinical Health Act (HITECH)
• Gramm-Leach-Bliley Act (GLBA)
• Controlling the Assault of Non-Solicited Pornography and Marketing Act (CAN-SPAM)
• Canada’s Anti-Spam Legislation (CASL)
• California Consumer Privacy Act of 2018 (CCPA)