Cybersecurity & Privacy

The cybersecurity and data privacy landscape is shifting quickly, challenging organizations to comply with new, complex regulatory requirements. Our team of data privacy attorneys can protect your operations and information.

Overview

Leaders in the US and abroad require system-wide data privacy and cybersecurity plans that address the mandates of an intricate web of international, federal, and state law. We develop system-wide data privacy and cybersecurity plans that address the mandates of the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the NY SHIELD Act, among others. Our team helps protect your operations and information while guided by your strategic goals and technology infrastructure.

More than ever, organizations face mounting threats to their data security. If a breach occurs, we deploy a cross-functional response team, which includes Certified Information Privacy Professionals (CIPP/US). We regularly assist clients affected by cyber incidents, direct large-scale breach responses, and resolve disputes arising from breaches, consumer privacy suits, and enforcement actions.

Stay one step ahead by partnering with NP.

Representative experience

Affiliated healthcare provider network: Advised the group after their collective network was victimized by a ransomware attack, working closely with forensic investigators to assess the scope of network penetration and counselling on reporting requirements and remediation
Digital healthcare solutions platform: Guided a cloud-based healthcare software solutions company through ransomware attack response
Hospital: Defending a hospital in a data breach class action in connection with Protected Health Information (PHI) and Personally Identifiable Information (PII)
International auto manufacturer: Advising a German multinational corporate manufacturer of luxury vehicles and motorcycles on cross-border transfers of information related to connected driving technology
Multinational consumer products provider: Providing data privacy compliance counsel to an American multinational consumer products company
US professional basketball team: Assisting an NBA basketball team on matters including negotiation of an SaaS agreement relating to SMS marketing and advice on best practices under the TCPA for conducting an SMS marketing campaign

A Little Privacy, Please!®

Slide the carousel bar for all episodes of A Little Privacy, Please! where hosts Jason Kravitz and Jenny Holmes explore the privacy topics business leaders need to prepare against and respond to the latest cyberthreats.

Cyber War Games with Sarah Gossler
If cyber war games sound like your idea of fun, then this is the conversation for you! We're speaking with Sarah Gossler, the global head of Cyber Threat Simulation and the Engineering chief of staff at BNY Mellon. Sarah manages BNY Mellon's Office of the CIO and is responsible for cyber-attack-simulation training.
The Next Generation of Privacy Lawyer
Is a new generation of data privacy and technology lawyer emerging? Kromann Reumert partner Christel Teglers shares her advice for aspiring data privacy lawyers.
HR’s role in cybersecurity
Kassandra McGlone shares how a strong human resources team can help companies to avoid, navigate, and recover from cyberattacks.
TCPA 101 with Troy Lieberman, Attentive
NP alumnus and Attentive VP of Legal Troy Lieberman offers practical advice for businesses navigating the Telephone Consumer Protection Act.
LGPD: Brazil’s data protection law
Learn about Brazil’s data protection law, LGPD, and how it compares to GDPR from guest speaker Renata Ciampi.
Generative AI copyright and privacy issues
Guest Jakub Pietrasik discusses generative AI and its privacy and copyright issues from the perspective of an attorney practicing in Poland.
Cyber insurance insights
Stay up-to-date on the latest cyber insurance developments as Jason Kravitz and Jenny Holmes interview Neel Desai, vice president, Cyber practice at Lockton.
UK privacy law update with Jas Kaur
Jas Kaur is a senior manager and senior legal officer at Autodesk in the UK. She joins us on A Little Privacy, Please! to discuss UK privacy law and what it means for CCTV, facial recognition, and more.
What companies should know about the New York SHIELD Act
Chris Mason breaks down the unique requirements of the New York SHIELD Act and what it means for businesses in New York and beyond.
Cyber risk in the municipal bond market
Rudy Salo explains how cyberattacks affect borrowing rates in the municipal market.
Are online tracking technologies like pixels HIPAA compliant?
Valerie Montague discusses online tracking technologies in the healthcare space, which can have serious HIPAA implications.
Building an effective privacy team with Vanessa McKay, Tripadvisor
Tripadvisor Corporate Counsel Vanessa McKay shares best practices for building a global privacy and data protection team.
Why did Italy ban ChatGPT?
Leslie Hartford provides insights on the wave of generative AI tools hitting the market and discusses the privacy issues raised by ChatGPT along with the pitfalls businesses must watch for.
What is web scraping?
Jason Kunze gives us an overview of the web scraping landscape with a look at recent rulings and whether they help to clarify some of the legal questions surrounding web scraping activities.
A Little Privacy Please!
In their introductory episode, Jason and Jenny share what led their practice into the world of privacy law. They also highlight topics they plan to explore throughout the series.

Related Services

Valerie Montague / Healthcare Lawyer / Nixon Peabody LLP

Hospitals, physician practices, and other entities that use pixel-tracking technologies should analyze whether they are impermissibly disclosing patient protected health information.

Valerie Breslin MontaguePartner

Our Team

See Full Team

Jason C. Kravitz
Partner / Leader, Cybersecurity & Privacy
- Boston
- Office:617.345.1318
- jkravitz@nixonpeabody.com
Jenny L. Holmes
Counsel / Deputy Leader, Cybersecurity & Privacy
- Rochester
- Office:585.263.1494
- jholmes@nixonpeabody.com
Dan Deane
Partner / Leader, Class Actions and Aggregate Litigation / Co-Leader, TCPA & Consumer Privacy Team
- Manchester
- Office:+1 603.628.4047
- ddeane@nixonpeabody.com
Valerie Breslin Montague
Partner
- Chicago
- Office:312.977.4485
- vbmontague@nixonpeabody.com
Christopher M. Mason
Partner / Deputy Leader, Class Actions and Aggregate Litigation / Leader, Arbitration Team
- New York
- Office:212.940.3017
- cmason@nixonpeabody.com
Jéna M. Grady
Counsel
- New York
- Office:212.940.3114
- jgrady@nixonpeabody.com