Skip to main content

Nixon Peabody LLP

Cybersecurity & Privacy

The cybersecurity and data privacy landscape is shifting quickly, challenging organizations to comply with new, complex regulatory requirements. Our team of data privacy attorneys can protect your operations and information.

/Overview

Leaders in the US and abroad require system-wide data privacy and cybersecurity plans that address the mandates of an intricate web of international, federal, and state law. We develop system-wide data privacy and cybersecurity plans that address the mandates of the EU General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the NY SHIELD Act, among others. Our team helps protect your operations and information while guided by your strategic goals and technology infrastructure.

More than ever, organizations face mounting threats to their data security. If a breach occurs, we deploy a cross-functional response team, which includes Certified Information Privacy Professionals (CIPP/US). We regularly assist clients affected by cyber incidents, direct large-scale breach responses, and resolve disputes arising from breaches, consumer privacy suits, and enforcement actions.

Stay one step ahead by partnering with NP.

/Representative experience

  • Affiliated healthcare provider network: Advised the group after their collective network was victimized by a ransomware attack, working closely with forensic investigators to assess the scope of network penetration and counselling on reporting requirements and remediation
  • Digital healthcare solutions platform: Guided a cloud-based healthcare software solutions company through ransomware attack response
  • Hospital: Defending a hospital in a data breach class action in connection with Protected Health Information (PHI) and Personally Identifiable Information (PII)
  • International auto manufacturer: Advising a German multinational corporate manufacturer of luxury vehicles and motorcycles on cross-border transfers of information related to connected driving technology
  • Multinational consumer products provider: Providing data privacy compliance counsel to an American multinational consumer products company
  • US professional basketball team: Assisting an NBA basketball team on matters including negotiation of an SaaS agreement relating to SMS marketing and advice on best practices under the TCPA for conducting an SMS marketing campaign

Our Team

See Full Team

  • Jason C. Kravitz

    Partner / Leader, Cybersecurity & Privacy
    • Boston
    • Office:+1 617.345.1318
    • jkravitz@nixonpeabody.com
    Jason C. Kravitz

  • Jenny L. Holmes

    Partner / Deputy Leader, Cybersecurity & Privacy
    • Rochester
    • Office:+1 585.263.1494
    • jholmes@nixonpeabody.com
    Jenny L. Holmes

  • Leslie Hartford

    Counsel
    • Boston
    • Office:+1 617.345.1369
    • lhartford@nixonpeabody.com
    Leslie Hartford

  • Valerie Breslin Montague

    Partner
    • Chicago
    • Office:+1 312.977.4485
    • vbmontague@nixonpeabody.com
    Valerie Breslin Montague

  • Christopher M. Mason

    Partner / Deputy Leader, Class Actions & Aggregate Litigation / Leader, Arbitration Team
    • New York City
    • Office:+1 212.940.3017
    • cmason@nixonpeabody.com
    Christopher M. Mason

  • Jéna M. Grady

    Partner
    • New York City
    • Office:+1 212.940.3114
    • jgrady@nixonpeabody.com
    Jéna M. Grady
See Full Team

A Little Privacy, Please!®

Slide the carousel bar for all episodes of A Little Privacy, Please! where hosts Jason Kravitz and Jenny Holmes explore the privacy topics business leaders need to prepare against and respond to the latest cyberthreats.

  • Fran Malloy on navigating a U.S. retail cyber incident

    Navigating a U.S. retail cyber incident

    Fran Malloy shares lessons from leading a major U.S. retail cybersecurity breach response.

  • Image of Jason Kravitz, Jenny Holmes and Jason Kunze

    Anthropic’s copyright settlement: What it means for AI training data

    Jason Kunze returns to unpack Anthropic’s proposed $1.5B AI copyright settlement, and the legal risks of sourcing datasets for AI model training.

  • Intimate privacy in the digital age

    Intimate privacy in the digital age

    Professor Danielle Citron’s book, The Fight for Privacy, explores intimate privacy and the challenges of protecting personal information in the digital age.

  • We delve into privacy and the First Amendment with Professor Mary Anne Franks, who shares insights from her book Fearless Speech.

    Privacy and the First Amendment

    We delve into privacy and the First Amendment with Professor Mary Anne Franks, who shares insights from her book Fearless Speech.

  • Cyber War Games with Sarah Gossler

    Cyber war games with Sarah Gossler

    If cyber war games sound like your idea of fun, then this is the conversation for you! We're speaking with Sarah Gossler, the global head of Cyber Threat Simulation and the Engineering chief of staff at BNY Mellon. Sarah manages BNY Mellon's Office of the CIO and is responsible for cyber-attack-simulation training.

  • Professor Hartzog on Web Scraping, AI, and Privacy

    Professor Hartzog on web scraping, AI, and privacy

    We discuss web scraping, AI, and privacy with Professor Woodrow Hartzog from Boston University School of Law.

Valerie Montague / Healthcare Lawyer / Nixon Peabody LLP
Hospitals, physician practices, and other entities that use pixel-tracking technologies should analyze whether they are impermissibly disclosing patient protected health information.

Valerie Breslin MontaguePartner

Insights And Happenings

View All
View All

Subscribe to stay informed of the latest legal news, alerts, and business trends.Subscribe