Troy Lieberman

/My focus

Data Privacy, Cybersecurity & Artificial Intelligence

I advise clients on developing and scaling data-driven products and services, designing global privacy and cybersecurity compliance programs, managing data breach and security incidents, implementing responsible and compliant uses of AI, and complying with other consumer protection, marketing, and advertising laws.

I counsel companies on compliance with developing privacy and cybersecurity laws and regulations, including the California Privacy Rights Act (CCPA/CPRA) and other US state privacy laws; the General Data Protection Regulation (GDPR); the Telephone Consumer Protection Act (TCPA) and other marketing and advertising laws; the California Invasion of Privacy Act (CIPA); the Video Privacy Protection Act (VPPA); the Children’s Online Privacy Protection Act (COPPA); and the Gramm-Leach-Bliley Act (GLBA). I help clients innovate and grow while navigating these complex regulatory frameworks, build scalable compliance programs, and advise boards of directors and executive teams on risk mitigation.

I also represent clients facing regulatory investigations and high-stakes litigation under these laws. I have advised and defended technology, consumer, healthcare, and financial companies in enforcement actions and class-action lawsuits under the TCPA and related state laws, CIPA, the FCRA, and unfair and deceptive practice statutes in state and federal courts across the country.

Technology Transactions

I counsel clients on a wide range of commercial and technology transactions, including structuring and negotiating strategic licensing arrangements, services and software-as-a-service (SaaS) agreements, joint ventures, and other deals involving the creation, acquisition, licensing, or commercialization of intellectual property. My work often involves complex data-use rights, privacy considerations, and regulatory constraints tied to advanced technologies and AI.

Outside General Counsel

I serve as outside general counsel to emerging companies and privately held businesses, leveraging my experience scaling and leading legal and compliance teams and advising the board of directors and executive team at a late stage technology company. I provide practical, risk-adjusted advice on both strategic and day-to-day matters, including corporate governance, venture capital, mergers and acquisitions, and other operational matters.

Past experience

• Vice President of Legal at Attentive Mobile, a late-stage AI and marketing-technology platform where he built and led legal and compliance teams responsible for data privacy & cybersecurity, compliance, product counseling, intellectual property, technology transactions, litigation, and public policy, among other responsibilities.
• Prior to Attentive, Troy began his legal career at Nixon Peabody as the deputy leader of the Privacy & Cybersecurity practice group and leader of the TCPA & Consumer Privacy Team, where he litigated technology and privacy disputes and advised clients on regulatory compliance.
• Prior to law school, Troy was a business transformation consultant at IBM, where he advised clients on business process improvement.

/Looking ahead

AI adoption, rising privacy expectations, and accelerating regulatory scrutiny are reshaping how companies operate. The organizations that will win in this environment are those that truly understand their data—how it moves, how it can be used, and how to govern it responsibly. By investing in data fluency and compliance frameworks, businesses can innovate confidently, deliver products faster, and make sharper, more informed decisions. For forward-looking companies, compliant and strategic data use won’t just mitigate risk, it will be a defining competitive advantage and the foundation of scalable, sustainable growth.