Cybersecurity and data privacy constitute some of the biggest challenges facing companies and consumers. In today's online world, it is routine for companies to collect and share personal data that can be accessed from anywhere in the world. Although this technology gives rise to tremendous opportunities for our clients, it also creates potential serious risk. Lewis Rice attorneys assist companies with putting themselves in the best position to mitigate that risk, by advising on compliance and best practices for data management and incident preparedness and providing critical legal counsel in the immediate aftermath of cyber incidents. Our team is experienced in defending regulator and consumer class action enforcement actions. Our attorneys also design and implement privacy and security programs including audit and risk assessments, global policies, national and international data transfer agreements, and innovative structures, processes, and arguments to enable organizations to comply with an increasingly complex global regulatory environment.

Our cybersecurity and data privacy attorneys have experience with the following:

  • Data security, data loss prevention, and data breaches
  • Drafting agreements with adequate data security protection to minimize client data loss
  • Creating and implementing customer privacy policies and procedures, including those related to marketing, data security policies, website privacy policies, and email and Internet monitoring policies and protocols
  • Drafting contracts to facilitate cross-border data transfers
  • Collection and use of employee and consumer personal data
  • Cybercrime and data breach insurance policies and claims
  • Cybercrime incident preparedness, response, breach notifications, and related internal and external investigations
  • Data sharing, including exploitation of big data
  • Payment card association, post-breach penalties, and audits
  • Incident response planning and execution