Lewis Rice’s Data Protection Practice Group helps companies mitigate risk by advising on compliance and best practices for data management and incident preparedness and by providing critical legal counsel after security incidents. In an evolving digital landscape that is increasingly vulnerable to threats, our attorneys have handled numerous matters that have saved our clients’ money and reputational damage.

Our Services

Cybersecurity

We help our clients prepare for security incidents before they occur by:

  • Conducting risk assessments and audits.
  • Drafting agreements and contracts for domestic and international data transfers.
  • Analyzing cyber liability and data security insurance policies and claims.
  • Designing and implementing incident response plans.
  • Enabling compliance with an increasingly complex domestic and global regulatory environment and industry standards.

U.S. State Privacy Laws

Several states have enacted comprehensive privacy laws that increase protections for consumers' personal data, provide consumers with certain rights to control their personal data, and regulate businesses’ use of consumers’ personal data. As consumer demand for data privacy and autonomy continues to grow, many other states are expected to enact similar legislation, so it’s important for companies to take a proactive approach. Our attorneys regularly assist clients with:

  • Creating and updating privacy policies and procedures.
  • Advising on the collection, use, and management of consumer and employee data.
  • Mapping their data inventory across their organization.
  • Ensuring compliance with current laws and regulations.

For more information, visit our U.S. State Privacy Laws webpage.

Class Action Litigation

Security incidents that compromise the personal data of consumers or employees can expose companies to costly and time-consuming class action lawsuits in state and federal court. Our attorneys have experience successfully defending cybersecurity and data privacy class action cases and are prepared to counsel your company in the event of a security incident.

Cyber Liability Insurance

In the face of new and evolving cybersecurity threats, companies need robust coverage. Our attorneys help clients evaluate, negotiate, and enforce their cyber liability insurance policies. We take a proactive approach, assessing coverage before claims arise and ensuring clarity in complex insurance plans. If a claim arises, our adept team strategically positions it for maximum insurance recovery. Additionally, we work with clients to identify coverage gaps, eliminate duplications, and reduce insurance costs.

Lewis Rice routinely advises clients regarding exposures associated with the following:

  • First-party coverage under cyber policies and other lines of coverage for costs associated with privacy counsel, forensic investigations, notification costs, credit monitoring, and more.
  • Data security-related claims associated with investigations by federal and state regulatory authorities.
  • Claims involving sensitive personal information as well as large-scale data security breaches involving sensitive health or financial information.
  • Ransomware and extortion claims.
  • Claims involving network outages made by third parties against insureds.
  • Business interruption claims under cyber policies.
  • Claims involving data security and other coverage lines, including general liability, E&O, and D&O policies, as well as business email compromise or email schemes and wire fraud under commercial crime insurance policies.

Our Clients

At Lewis Rice, we specialize in providing comprehensive legal representation to companies of all sizes across the United States. Our expertise extends across diverse industries, including finance, health care, technology, manufacturing, hospitality, and entertainment. In an era where data protection is paramount, every company faces the challenge of navigating intricate legal frameworks.

Our Approach

Lewis Rice’s Cybersecurity & Data Privacy attorneys understand the ability to collect and share data creates both opportunities and liabilities for companies. That is why we take a comprehensive approach by helping clients harness the value of their data while also meeting compliance requirements and minimizing risk.

From assistance with a specific cybersecurity or data privacy concern, defending against a class action lawsuit or providing ongoing compliance support, we can tailor our services to your needs. We immerse ourselves in your organization and industry so we can effectively and efficiently meet your unique goals now and in the future.

We also stay up to date on best practices for data privacy and security as well as ever-changing laws and regulations. Our attorneys keep you informed through numerous resources, including Quick Reference Guides on state privacy laws, regular client alerts and e-mails about issues pertaining to your company.