Cybersecurity & Data Privacy
Cyberattacks and data breaches pose an ever-increasing threat to businesses and consumers. With the growth of our digital economy, companies must also manage privacy concerns related to how personal information is collected, used, disclosed and protected. As new regulations address these issues, it is critical for companies—whether Fortune 500 corporations or closely-held family businesses—to put policies in place that address privacy rights, prepare for cybersecurity incidents and comply with quickly evolving governmental requirements.
The Crowe & Dunlevy Cybersecurity & Data Privacy Practice Group provides leadership and assistance in navigating these issues. We get to know our clients, their business models and their corporate identity to create and implement robust cybersecurity and data privacy plans. Our attorneys also help with investigating data breaches, coordinating incident responses and assessing reporting requirements. Our practice group partners with clients to develop privacy policies, provide training on issues of data security, respond to inquiries from regulators and defend against litigation.
Compliance and Audits
Cybersecurity crosses all disciplines and industries. Crowe & Dunlevy’s diverse practice areas converge in the Cybersecurity & Data Privacy Practice Group to provide clients a comprehensive and unified team to assist in protecting their networks and digital information. Whether developing a cybersecurity incident response plan for a client in the energy and natural resources industry or responding to a potential breach for a healthcare client, our attorneys work collaboratively to provide a comprehensive approach to our clients’ cybersecurity needs.
We also work with third party cybersecurity experts to audit response plans, security policies and employees’ compliance with these policies. Such audits are essential to allow clients to assess whether their compliance and security programs are adequate and functional. Audits also provide insight regarding the sufficiency of employee training related to data security.
Data Breach Preparedness and Response
The impact of a data breach or cybersecurity incident can be devastating for companies—often impacting operations, customers, reputation and profits. Our breach response team stands ready to assist clients with regulatory and investigation needs in the event of a data incident. Our regulatory attorneys have experience helping clients navigate both state and federal breach notification and disclosure requirements—including evaluating whether such requirements apply and drafting appropriate notices where needed.
We have has experience advising clients on the compliance obligations imposed by a variety of data privacy laws, including:
- California Consumer Privacy Act (CCPA)
- Computer Fraud and Abuse Act (CFAA)
- Gramm-Leach-Bliley Act (GLBA)
- Electronic Communications Privacy Act (ECPA)
- Fair and Accurate Credit Transactions Act (FACTA)
- Fair Credit Reporting Act (FCRA) and state credit reporting laws
- EU General Data Protection Regulation (GDPR)
- Health Insurance Portability and Accountability Act of 1996 (HIPAA)
- Health Information Technology for Economic and Clinical Health Act (HITECH)
- Telephone Consumer Protection Act (TCPA)
- CAN-SPAM Act
Litigation and Trial
When litigation is needed, our well-rounded team can help you assess potential claims, evaluate your exposure, and defend you in court or before administrative tribunals. In an era of increasing litigation surrounding data privacy events, it is particularly important to have experienced counsel who can help preserve privilege, manage liability and litigate in a flexible and client-specific fashion. Crowe & Dunlevy’s Cybersecurity & Data Privacy Practice Group—comprised primarily of litigators and former litigators who have represented clients in a wide variety of matters—is uniquely positioned to do so. We strive to understand your needs and litigate with an eye not just on achieving the best outcome, but on achieving the best outcome for your matters.