Data Security & Privacy

Stay In Compliance. Build Infrastructure. Learn How.

SK&S attorneys bring unique expertise to our data privacy and security practice, having built mission-critical programs from inside dozens of organizations. While we specialize in GDPR and CCPA compliance, we have helped clients in education, technology, e-commerce, healthcare, hardware, and software comply with the complex and overlapping laws governing data privacy and security, including. In the emerging field of cybersecurity laws, SK&S offers technical and legal expertise and experience implementing the NIST and ISO cybersecurity frameworks. Using our years of in-house experience, we help companies identify gaps in their security programs, and counsel companies in responding quickly to potential breaches while maintaining business continuity.

Specialties

• Product, website, and mobile application privacy policies

• Compliance programs for GDPR, CCPA, HIPAA, COPPA, FERPA, CAN-SPAM, PPRA, CALOPPA, other state laws, and more

• Assessing and custom-building privacy and security infrastructure

• Incident response plans, vendor data processing agreements, and data mapping

• International data transfers and data protection impact assessments

• Compliance for online advertising (cookie policies, behavioral marketing, consent flows, email program administration)

• Transaction diligence, negotiation, and drafting

• Data monetization

• Data sharing and international transfers

• Gap assessments

• Regulatory inquiry and response

• Data breach response

• Company training on all of the above, including table-top exercises