Data Security & Privacy

Practice Areas


Data Security and Privacy Will Be a Top Legal Priority in 2020 and Beyond.

SK&S attorneys bring unique expertise to our data privacy and security practice, having built mission-critical programs from inside dozens of organizations. While we specialize in GDPR and CCPA compliance, we have helped clients in education, technology, e-commerce, healthcare, hardware, and software comply with the complex and overlapping laws governing data privacy and security, including. In the emerging field of cybersecurity laws, SK&S offers technical and legal expertise and experience implementing the NIST and ISO cybersecurity frameworks. Using our years of in-house experience, we help companies identify gaps in their security programs, and counsel companies in responding quickly to potential breaches while maintaining business continuity.

Stay In Compliance. Build Infrastructure. Learn How.


  • Product, website, and mobile application privacy policies

  • Compliance programs for GDPR, CCPA, HIPAA, COPPA, FERPA, CAN-SPAM, PPRA, CALOPPA, other state laws, and more

  • Assessing and custom-building privacy and security infrastructure

  • Incident response plans, vendor data processing agreements, and data mapping

  • International data transfers and data protection impact assessments

  • Compliance for online advertising (cookie policies, behavioral marketing, consent flows, email program administration)

  • Transaction diligence, negotiation, and drafting

  • Data monetization

  • Data sharing and international transfers

  • Gap assessments

  • Regulatory inquiry and response

  • Data breach response

  • Company training on all of the above, including table-top exercises