Andrew's practice is singularly focused on protecting clients' businesses and data, anticipating disputes, and strengthening their competitive position in the marketplace.
Data Privacy and Security
As chair of the firm’s data privacy and security team, Andrew leads a nationally recognized team of professionals dedicated to protecting clients’ systems, networks and data, managing information, and responding to cyber incidents.
In his own practice, Andrew assists clients in the development of information governance and data protection programs, and regularly counsels clients on data breach remediation, as well as privacy and security issues in vendor contracts and M&A/private equity transactions. Andrew principally focuses on proactive protective measures that a company can employ in the construction of its policies and critical contracts in order to prevent the occurrence of security breaches, investigations, lawsuits and similar harmful events. He also counsels clients on interpreting and complying with the Payment Card Industry Data Security Standard (PCI/DSS).
Andrew speaks and writes regularly on topics relating to privacy, security and vendor contract management. He was recognized as a “Leading Lawyer” in cyber law by Legal 500 in 2017. He holds the CIPP/US credential as a Certified Information Privacy Professional from the International Association of Privacy Professionals (IAPP).
Supply Chain Management
Andrew also chairs the supply chain management practice, helping clients anticipate and avoid costly disputes and litigation with their vendors and institutional customers. He and his team provide (usually on an alternate fee basis) an individually customized and comprehensive review and evaluation of the client’s suite of contracts, together with suggested recommendations for remedying deficiencies determined during the analysis. Depending on the client’s needs and objectives, he can then undertake a full-scale revision and renegotiation of the relevant agreements, or develop a more targeted approach of focusing only on the essential provisions.
A Business-focused Background
Andrew also has experience in general corporate governance, mergers and acquisitions and private equity. He has counseled companies on a variety of corporate topics and transactions, including entity selection and formation, equity and debt financings (control and non-control), securities compliance, employment matters and technology licensing.
Andrew has a background in consulting and holds an MBA from the Darden School of Business at the University of Virginia. This experience provides him with a keen understanding of the operational, financial and strategic needs of clients, enabling him to take a practical business approach to serving their needs. He has experience representing clients in numerous industries, including a specific emphasis on telecommunications, financial services and manufacturing companies.
Co-led a team that advised a large financial institution on one of the most complex, high-value disclosures of sensitive customer information in history. The investigation involved all 50 U.S. states and over 30 foreign jurisdictions.
Regularly advise client on maintaining the security and integrity of its credit/debit card data and payment systems, as well as compliance with Payment Card Industry and Payment Application Data Security Standards, focusing on ensuring the proper use, storage, transmission, access and monitoring of cardholder data and sensitive authentication data.
Representation of leading prepaid wireless carrier in the drafting and renegotiation of its portfolio of key service provider contracts dealing with the multichannel distribution and billing of airtime, processing of airtime payments, and reporting of key sales and expense metrics.
Advise telecommunications client in connection with its provision of retail and wholesale cloud services, including SaaS and IaaS offerings.
Representation of wireless provider on data privacy, information security and payment processing matters relating to its partnership with a Big Three automobile manufacturer to provide interactive vehicle connectivity services.
Representation of Fortune 100 cable services provider in the drafting and negotiation of contracts relating to the build-out and management of a private cloud computing structure, including successfully managing the software license, maintenance and service level negotiations, as well as the development of key specifications.
Counsel to Fortune 100 wireless telecommunications provider in negotiating with an industry-leading debit card provider to migrate the client's rebate submission and issuance program from a check-based system to a prepaid debit card-based system.
Representation of multiple technology and healthcare companies in connection with various M&A transactions, venture capital investments and private equity financings.
Regularly advise cable provider in the negotiation of complex procurement and critical infrastructure agreements.
Counsel to telecommunications client on various initiatives designed to broaden and enhance the functionality of its enterprise-wide recurring payment processing systems, including analyzing all applicable laws, regulations and standards, and presenting business-friendly legal solutions that enable these systems to function and grow.
Representation of medical device companies in negotiating strategic alliance, linking and intellectual property licensing transactions.
Negotiation of key business and legal terms on behalf of financial services company with its e-commerce and online banking services provider, focusing on consumer electronic billing and payment services, e-bill hosting and distribution services, service level agreements, pricing models, integration of legacy platforms and protocols relating to information security, fraud management and disaster recovery.
Representation of international property and casualty insurance company in negotiating and drafting global information systems outsourcing agreements with ACS Outsourcing Solutions.
Representation of Southeast regional supermarket chain in negotiating and drafting technology, pharmacy and consumer products vendor contracts, including agreements with Western Union, IDT Telecom, Taleo and Accruent.
Negotiation and documentation for leveraged buyout of assets of manufacturing business.
Representation of international industrial thread manufacturing company in negotiating and drafting various supply chain and customer contracts, including agreements with General Electric, Michelin and Kimberly-Clark.
Negotiation and documentation of value added reseller and sales agent agreements for publicly held industrial products company.
Member, North Carolina Bar Association
Member, North Carolina Bankers Association
Chairman, Men for Change, Domestic Violence Prevention, 2005-2010
Board of Directors, Oratorio Singers of Charlotte, 2006-2010
Member, The Virginia Bar Association
The rules of professional conduct in some jurisdictions require disclosure of selection methodology for certain public accolades and recognitions. Click here to view available selection methodologies.
Selected for inclusion in “Legal 500 United States,” Cyber Law, 2020, 2021
Selected for inclusion as a "Leading Lawyer," Cyber Law, Virginia, Legal 500 US, 2017-2018
Named to "Legal Elite," Virginia Business, 2011, 2012, 2014
McGuireWoods Among Leading Law Firms for Cybersecurity & Data Privacy in BTI Survey
April 2, 2020
BTI Names McGuireWoods One of Best Cybersecurity Law Firms in United States
May 1, 2017