Data Privacy & Security

McGuireWoods’ data privacy and security team helps clients understand their risks, then works with them to prioritize their investments, resources and efforts to mitigate those risks.

Data privacy and security is a top concern for general counsel and their corporate legal departments. Yet, limited time, lean resources and competing priorities are a reality. As such, many companies assume some cybersecurity and privacy risks.

Clients turn to our global interdisciplinary team for solutions in three main areas:

  • Information Governance – establishing a thoughtful, practical set of information and records management policies buoyed by a comprehensive inventory and classification of corporate information across all business lines.
  • Incident Response and Remediation – planning for and responding to cybersecurity incidents or data breaches in an effective, efficient and legally compliant manner, then assisting in the creation and implementation of new, responsive controls.
  • Information Assurance – assessing the strengths and weaknesses of their cybersecurity profile and developing a comprehensive cybersecurity strategy.

Team Credentials

Clients invest in us, so we invest in our people. Credentials among our team include:

  • Certified Information Privacy Professional (CIPP) certification, a key industry benchmark that demonstrates a strong understanding of U.S. or EU privacy laws and regulations.
  • Certified Information Privacy Manager (CIPM), the only certification in privacy program management. Demonstrates a deep knowledge in developing, managing, and operating a privacy program within an organization’s broader privacy strategy. 
  • Fellow of Information Privacy (FIP), a designation for professionals with comprehensive knowledge of privacy laws, privacy program management, and essential data protection practices, as well as considerable on-the-job experience.
  • CompTIA A+ certification, the preferred qualifying credential for technical support and IT operational roles. Demonstrates an understanding of a wide variety of issues ranging from networking and operating systems to mobile devices and security.
  • PCI Professional (PCIP) qualification from the Payment Card Industry Security Standards Council, which demonstrates a deep understanding of how to build a secure payment environment and help an organization achieve PCI compliance.

Notable Accolades

  • Named a “Leading Cybersecurity Law Firm” by top legal decision-makers at companies with $1B+ in revenue (BTI Consulting, 2017).
  • Recognized for “critical legal and technical expertise” in cyber law across sectors (Legal 500 US, 2019).
  • Highly regarded for data protection, data transfers and data breaches (Legal 500 EMEA, 2016-2018).
  • Recognized for EU Data Privacy and Protection (Legal 500 EMEA, 2018).

Stay Informed

Our team regularly provides insights on developments in cybersecurity, data privacy and breach laws, information governance best practices and risk management issues through our Password Protected blog.


McGuireWoods LLP - CCPA What You Need To Know

Download a copy of our brochure “California Data Privacy: What You Need to Know.”

Team Leaders

Full Team
Back to top