Data Privacy & Security

Data privacy and security is a top concern for general counsel and their corporate legal departments. Yet, limited time, lean resources and comThe data privacy and cybersecurity team helps clients conquer complicated, evolving privacy and cybersecurity challenges, while developing and implementing strategic plans to manage and mitigate risks. By monitoring emerging threats, regulatory changes and industry best practices, we ensure clients maintain a business-friendly and operationally feasible compliance regime.

How We Help

• Available 24/7 to respond in real time, our team has assisted hundreds of clients across industries navigate cybersecurity incidents to successful resolution. Understanding legal support is one element of effective incident response, we engage trusted third-party providers under terms designed to preserve attorney-client privilege and work product protections.
• Adept at identifying, organizing and protecting customer data, proprietary business data, employee data and/or donor data, we ensure clients responsibly manage and use data and leverage it for intelligence-enhancing and revenue-generating purposes.
• With hundreds of pixel-tracking lawsuits filed daily against companies and cyber-litigation mills increasingly filing data breach cases, McGuireWoods has the experience and market knowledge to manage any type of lawsuit.
• As the state-level patchwork of privacy legislation continues to grow and Congress gains momentum with federal privacy legislation, our team provides comprehensive, customized solutions to ensure compliance. Providing more than counseling on policy development, we help clients implement supporting procedures that integrate into their operational practices.
• Purchasing or financing a business without adequate due diligence on the target company’s privacy/security compliance regime and security incident history can result in hidden risks and costs post-closing. Our team has handled hundreds of M&A, private equity and debt finance transactions to ensure client buyers, investors, portfolio companies and lenders are protected from privacy and cybersecurity issues that impact these deals.

Representative Experience

• One of the world’s largest banks regarding inadvertent disclosure of millions of customers’ personal information;
• Large international hospitality company regarding information governance and data lifecycle management, data inventorying and mapping, customized internal and external policies and procedures, multijurisdictional compliance program and gap analysis;
• Large energy company in defense of seven data breach class actions in the Western District of North Carolina;
• Nationwide chain of healthcare clinics in a putative class action and two arbitrations alleging privacy law violations based on pixel-tracking and the purported collection of patient data; and
• Top 500 LTL logistics company with the development and implementation of an enterprise data protection and governance program including information identification/inventory, externally facing and internal privacy notices and required disclosures, CCPA/CPRA compliance and procedures, data privacy and security policies, mobile app policies and terms, among other issues.

Download a copy of our brochure “California Data Privacy: What You Need to Know.”

Password Protected Blog

Insights on data privacy and security news and trends.