Data Privacy Guidance & Cyber Security Legal Services
Cybersecurity and Internet Privacy Guidance
- Technology Counsel
- Data Breach Response Plans & Litigation
- Document Retention Policies and Procedures
- SOC, HITRUST and Other Certification Guidance
Privacy Compliance Attorneys
- GDPR & CCPA Compliance
- GLBA, FTC & PCI Compliance
- HIPAA & HITECH Compliance
Manage Your Risks
Helping Clients Navigate the complexities of Cyber Security
As data security incidents grow in frequency and severity, regulators around the world are implementing changes to laws or regulations. As a result, your data security obligations are evolving and changing constantly.
KJK’s cyber security attorneys are experienced in helping clients navigate the complexities of managing their cyber security and data privacy risks. Our team assists in responding to data security breaches, providing cybersecurity incident response planning and preparing document retention policies.
We also help clients negotiate data sharing and data access agreements, internal and external privacy policies, and highlight data security issues in insurance policies.
Our Philosophy:
Cyber Security as a Company Culture.
We believe that data privacy must be built into the DNA of each of our clients. Our Cybersecurity, Data Breach & Privacy attorneys can assist clients in compliance with (and investigations related to) various data privacy laws and regulations, including reviewing contracts with third parties to ensure that they are in compliance with privacy regulations. This includes FTC privacy regulations, the “privacy by design” framework, FDA medical device privacy requirements and specific international and domestic data privacy regulations that control the collection, use, processing and transmission of certain kinds of data.
Data Privacy Laws & Regulations:
- Act as external “Data Protection Officer” for companies
- CCPA
- Children’s Online Privacy Protection Act (COPPA)
- Create and review privacy policies and contractual privacy protection provisions
- Electronic Communications Privacy Act (ECPA)
- GDPR
- Minnesota Government Data Practices Act (Minn. Stat. § 13)
- New York Consumer Privacy Act (NYPA)
- “Privacy by Design” review
- Privacy litigation and enforcement actions
Our Data Privacy Services
- Contract Review
- New Product/Service Compliance Review
- Privacy Policy Development and Review
- External CPO Services
Service:
Cyber Security Insurance Audits
A complete understanding of a company’s insurance program is key to maximizing protection against cyber risk. Our team will review your current policies of insurance and determine whether and to what extent you may need additional coverage.
Service:
Information Security & Privacy Compliance Attorneys
KJK’s Cybersecurity, Data Breach & Privacy attorneys can review contracts, agreements, policies and procedures, as well as software, hardware and medical devices (with appropriate partners) to determine whether a client is in compliance with appropriate laws and regulations, including those outlined below. Additionally, we advise clients on developments in the law regarding data security requirements.
Our Data Privacy Attorneys Give Guidance on the Following Information Security Laws:
- Cyber-insurance (data breach, e-commerce, fund transfer, insider fraud) review
- FDA Part 11 data security and electronic records requirements
- FERPA – Educational Records Privacy
- FFIEC Guidelines (banks and similar financial industry security regulations)
- FTC Act, Section 5 data privacy and data security requirements
- Gramm-Leach-Bliley Act (financial services industry)
- Health Insurance Portability and Accountability Act (HIPAA) and HITCEH medical information privacy and security laws and regulations
- Standards for The Protection of Personal Information of Residents of the Commonwealth (201 CMR 17.00)
- Mergers & Acquisitions (M&A) contingent liability
- National Institutes of Standards Information Security Guidelines (NIST)
- NERC/FERC – Energy Regulations
- New York 23 NYCRR 500 (NY Banking regulations on cybersecurity)
- Payment Card Industry Digital Security Standards (PCI-DSS)
- SEC Cybersecurity Guidance compliance for publicly traded companies
- Third party contract review
- UCC 4A (reasonable security for funds transfer)
Cyber Security & Data Breach
Read Our Blog
Will the U.S. Ban TikTok? New Legislation That Could Impact Your Data Privacy
A new bill was introduced last week that would ban TikTok and other foreign technology. The bipartisan bill would provide the federal government with the authority to restrict or ban the Chinese-owned video app TikTok, along with technologies produced in six different...
Hunter Biden’s Laptop Revisited: What it Means for Cloud Storage
This article was originally published by Security Boulevard (https://securityboulevard.com/2023/02/hunter-bidens-laptop-revisited-what-it-means-for-cloud-storage/). On February 1, 2023, lawyers for first son Hunter Biden took a new approach to the fact that the...
CyberInsurance Predictions for 2023
This article was originally published by Security Boulevard (https://securityboulevard.com/2023/01/cyberinsurance-predictions-for-2023/). It is difficult to predict with certainty what the top trends in cyberinsurance will be in 2023, as the field is constantly...
Cybersecurity & Data Breach
ATTORNEYS
Mark D. Rasch
CHAIR
Brett Krantz
PARTNER
Alex M. Welsh
ASSOCIATE
Contact
CLEVELAND OFFICE
1375 East Ninth Street
One Cleveland Center, 29th Floor
Cleveland, OH 44114-1793
COLUMBUS OFFICE
10 West Broad Street
One Columbus Center, Suite 1900
Columbus, OH 43215