We help clients design, review, and update privacy and cybersecurity policies that meet the demands of today’s complex regulatory landscape. Our work spans both domestic and international requirements, ensuring your business stays compliant wherever it operates.

 

Our experience covers a broad range of privacy, data protection, and cybersecurity laws, including:

 

• U.S. federal and state laws – Biometric Information Privacy Act (BIPA), California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), Children’s Online Privacy Protection Rule (COPPA), Gramm–Leach–Bliley Act (GLBA), Fair Credit Reporting Act (FCRA), Controlling the Assault of Non-Solicited Pornography and Marketing Act (CAN-SPAM), Electronic Communications Privacy Act (ECPA), Family Educational Rights and Privacy Act (FERPA), Student Online Personal Information Protection Act (SOPIPA), Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Data Security Standard (PCI DSS), Telephone Consumer Protection Act (TCPA), and Video Privacy Protection Act (VPPA).

• International frameworks and laws – EU and UK General Data Protection Regulation (GDPR), EU ePrivacy Directive, China’s Personal Information Protection Law (PIPL) and Cyber Security Law (CSL).

 

 

​