In an age where nearly every company collects personal information about its consumers and employees, and more and more companies develop websites, apps and products for the Internet of Things — all businesses must grapple with the difficult questions of how to safeguard sensitive data, comply with data security and privacy laws, avoid data breaches, and respond to breaches if and when they occur. With decades of experience in digital media and privacy law, attorneys at Frankfurt Kurnit advise clients on complex information privacy and data security matters throughout every stage of the information life cycle.To keep up with the rapid-fire changes in Privacy and Data Security law, subscribe to Frankfurt Kurnit's Focus on the Data blog today.
Our Privacy & Data Security lawyers advise consumer products companies and their agencies, digital publishers, law firms and businesses of every size about how to better protect their data, comply with US and international laws, and respond to data breaches.
Privacy & Data Security Programs - Client Benefits
Take first steps. We help clients assess vulnerabilities and establish a risk profile to develop data breach response plans, including data audits and classification projects, tag and cookie management programs, vendor management, and data security amendments.
Safeguard customer and employee information. We create and implement privacy and data security policies that maintain the confidentiality of personal customer and employee information, and help clients avoid liability for illegally transferring or acquiring customer or employee information.
Implement Privacy by Design. We advise clients on how to build privacy safeguards into their websites, apps, and devices for the Internet of Things — from the beginning of the design process forward.
Comply with US State and federal data management requirements. We help clients institute policies and procedures that comply with the Children’s Online Privacy Protection Act, Gramm-Leach-Bliley, HIPAA, CAN-SPAM, the Payment Card Industry Data Security Standard, and other laws.
Comply with international privacy regulations. We help clients comply with EU data protection and telecommunications privacy directives, prepare for the EU-US privacy shield, prepare for GDPR , and address other international compliance issues.
Leverage data. We advise on how to legally target, track, and market online in ways that properly leverage customer data. We work with our Advertising Group to advise clients on which Digital Advertising Alliance self-regulatory principles (i.e., AdChoices) to adapt to their business models.
Reduce risk. We deploy our extensive technical understanding of hardware, software, and networking systems to help clients design privacy into their businesses, websites, new products, and applications.
Data Breach Response - Client Benefits
Respond to data breaches. We quickly advise clients on how to assess and remediate sensitive data breaches, work with law enforcement officials, notify affected customers and employees, interact with government and regulatory agencies and third-party vendors, and manage press relations.
Identify the problem. Our skilled team helps to conduct internal investigations for company boards and senior management to identify the source of a breach often in collaboration with trusted forensic experts.
Disclosing the breach. We advise boards and owners on data breach reporting to comply with HIPAA, the Gram-Leach-Bliley Act and state regulations.
Win privacy and data breach lawsuits and respond to regulatory investigations. We defend against FTC and state regulatory enforcement actions, respond to customer or employee complaints, and help clients resolve other privacy and data-related law disputes.
Post-breach counselling. We advise clients on the best route going forward, and help plan and implement programs to reduce the risk of a recurrence.
S. Gregory Boyd, Tanya Forsheit, Jeremy Goldman, the co-chairs of our Privacy & Data Security Group, are accredited by the International Association of Privacy Professionals as Certified Information Privacy Professionals with a focus in US private-sector privacy law.