Cybersecurity and Data Privacy
Assessing cybersecurity and data privacy risk and responding to data breach incidents are critical to any business today. Schulte Roth & Zabel’s lawyers work with the world’s top asset managers, financial institutions and companies operating across a broad range of industries in managing the risks associated with data protection and privacy laws. The practice includes lawyers from multiple disciplines across the firm who possess extensive regulatory, counseling, transactional, enforcement and litigation knowledge and experience. We closely monitor proposed laws, regulations and regulatory guidance to counsel clients on an increasingly complex web of federal, state and non-U.S. requirements.
Services
We deploy our extensive experience handling data security and privacy issues to matters such as:
- Compliance counseling on information security policies and procedures
- Data breach litigation
- Security risk assessment and security incident preparedness
- Breach response and internal investigations
- Representation in responding to investigations, enforcement actions or litigation brought by federal or state regulators
- Counseling on risk related to data scraping and use of other alternative data sources
- Mitigation of risk and loss recovery through the purchase of cyber risk and crime insurance, including counseling on the emerging cyber risk insurance market and review of cyber risk insurance products
- Negotiation of vendor agreements, including with information technology vendors, data providers, administrators and prime brokers
- Preparation of online privacy policies and terms of use
- Due diligence and risk allocation advice for business transactions of all types, including mergers, acquisitions, restructurings and joint ventures
- Preparation and review of documents and participant communications required by HIPAA, including privacy and security policies and procedures, notices of privacy practices and business associate agreements
