REGULATORY & ADMINISTRATIVE LAW

Data Security & Information Privacy

Every business collects, stores and manages personal information. Some businesses handle particularly sensitive information, such as health care or financial information. Whether digital or in paper format, companies are responsible for managing and protecting sensitive information, and that’s no small challenge.

REGULATORY & ADMINISTRATIVE LAW PRACTICES

Jim Gallagher and Chris Marino

Our work includes:

  • anticipating developments that will impact businesses
  • creating and designing systems and software to maintain data security
  • developing, reviewing and ensuring compliance with the necessary plans, policies, agreements and terms of service to comply with state and federal data security laws and regulations, including tough new rules in California and Massachusetts
  • determining when security threats rise to the level of actionable security breaches
  • counseling for and assisting with breach response activities
  • ensuring compliance with international data security and privacy requirements, including the European Data Protection Regulation (GDPR) and the European Privacy Regulations
RESULTS

Proof positive.

  • Represent companies in developing and refining WISPs and related policies such as incident response plans, record retention polices, emergency recovery plans, website terms and conditions, and website privacy policies, including for a large retailer with operations in New England, Metro New York and Mid-Atlantic states.  
  • Review HIPAA/HITECH compliance issues for a fast-growing medical software company. 
  • Assist health care clients with HIPAA/HITECH compliance, including preparing internal policies, business associate agreements, and license and service agreements.  
  • Advise corporate clients on data security issues raised in both buyer- and seller-side mergers and acquisition transactions.  
  • Counsel companies in evaluating potential security breaches and required response activities and disclosures.  
  • Counseled a cloud security company in assisting U.S. and European clients on privacy compliance matters and in licensing matters.
  • Counseled companies on revising terms and conditions, privacy policies and other documents to achieve and maintain compliance with GDPR and other international data regulations.  

REGULATORY & ADMINISTRATIVE LAW ATTORNEYS

Meet the Data Security & Information Privacy Team.

Meet All Of Our Attorneys
Tamsin Kaplan

Tamsin R. Kaplan

Learn More
Sam Mawn-Mahlau

Sam A. Mawn-Mahlau

Learn More
Robert Munnelly

Robert J. Munnelly, Jr.

Learn More

RESOURCES

Happenings, headlines and insights.
See what’s new at Davis Malm.

View Our Regulatory & Administrative Law Resources

Publications

January 31, 2024

Massachusetts Taxation and DOR Practice Guide

Read More

Publications

January 31, 2024

Adult-Use Cannabis Licensing (MA)

Read More

Alerts

January 22, 2024

Six Data Security and Privacy Action Items for 2024

Read More

Publications

January 20, 2024

Phil Olsen Serves as Contributing Author for 2022-2023 ABA Sales & Use Tax Deskbook

Read More

Firm Announcements

January 18, 2024

Rob Munnelly Re-Elected to NECA Board of Directors for Ninth Consecutive Year

Read More

Speaking Engagements

December 11, 2023

2023 Massachusetts State Tax Update

Read More

Alerts

November 29, 2023

Highlights of the New Massachusetts Rules Implementing the Cannabis Act

Read More

Speaking Engagements

June 2, 2023

Annual Massachusetts Tax Update

Read More

Speaking Engagements

May 21, 2023

New England Wholesale And Retail Markets – Crisis And Opportunity

Read More

Contact Us

Need Regulatory & Administrative Law Counsel?

Get in touch
Scroll to Top