Privacy and Cybersecurity Law

Privacy and Cybersecurity Law

Towne, Ryan & Partners, P.C.’s privacy and cybersecurity practice helps companies manage data and mitigate security risks at every step of the information life cycle. Our privacy and cybersecurity practice focuses on providing legal services in the following areas:

  • Compliance with US federal and state privacy and information management requirements, including GLBA, HIPAA, COPPA, FCRA, FACTA, the DPPA, CAN-SPAM, state and federal security breach notification laws, PCI-DSS, and other federal and state requirements;
  • Comprehensive assistance with information security breaches, including network intrusion investigations, customer notification, and state and federal regulatory negotiations;
  • Preventing and managing cyber events, from security planning and developing proactive, breach-readiness solutions, including incident response and table top exercises, to handling of litigation and disputes arising from such events;
  • Performance of comprehensive privacy and information management assessments, including preparation of data flow maps, and privacy policies and procedures;
  • Development and implementation of privacy and data use policies and procedures that comply with applicable laws;
  • Drafting and negotiation of vendor contracts and information use and sharing agreements; and,
  • Assistance with dispute resolution, management of consumer concerns, response to allegations of misuse of data, state and federal investigations and litigation.