ZwillGen PLLC

A boutique law firm specializing in legal issues that arise from doing business on the internet

Information Privacy & Security

[ Go Back ]

Any company with a computer network or an employee with a laptop now has information privacy and security concerns.  The significance of those concerns steadily increases along the continuum of entities that store or process personal information, financial or health data, behavioral data, private user communications and images, or some combination of any of the above.  The cost of a security breach is real, and significant.  For multi-national corporations or domestic companies with a global user base, compliance with an evolving set of EU member state implementations of the EU Data Directive can be confounding.  Data is now a valuable commodity, and understanding how to use new data aggregation, analysis, and sharing capabilities to maximize the value of data without running afoul of regulators and privacy watchdog groups is key.  ZwillGen attorneys have been advising clients on the forefront of novel privacy issues for years, and have a deep base of experience in providing sound, common sense judgment in unchartered areas of the law in advising clients on best practices.  We also have attorneys who double as Certified Information Systems Security Professionals (CISSPs) and know how to converse with, ask the tough questions of, and translate the answers from your IS staff or IS contractors when a security breach occurs.  We regularly assist clients on:

  • Advise on security breach investigations and user notices and defend resulting regulator inquiries and civil litigation;
  • Conduct information security and privacy assessments;
  • Developing and implement policies and procedures to minimize vulnerabilities, including incident response plans, data breach notification procedures, records retention and related policies;
  • Advise clients on Health Insurance Portability and Accountability Act (HIPAA), the Children's Online Privacy Protection Act (COPPA), Gramm-Leach Bliley (GLB), the Fair Credit Reporting Act (FCRA), state and local security breach notification laws, and other U.S. state and federal privacy requirements;
  • Information security due diligence for corporate acquisitions or equity investments