Michelle Anderson counsels clients on a range of privacy, security, and consumer protection matters. She works closely with clients to understand their goals and risk profiles to help develop strategies for compliance with domestic and international privacy and security laws and regulations.
Michelle’s multi-jurisdictional work includes helping companies comply with the GDPR as well as issues relating to marketing, employee privacy, data security, and cross-border data transfers, including Standard Contractual Clauses and Privacy Shield. Her domestic experience includes counselling clients on obligations under CCPA, CAN-SPAM, COPPA, HIPAA, TCPA, VPPA, Section 5 of the FTC Act, and a variety of state laws.
Michelle also routinely drafts privacy notices and disclosures, negotiates privacy and security provisions in vendor agreements, and conducts due diligence of privacy and security issues in mergers and acquisitions. In addition, she guides clients through responding to security incidents, including investigation, remediation, and notiﬁcation.
Prior to ZwillGen, Michelle was an Associate in the Global Data Protection, Privacy, and Security Practice at DLA Piper LLP (US).