For over 30 years, even before data privacy and cybersecurity became a well-known legal discipline, Phillips Lytle has been handling complex data protection issues for various clients.
Phillips Lytle’s Data Privacy and Cybersecurity Team uses a multidisciplinary approach to develop comprehensive business solutions that are tailored to each client’s particular data needs, priorities and resources. Our seasoned attorneys and staff have extensive transactional, technical and litigation experience related to data security and privacy. We counsel clients on compliance with various statutory, regulatory and contractual requirements; insurance evaluation; best practices regarding data privacy, security, preservation, protection, retention and destruction; cross-border data transfers; disaster recovery; emergency response; business continuity; digital forensic examinations; third-party/vendor risk management; data incident management; and government investigations, enforcement actions, private or regulatory litigation or other related disputes.
As the threat landscape evolves, the need for legal counsel with practical and technical expertise and experience managing data incidents and other key issues related to data protection is essential. Our attorneys are supported by a technical team with over 30 years of experience regarding data management. We are uniquely positioned to counsel clients regarding the evolving laws and regulations amidst emerging technologies and critical business considerations.
Phillips Lytle’s Data Privacy and Cybersecurity Team advises many sophisticated clients in various industries, including health care, education, finance, law, technology, startups, banking, manufacturing, construction, e-commerce, energy and government contracting. Our team also represents cybersecurity service providers and cyber solution developers.
Phillips Lytle attorneys have been awarded the following ANAB-accredited credentials by the International Association of Privacy Professionals (IAPP): Certified Information Privacy Professional/Europe (CIPP/E); Certified Information Privacy Professional for the U.S. Private Sector (CIPP/US); and Certified Information Privacy Manager (CIPM). CIPP/E and CIPP/US are preeminent certifications for advanced concentration in European data protection laws and U.S. private-sector laws, standards and practices, respectively. CIPM certification demonstrates an understanding of privacy program governance and the skills necessary to establish, maintain and manage a privacy program across all stages of its operational life cycle.
Phillips Lytle is one of five firms awarded a portion of a five-year, $50 million contract to provide cybersecurity legal services to thousands of New York State entities, including municipalities, hospitals, universities and other Authorized Users (as defined in the New York State Finance Law). The contract extends through January 2030.
Learn MoreOur Data Privacy and Cybersecurity Team has extensive experience advising clients regarding data privacy laws and regulations and the best practices in preventing security breaches across these sectors:
Health Care
Phillips Lytle’s Data Privacy and Cybersecurity attorneys provide a wide array of services to our clients, including:
Know who to turn to in the event of a data incident.
Security incidents can take on many forms, including confidential information and trade secret theft, inadvertent disclosure, ransomware, the theft of personal data, phishing or other cyberattacks. Our team has more than 30 years of experience responding to security incidents and data breaches. In the event of a security incident, our Data Privacy and Cybersecurity Team can manage the digital forensics investigation to mitigate potential harm. We counsel clients regarding whether, when, or how best to seek assistance from and/or coordinate with law enforcement agencies, or pursue other remedies, including through litigation. We can also assist with any necessary reporting or individual notification following a data breach, such as to employees or investors, and externally to clients, customers, insurance carriers, government authorities and agencies, law enforcement, consumer reporting agencies, business partners or the general public.
We also have represented many small and large businesses and institutions in internal data breach investigations as a result of actions by competitors, disloyal employees and other bad actors. Our attorneys and staff regularly conduct sophisticated digital forensic investigations into fraud, theft of confidential information, and other improper or unlawful conduct involving data or data systems.
Our services include identification, collection and forensic analysis of devices to recover or reconstruct digital information, even after deletion. Our team will also utilize metadata and other tracking mechanisms to locate converted assets or track the theft of confidential information.
If any data protection or privacy issue results in government inquiries, investigations or litigation, our Data Privacy and Cybersecurity Team’s experienced litigators are ready to pursue or defend our clients’ interests. Our efficient and creative litigators represent clients regarding a variety of issues, including:
Should you have a data breach or data incident, our Crisis Response and Management Team is accessible 24 hours a day, seven days a week, 365 days a year to handle the most time-sensitive situations. We understand the importance of an immediate and appropriate response to a broad range of circumstances. Our team is ready and available to assist our clients and our attorneys can be reached at 1-866-812-5116.
Receive firm communications, legal news and industry alerts delivered to your inbox.
Subscribe Now
