Today, Debevoise’s Data Strategy & Security practice (DSS) is launching a Data Blog to help clients identify and respond to emerging issues, and a Debevoise Data Portal to help clients facing a breach assess and begin addressing their notification obligations within minutes of detection. We are also introducing DSS as the new name for our practice, which had been called Cybersecurity & Data Privacy, to better reflect the central role data now plays in virtually every client’s strategic plan and business operations, and the complex challenges our clients face across the entire data lifecycle.

Through the Data Blog, DSS will offer technical and legal insights on the latest data-strategy and security issues our clients are facing, including:

  • Emerging cybersecurity threats from nation states and organized crime, along with ways to reduce those risks
  • Tips for cyber incident preparation and response
  • Data governance
  • Regulatory and reputational risks of machine learning and AI applications
  • Tailoring business practices to developments in cybersecurity, privacy and AI litigation, regulation and enforcement
  • Best practices for data issues arising in M&A diligence, licensing, insurance and vendor contracting

To subscribe to the Data Blog, please click here.

For clients facing a breach, the Debevoise Data Portal (now in beta testing) will provide a secure online suite of tools that uses a simple, query-based system to help clients assess and respond to their data breach notification obligations across all 50 U.S. states and federal laws, including the Health Insurance Portability and Accountability Act and the Gramm-Leach-Bliley Act.

The Portal asks clients to answer a series of questions about a hypothetical or actual incident, and within minutes it generates a detailed report of the resulting breach notification obligations – including whom to notify, by when, what the notice should include, and the method of notification. It also generates templates for the actual notifications. The Portal is regularly updated to reflect the latest changes in breach notification laws and regulatory guidance.

If you are interested in joining the small group of Debevoise clients who are beta testing the Debevoise Data Portal, please contact us at dataportal@debevoise.com for more information.

Author

Jeffrey Cunard, managing partner of Debevoise's Washington, D.C. office, leads the firm’s corporate intellectual property, information technology and e-commerce practices. He has broad experience in transactions, including software and technology licenses, joint ventures, mergers and acquisitions, and outsourcing arrangements. Mr. Cunard’s practice also encompasses copyright litigation. He is an internationally recognized practitioner in the field of the Internet and cyberlaw, a member of the firm’s Data Strategy & Security practice, and advises in U.S. and international media and telecommunications law, including privatizations and regulatory advice. He can be reached at jpcunard@debevoise.com.

Author

Luke Dembosky is a Debevoise litigation partner based in the firm’s Washington, D.C. office. He is Co-Chair of the firm’s Data Strategy & Security practice and a member of the White Collar & Regulatory Defense Group. His practice focuses on cybersecurity incident preparation and response, internal investigations, civil litigation and regulatory defense, as well as national security issues. He can be reached at ldembosky@debevoise.com.

Author

Jeremy Feigelson is a Debevoise litigation partner, Co-Chair of the firm’s Data Strategy & Security practice, and a member of the firm’s Intellectual Property and Media Group. He frequently represents clients in litigations and government investigations that involve the Internet and new technologies. His practice includes litigation and counseling on cybersecurity, data privacy, trademark, right of publicity, false advertising, copyright, and defamation matters. He can be reached at jfeigelson@debevoise.com.

Author

Avi Gesser is a Debevoise cybersecurity and litigation partner. He is a member of the Debevoise Data Strategy & Security Group, as well as the White Collar & Regulatory Defense Group. Avi has extensive experience advising on a wide range of cybersecurity matters, incident response issues, data strategy concerns and complex commercial litigation. He can be reached at agesser@debevoise.com.

Author

Jim Pastore is a Debevoise litigation partner and a member of the firm’s Data Strategy & Security practice and Intellectual Property Litigation Group. He can be reached at jjpastore@debevoise.com.

Author

Jane Shvets is a Debevoise partner in the firm’s White Collar & Regulatory Defense Group, focusing on white collar defense and internal investigations, in particular regarding compliance with corrupt practices legislation, as well as compliance assessments. Ms. Shvets also advises multinational clients on data protection and cybersecurity matters as well as a wide range of sanctions issues. She can be reached at jshvets@debevoise.com.

Author

Lisa Zornberg is a Debevoise litigation partner based in the firm’s New York office. She is a member of the White Collar & Regulatory Defense Group, where her practice focuses on white collar defense, regulatory enforcement actions and internal investigations – including cyber investigations – for corporations and financial institutions, as well as complex civil litigation. She can be reached at lzornberg@debevoise.com.