The Data Strategy and Security team at Debevoise & Plimpton LLP has authored the Practising Law Institute’s 2023 edition of the Privacy Law Answer Book, a user-friendly guide to the laws and regulations that govern how companies collect, use, store and transfer the personal information of their consumers and employees. The book is styled as a Q&A so that practitioners can easily find answers to both common and uncommon questions.
The editors of the comprehensive book are Debevoise partners Avi Gesser, Erez Liebermann, and counsel Johanna N. Skrzypczyk and Kim T. Le, and are assisted by managing editor and Debevoise senior associate Michael R. Roberts. The book is the result of significant contributions from Debevoise partners, counsels, and associates, and is now available to legal and privacy practitioners.
The 2023 edition has been refreshed to include recent legislation in California, Colorado, Connecticut, Utah and Virginia, along with new enforcement actions and guidance from various regulators. It also includes several key updates related to international privacy laws and regulations. The book provides a detailed overview of the patchwork of federal, state and international laws and regulations that govern how private-sector entities handle consumers’ electronic data and personal information in commercial settings. Legal and privacy practitioners can use the book as a reference guide to keep pace with the latest developments in privacy and stay ahead of future data privacy challenges.
Chapters and topics in the 2023 edition include:
- Chapter 1: Overview of U.S. Information Privacy Law
- Chapter 2: Privacy Policies
- Chapter 3: Children’s Privacy
- Chapter 4: Financial Privacy
- Chapter 5: Medical Privacy
- Chapter 6: Mobile Privacy
- Chapter 7: Digital Workplace Privacy
- Chapter 8: Advertising, Tracking, and Privacy
- Chapter 9: Vanguard States
- Chapter 10: Privacy Enforcement and Litigation
- Chapter 11: Global Privacy Laws
The 2023 edition of the Privacy Answer Book can be purchased from the Practising Law Institute. The 2023 edition’s table of contents is available for download here. We hope our clients will find it useful as they address the latest developments in privacy.
To subscribe to the Data Blog, please click here.
Luke Dembosky is a Debevoise litigation partner based in the firm’s Washington, D.C. office. He is Co-Chair of the firm’s Data Strategy & Security practice and a member of the White Collar & Regulatory Defense Group. His practice focuses on cybersecurity incident preparation and response, internal investigations, civil litigation and regulatory defense, as well as national security issues. He can be reached at firstname.lastname@example.org.
Avi Gesser is Co-Chair of the Debevoise Data Strategy & Security Group. His practice focuses on advising major companies on a wide range of cybersecurity, privacy and artificial intelligence matters. He can be reached at email@example.com.
Jyotin Hamid, a partner in the New York office, is a seasoned litigator with extensive courtroom experience. He handles a diverse array of complex commercial litigation matters, with a particular focus on employment litigation and intellectual property disputes. He has represented major companies in their most challenging commercial matters. In the employment area, he has successfully handled numerous whistleblower, discrimination, contract, compensation and corporate raiding litigations involving high-level executives in a broad range of industries. Mr. Hamid also counsels employers on their most sensitive personnel matters, including investigations of alleged executive misconduct. He is also deeply involved in Debevoise’s market-leading intellectual property practice, and he has litigated trademark and trade dress cases involving some of the most well-known brands in the world.
Satish Kini is Chair of Debevoise’s Banking Group and a member of its Financial Institutions Group. Mr. Kini advises on a wide range of regulatory and transactional issues. He can be reached at firstname.lastname@example.org.
Henry Lebowitz is a Debevoise corporate partner and a member of the firm's Corporate Intellectual Property Group. His practice focuses on leading the IP and technology aspects of mergers and acquisitions, financings, capital markets and other corporate transactions. He can be reached at email@example.com.
Erez is a litigation partner and a member of the Debevoise Data Strategy & Security Group. His practice focuses on advising major businesses on a wide range of complex, high-impact cyber-incident response matters and on data-related regulatory requirements. Erez can be reached at firstname.lastname@example.org
Maura Kathleen Monaghan
Maura Kathleen Monaghan is Co-Chair of the firm’s Commercial Litigation Group and Healthcare & Life Sciences Group. Her practice focuses on a wide range of complex commercial litigation matters, including products liability and mass tort litigation, environmental, healthcare, regulatory and criminal investigations and arbitration. She can be reached at email@example.com.
David A. O'Neil
David A. O’Neil is a litigation partner and member of the firm’s White Collar & Regulatory Defense Group. Recommended by Chambers USA (2021) and The Legal 500 US (2021) as a leading lawyer in White Collar Crime & Government Investigations and International Litigation, his practice focuses on white collar criminal defense, internal investigations, anti-corruption and FCPA defense and congressional investigations. In both 2018 and 2020, Mr. O’Neil was recognized as a Litigation Trailblazer by the National Law Journal and he was named a White Collar MVP by Law 360 in 2018. In Chambers USA (2020), clients report that he is “driven, practical and offers a level of common sense and solutions focus that few bring.” He has also been described as “responsive and sharp, he spots the key issues straightaway and is able to quickly analyze and break them down in a manner to be tackled.” Mr. O’Neil is also recommended for compliance and investigations by The Legal 500 Latin America (2021).
Jim Pastore is a Debevoise litigation partner and a member of the firm’s Data Strategy & Security practice and Intellectual Property Litigation Group. He can be reached at firstname.lastname@example.org.
David Sarratt is a partner in Debevoise's Litigation Department. He is a seasoned trial lawyer whose practice focuses on government enforcement actions, internal investigations, and complex civil litigation, as well as novel enforcement issues arising from new technologies. He can be reached at email@example.com.
Jeffrey P. Cunard
JJeffrey Cunard is a retired partner and currently is of counsel to the firm. He was managing partner of the Washington, D.C. office and led the firm’s corporate intellectual property, information technology and e-commerce practices. He has broad experience in transactions, including software and technology licenses, joint ventures, mergers and acquisitions, and outsourcing arrangements. Mr. Cunard’s practice also encompassed copyright litigation. He was an internationally recognized practitioner in the field of the Internet and cyberlaw, a member of the firm’s Data Strategy & Security practice, and advised in U.S. and international media and telecommunications law, including privatizations and regulatory advice.
Kim T. Le is a corporate counsel and a member of the Debevoise Healthcare & Life Sciences Group. She is also active in the firm’s Data Strategy & Security practice. She can be reached at firstname.lastname@example.org.
Tricia Bozyk Sherno
Tricia Bozyk Sherno is a member of Debevoise's Litigation Department, concentrating in employment and general commercial litigation. She has a broad-gauged employment law practice, with experience representing clients in matters involving discrimination and harassment, contracts, corporate raiding and compensation across a broad range of industries. She can be reached at email@example.com.
Johanna Skrzypczyk (pronounced “Scrip-zik”) is a counsel in the Data Strategy and Security practice of Debevoise & Plimpton LLP. Her practice focuses on advising AI matters and privacy-oriented work, particularly related to the California Consumer Privacy Act. She can be reached at firstname.lastname@example.org.
Michael R. Roberts
Michael R. Roberts is a senior associate in Debevoise & Plimpton’s global Data Strategy and Security Group and a member of the firm’s Litigation Department. His practice focuses on privacy, cybersecurity, data protection and emerging technology matters. He can be reached at email@example.com.
Michael Bloom is an associate in the Litigation Department. He can be reached at firstname.lastname@example.org.
Fanny Gauthier is an associate in Debevoise's Litigation Department, based in the Paris office. Ms. Gauthier is a member of the firm’s International Dispute Resolution Group, as well as the firm’s Data Strategy & Security practice. Her practice focuses on complex commercial litigation, international arbitration and data protection. She can be reached at email@example.com.
Corey Goldstein is an associate in Debevoise's Litigation Department. He can be reached at firstname.lastname@example.org.
Kyle Kysela is an associate in Debevoise's Litigation Department based in the New York office. He is a member of the firm’s White Collar & Regulatory Defense Group, and the Data Strategy & Security practice. He can be reached at email@example.com.
Hannah R. Levine
Hannah R. Levine is a corporate associate and a member of the Mergers & Acquisitions and Healthcare & Life Sciences Groups.
Linda Lin is an associate in the Litigation Department.
Melissa Muse is an associate in Debevoise's Litigation Department. She can be reached at firstname.lastname@example.org.
Kathryn (“Kate”) Saba is an associate in the Litigation Department and member of the Intellectual Property and Media Group. She can be reached at email@example.com.
Noah L. Schwartz
Noah L. Schwartz is an associate in the Litigation Department and a member of the Data Strategy & Security practice group. His practice focuses on incident response, crisis management and regulatory counselling. He can be reached at firstname.lastname@example.org.
Mengyi Xu is an associate in Debevoise's Litigation Department and a Certified Information Privacy Professional (CIPP/US). As a member of the firm’s interdisciplinary Data Strategy & Security practice, she helps clients navigate complex data-driven challenges, including issues related to cybersecurity, data privacy, and data and AI governance. Mengyi’s cybersecurity and data privacy practice focuses on incident preparation and response, regulatory compliance, and risk management. She can be reached at email@example.com.