arrow-double-right arrow-noline-right arrow-lrg-left arrow-lrg-right arrow-med-down arrow-med-left arrow-med-right arrow-med-up arrow-sml-right checkmark close close-sml contact-card event-clock linkedin menu minus outbound-link phone plus print search-lrg search-sml twitter winthrop-mark

Winthrop & Weinstine provides a wide range of data privacy and security legal services as cybersecurity threats mount around the world. With data breaches making headlines, Winthrop & Weinstine’s Data Privacy & Security Practice helps clients navigate the most complex and most current data privacy legislation and regulations, including global privacy regimes such as the General Data Protection Regulation (GDPR), to manage their data privacy and cybersecurity risk.

Our Approach

Our Data Privacy and Security Practice is an experienced team of attorneys that combines up-to-date legal acumen with the technological know-how to provide successful cybersecurity solutions.

Our services include:

  • Data Security Counseling
  • Data Breach Planning and Response
  • Cybersecurity Insurance
  • Cybersecurity and Data Privacy Litigation
  • Data Privacy Reviews and Assessments
  • Regulatory Investigations
  • Vendor Contracting
  • Compliance with State, Federal, and International Laws, including:
    • Federal Information Security Management Act (FISMA)

    • Gramm-Leach Bliley Act (GLBA)

    • Stored communications Act (SCA)

    • Health Insurance Portability and Accountability Act (HIPAA)
    • Fair Credit Reporting Act (FCRA)
    • Computer Fraud and Abuse Act (CFAA)
    • Do Not Call Registry
    • Family Educational Rights and Privacy Act (FERPA)
    • Federal Trade Commission’s Red Flag Rule
    • Advising on Controlling the Assault of Non-Solicited Pornography And Marketing Act (CAN-SPAM)
    • The Fair and Accurate Credit Transactions Act (FACTA)
    • Automatic Renewal Laws (ARL)
    • Telephone Communications Protection Act (TCPA)
    • California Consumer Privacy Act 2018 (CCPA)
    • US – EU Privacy Shield Compliance