Data Protection & Cybersecurity

As we store more and more information in the digital realm – including financial information, health care data, retail client information, trade secrets and other intellectual property, company know-how, and the like – our networks become greater targets for thieves, competitors, and hackers. In addition to external threats, data breaches are often the result of insiders acting either innocently or maliciously. Regardless of the nature of a breach, without proper planning, the effects can be devastating, subjecting victims to regulatory penalties, litigation and severe reputational harm.

Our Approach

Our data protection and cybersecurity practice deploys a law-led approach in partnership with highly skilled technical support to address security threats and data breaches. Unlike other firms who can only offer a one-dimensional approach, we are able to provide a comprehensive approach through a strategic alliance with eosedge Legal, whose services focus on risk assessment, analysis and strategic advisory counsel. Combining the legal with the technical also gives our clients the added protection of confidentiality and privilege to further mitigate risk that a solely technical approach cannot provide.

The cyber risk landscape is challenging and ever expanding. Together, eosedge Legal and Lewis Roca Rothgerber Christie work as a team to provide clients with elevated data protection and cybersecurity strategies and full-scope solutions.

Risk Assessment

Our pre-breach services include interdisciplinary solutions to help clients manage everything from core business assets to cyber vulnerabilities. By identifying areas of weakness in systems and processes, clients can implement solutions and deter many potential threats and crises.

Data Policies & Practices

C-Suite Advisory Services

Leadership matters before, during and after a data breach. Our data protection and cybersecurity team provides organizations with educational workshops, breach coaching and policy development assistance in order to help them understand how to plan and deal with cybersecurity threats.

IP Asset Protection

A company’s intellectual property can be the life blood of its existence and needs to be protected. In an instant, a cyber-attack can change the course of a company’s growth and revenue. Our full-service team of IP attorneys provide nuts-to-bolts review, including:

• Implement a trade secrets audit
• Restrict physical and electronic access to trade secrets
• Establish and verify trade secret protection strategies
• Segregate and organize trade secrets
• Establish a trade secrets policy

Tabletop Exercises

Every organization is different. We develop tailored incident response plans ahead of cyber incidents, including tabletop exercises, penetration testing and war gaming.

Compliance

Our attorneys and cybersecurity professionals have extensive experience navigating the data protection and cybersecurity issues associated with regulated industries and general business operations. They review and follow the multitude of cybersecurity and data protection laws at the federal and state level in the U.S., as well as key international regulations, including:

• Bank Secrecy Act and anti-money-laundering rules
• Cable Act
• CAN-SPAM ACT
• Children’s Online Privacy Protection Act
• Communications Assistance for Law Enforcement Act
• EU-U.S. and Swiss-U.S. Privacy Shield Frameworks
• General Data Protection Regulation
• Fair Credit Reporting Act
• Federal Right to Financial Privacy Act
• FTC Act
• Gramm-Leach-Bliley Act provisions on privacy and security of customer information
• Health Insurance Portability and Accountability Act and the HITECH Act;
• IRS information disclosure rules
• Telecommunications Act
• USA Freedom Act
• USA PATRIOT Act
• Video Privacy Protection Act
• State data breach notification statutes and other data security laws
• Federal and state unfair and deceptive practices laws