Choose Language

  


Privacy and Data Breach

Practice Group

Main Practice Contacts

Andrew S. Ehmke
+1 214.651.5116


Ronald W. Breaux
+1 214.651.5688

Related Services



In the News

John Podvin in BankDirector.com: Cyber Attacks: The Three Most Important Steps a Board Can Take

Bank Director asked legal experts to address a question that is top-of-mind in bank boardrooms lately: cyber security. What really is the role of the board in overseeing this potential threat? Big banks are getting hit with denial-of-service attacks that are taking down their web sites for hours. Even smaller banks are getting reports of constant attempts to hijack their online security. It seems time to address that question. >>



Recent Publications

Dallas Business Journal Guest Article: Cyber Attacks Pose Serious Threat. Be Prepared.

The Director of National Intelligence recently reported that cyber attacks are the No. 1 threat to our national security. But cyber crime is not just a threat to our national security; it is a threat to many of the organizations we represent. >>

California Man Convicted of Hacking into Former Employer’s Computer Network

A jury in the Northern District of California has convicted David Nosal of violating the Computer Fraud and Abuse Act (“CFAA”) by accessing his former employer’s computer network without authorization to obtain confidential information for use in a competing business. >>

California Computer Hacking Case Highlights Important Circuit Split on the Computer Fraud and Abuse Act

The computer hacking trial of David Nosal is under way in federal district court in California. The trial is being followed with interest in the business community because it is the latest development in a case that highlights an important split in the interpretation of the Computer Fraud and Abuse Act (“CFAA”) that has far-reaching ramifications with respect to liability–and protection for companies’ proprietary information. >>





Privacy and Data Breach

Companies retain and transmit massive amounts of data that is vulnerable to theft and exfiltration. A complex web of state, federal, and international data privacy and security laws requires companies to protect that data and disclose breaches. Effective data security demands a coordinated effort by management, information technology, and legal personnel.

To address privacy compliance, we:


  • Counsel clients on applicable data privacy and data security issues.
  • Draft or review data use, retention, and destruction policies.
  • Negotiate contract terms to protect sensitive data made accessible to third-party vendors.
  • Advise clients regarding compliance with privacy and data security laws (including HIPAA and Gramm-Leach-Bliley), regulations, and industry standards (including the Payment Card Industry Data Security Standard).
  • Review data security compliance programs and train key personnel.
  • Tailor breach response programs unique to clients’ circumstances and risks.

A data breach is a crisis that requires a swift, comprehensive response. Haynes and Boone has helped organizations prepare for, respond to, and mitigate every aspect of data security breaches involving trade secrets, personal identifying information, financial information, payment cardholder data, protected health information, and other sensitive data.

When a data breach occurs, we:


  • Investigate the breach.
  • Develop a client-focused strategy for working with law enforcement agencies.
  • Ensure preservation of evidence while preserving attorney-client privileges.
  • Coordinate clients’ responses to criminal and regulatory authorities.
  • Defend clients against claims, including class actions, arising from the breach.
  • Prosecute civil claims against hackers and other infiltrators.
  • Represent clients before the Federal Trade Commission, the Consumer Financial Protection Bureau, and other federal and state enforcement agencies.
  • Advise clients regarding disclosure obligations under federal securities laws and federal and state privacy laws.
  • Counsel clients regarding public statements and managing media coverage.

Data breaches or other cyber incidents can result in the loss of sensitive data and damage to clients’ reputations. Clients need a team with the experience to address the legal and technical issues that will arise. Haynes and Boone has that experience.

 

Professionals

Services

Experience

Firm

Newsroom

Events

Careers

Locations
© 2013 Haynes and Boone, LLP: All rights reserved
Client Connect    Terms    Privacy Policy   Attorney Advertising