• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar

Carter Ledyard & Milburn LLP

  • Professionals
  • Practices
  • News & Insights
  • Thought Leadership
  • Featured Series
  • Looking Ahead
  • Events
  • Our Firm
Stay Connected
Stay Connected

Cybersecurity and Data Privacy

PrintPDFEmail

As companies manage or store increasing amounts of data, cybersecurity and data privacy issues and obligations transcend geographies to become huge assets or liabilities. The costs associated with a data breach or other cybersecurity event can be devastating, and thus protecting organizations from a breach has become the responsibility of senior executives and directors. Every company must implement appropriate safeguards and best practices to protect data, comply with the many regulations and statutes, and minimize risks. The failure to follow proper cybersecurity and data privacy protocols can expose an organization to significant liability.

Carter Ledyard’s Cybersecurity and Data Privacy Group helps clients to better understand the ever-changing landscape of cybersecurity and data protection threats and how to best address those threats. We counsel clients on a wide variety of cybersecurity and data privacy issues, including:

  • Development of cybersecurity, data protection, and privacy policies
  • Compliance counseling
  • Corporate governance
  • Data protection and breach prevention
  • Risk assessment and management, and mitigation strategies
  • Incident response planning and execution, and related investigations
  • Incident reporting and disclosure in accordance with regulatory requirements 
  • Third-party vendor assessment and management
  • Cybersecurity insurance assessment 
  • Litigation
  • Mergers and Acquisitions due diligence 

Our Cybersecurity and Data Privacy team collaborates across numerous practice areas, including litigation, intellectual property, corporate transactions, employment and financial services regulations. This diversity of experience enables the Cybersecurity and Data Privacy Group to provide clients with well-rounded advice on developing, strengthening, testing, and enforcing their information protection policies and procedures. The Group has advised for-profit and not-for-profit clients of various sizes, from small firms and start-ups with limited resources to middle market firms and large, public companies, helping clients navigate the myriad of state, federal and international cybersecurity and data protection regulations and guidelines. 

Our attorneys have helped clients develop cybersecurity and data privacy programs and manage related challenges, including:

  • Conducted a cybersecurity assessment and developed cybersecurity policies and procedures, an incident response plan, and vendor due diligence protocol for a FinTech company
  • Advised international organizations on GDPR compliance
  • Advised an industrial conglomerate in connection with a data breach resulting in the theft of a domain name and website, which involved a forensic investigation, litigation, and related strategies to recover the domain name
  • Analyzed conflicting U.S. and foreign regulations regarding data and employee privacy for a global financial firm engaged in private banking, asset management, and investment banking
  • Drafted a GDPR-compliant privacy policy and terms of use for a not-for-profit membership corporation with members in the U.S. and abroad
  • Assisted a not-for-profit organization in developing a standard certification of cybersecurity best practices to be included in its third-party contracts 
  • Responded to a regulatory inquiry on behalf of a broker-dealer in connection with a cyber attack, and advised on the client’s cybersecurity policies, procedures, and incident response plan

Introduction to Cybersecurity Enforcement and the NY SHIELD Act – A Video Series

News & Insights

View All
  • Carter Ledyard Partner James Gadsden’s Contribution to the New York City Bar Association Task Force on Digital Technologies is Endorsed in Enactment of Emerging Technology Amendments to the Official Text of the Uniform Commercial Code

    February 22, 2023/less than a minute

  • In Law360, Jack Griem, Matt Dunn and Jenny Frank Provide Strategies for Companies Navigating the New York Digital Fair Repair Act

    January 31, 2023/less than a minute

  • Understanding Tech Terms: Cybersecurity, Crypto, and Data Privacy — Part I

    January 24, 2023/6 minute read

  • Watching and Waiting: The New York Digital Fair Repair Act

    December 23, 2022/less than a minute

  • New York DFS Revises Proposed Amendments to its Cybersecurity Regulations; Focus Remains on Role of Boards and Executives

    November 29, 2022/3 minute read

  • The Biden Administration’s Executive Order on EU-U.S. Data Transfer Framework: What’s Next?

    October 26, 2022/5 minute read

sidebar

Practice Chairs

  • Matthew D. Dunn/

    Partner

Team

  • Guy Ben-Ami/

    Partner

  • H. Thomas Davis, Jr./

    Partner

  • Ronald M. Feiman/

    Partner

  • John M. Griem, Jr./

    Partner

  • Jeremy S. Steckel/

    Partner

  • Jodutt Marwan Basrawi/

    Associate

  • Claudia Carbone/

    Associate

  • Sarah H. Ganley/

    Associate

  • Jennifer “Jenny” Frank/

    Associate

  • Brielle E. Kilmartin/

    Associate

Copyright © 2023 Carter Ledyard & Milburn LLPPowered by Content Pilot
  • Sitemap
  • Disclaimer
  • Cookie Policy
  • Privacy Policy
  • Subscribe
  • Contact

Meritas

Meritas.org Logo

Legal Link

Legal link dot org logo