Christine Mastromonaco

Experience

• Drafted U.S. and state-specific privacy policies and online terms of use. Drafted internal procedures for responding to data requests and consumer response templates.
• Served as legal secondee and initial point of contact for large social media company. Advised client on matters concerning user privacy, content moderation, consumer benchmarking analyses and children’s privacy as well as on the privacy risks related to numerous product launches and coordinated with regional counsel where such launches occurred in jurisdictions outside the U.S. Additionally, prepared regulatory briefings and provided risk analyses to proposed policy changes affecting the platform.
• Advised Fortune 500 energy company regarding the applicability of CCPA/CPRA to its subsidiary under the statute’s common branding provision.
• Counseled international cruise and hospitality company on GDPR and CCPA/CPRA risk with respect to SMS and email marketing campaigns.

Marketing and AdTech Advice

• Negotiated online advertising agreements for retail client.
• Advised social media company on use of augmented reality ads.
• Advised consumer products company on the privacy considerations under various state laws regarding financial incentive program wherein a consumer would receive a discount in exchange for providing the client with the name and email address of a friend.
• Counseled medical device company on the privacy, HIPAA and TCPA considerations in sending SMS appointment reminders and marketing materials related to health services.

Regulatory Compliance

• Advised asset management firm in its acquisition of an online pharmacy. Conducted due diligence with respect to the target company’s privacy program including internal review of CCPA and HIPAA policies and procedures.
• Drafted U.S. and California privacy policies and cookie policies for a national food distribution corporation and its various subsidiaries as well as internal procedures for responding to data requests, which included issues concerning verification of consumer identity, designation of a response team and training of key personnel, grounds for denying a consumer request, methods of delivery of consumer data pursuant to a verified request and the necessity of keeping confidential personal information belonging to consumers other than the requesting party.
• Developed online privacy policies, online terms of use and HIPAA compliant practices for videoconferencing for mental healthcare client.
• Represented clients in a variety of sectors including food and beverage, manufacturing, management consulting and telehealth in the negotiation of DPAs.

Data Strategy and Product Counseling

• Advised cruise ship company in the cross-marketing via SMS and email campaigns to customers of its European subsidiary regarding the implications under the CCPA, GDPR and TCPA.
• Counseled digital payments company on the user flow and cookie policy related to the adoption of tracking technology enabling their app to remember the user’s external banking and account information.