Utilizing 25 years of comprehensive experience in information technology, data privacy and cybersecurity law, Dan Pepper advises clients on proactive data security practices, data breach incident response, and regulatory compliance. He frequently handles security incidents and has interacted with federal and state agencies and forensic service providers, overseen investigations, and designed post-incident response notification and remediation plans. In addition to his incident response work, Dan provides compliance support on applicable security laws, PCI-DSS, and security audit standards such as the NIST. He also facilitates in-depth security incident simulations.
Serving as the Philadelphia Digital Assets and Data Management Leader, Dan is highly knowledgeable in identifying, evaluating and managing risks associated with privacy and information security practices. Additionally, he stays on top of industry trends and applicable state, federal and international privacy and data security laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), California Online Privacy Protection Act (CalOPPA), and the China Cybersecurity Law.
Dan also has experience handling technology transactions, primarily working with clients in the telecommunications and software sectors. He is proficient at structuring complex technology acquisitions, licensing and distribution arrangements, as well as cloud-based/SaaS transactions. With his deep industry knowledge, Dan has drafted and negotiated thousands of technology and intellectual property-based transactions totaling over $5 billion.
Drawing from his time in leadership roles at multinational telecommunications conglomerates, Dan provides clients with comprehensive legal and business advice while assisting in developing data security procedures, protections and breach response governance that fit their unique goals.