Digital Assets and Data Management

Overview

“BakerHostetler, a law firm with a massive data and privacy presence, compiles data from their clients’ experiences to offer a rare lawyer’s perspective on cyber statistics. No amount of vendor telemetry can provide some of the information they have, including outcome statistics from ransomware negotiations or the frequency of litigation.”

SC Magazine, May 6, 2021

Data is king – partnerships are gold – and BakerHostetler has been recognized as a powerhouse in this space.

BakerHostetler formed the Digital Assets and Data Management Practice Group (DADM Group) to mirror how our clients do business. Leveraging data and technology is a priority for most entities. We have united key service offerings and technologists to address all the risks associated with an entity’s digital assets. Our clients are collecting data and then utilizing advanced technology to transform their products and services. Doing this creates enterprise risk. Our practice group works with our clients through the life cycle of data – privacy, security, marketing and advertising, transactions, and emerging technology – within an organization.

More »

Our Group was named a 2020-2021 “Pacesetter” in Cybersecurity Services by ALM Intelligence Pacesetter Research, an independent research group focused on professional services. BakerHostetler is the only law firm to achieve Pacesetter status, as ALM researchers noted that the firm “goes to market with a business-led approach to information security that positions data as a critical asset of today’s digital enterprise.” The firm was also one of four law firms named “Market Leaders” in the report.

We were also recognized as a “Powerhouse” by BTI Consulting’s Cybersecurity & Data Privacy 2020 Report and have been named one of BTI’s “Cybersavvy 16,” a nationwide list of the top legal practices in this arena.

Our experience and approach enable effective global digital risk management (and are our competitive differentiators). Our attorneys are on-site at client locations hundreds of days a year doing the small and large things necessary to meet our clients’ needs and help them accomplish their goals: conducting training, doing claims audit and substantiation, leading proactive security and risk assessments, working through security and compliance incidents, advising executive leadership teams and boards, preparing witnesses for depositions and regulatory investigations, and providing advice on new initiatives and transactions.

We serve some of the largest names in retail, healthcare, hospitality, education and financial services. We also work on small and midsized matters, and these are often the matters that expose us to new trends and risks. Our technologists analyze key data from our matters to help us identify trends, develop insights and build custom tools to enable digital transformation efforts. The depth and breadth of our group’s experience are unmatched and position us to advise clients on all aspects of managing data and digital assets.

The DADM Group was built from the successes of our highly regarded Data Privacy and Advertising teams, which are ranked by Chambers, Chambers Global and Legal 500. Our lawyers have also been recognized by Law360, Financial Times Innovative Lawyers and American Lawyer Media for being trailblazers in this space. Indeed, our annual Data Security Incident Response Report is a go-to resource, and the compromise intelligence gained from the work associated with the Report enables us to inform our clients so they can make healthy risk-based decisions affecting various segments of their operations. Additionally, the firm’s innovative R&D team, IncuBaker, is included in this group to help lawyers and clients navigate the intersection of digital business, emerging technology and law.

Select Experience

  • The Advertising, Privacy Governance and Technology Transactions, Digital Risk and Cybersecurity teams provide seamless overall counseling to global consumer products and retailers, helping the companies navigate the supporting of advertising claims, evolving loyalty and subscription programs, and CCPA compliance. The coordination of such work has never been more important as companies grapple with how lawfully to collect, protect and use valuable consumer data.
  • We served as incident response and post-disclosure counsel for Marriott Hotels regarding the Starwood Hotels guest record security incident disclosed in 2018. We also are defending Marriott in multidistrict litigation against claims brought by individuals, banks and cities.
  • All seven of our teams have supported a multinational grocer, including advised on CCPA compliance, conducting an advertising and digital media boot camp, providing counsel regarding e-commerce and cybersecurity and handling legal issues related to the response, notification and litigation arising from a payment card security incident.
  • We advised a large specialized research and treatment center on healthcare compliance, including the use of de-identified protected health information for research purposes.
More »

Professionals

Name Title Office Email
Associate Atlanta
Associate San Francisco
Associate New York
Partner Atlanta
Associate Denver
Associate New York
Associate San Francisco
Associate Cleveland
Associate Los Angeles
Associate Costa Mesa
Associate New York
Partner New York
Partner Atlanta
Associate Cleveland
Partner Cincinnati
Associate Cincinnati
Partner Cleveland
Partner Cleveland
Partner Dallas
Associate Dallas
Partner Los Angeles
Counsel Atlanta
Associate Dallas
Counsel New York
Partner Denver
Partner Atlanta
Associate Houston
Chief Information Officer
Chief Information Officer Cleveland
Counsel Washington, D.C.
Counsel Atlanta
Associate Denver
Partner Atlanta
Associate Cleveland
Partner Chicago
Counsel Cincinnati
Partner Atlanta
Associate New York
Counsel Washington, D.C.
Associate Washington, D.C.
Associate Cincinnati
Associate Denver
Counsel New York
Partner New York
Associate Chicago
Associate Washington, D.C.
Associate Philadelphia
Partner New York
Partner Atlanta
Partner Cleveland
Partner New York
Partner Philadelphia
Associate Denver
Partner New York
Counsel Chicago
Partner Washington, D.C.
Partner Houston
Associate Atlanta
Partner Chicago
Associate Atlanta
Partner Cincinnati
Partner Columbus
Counsel Seattle
Partner Cincinnati
Associate Houston
Partner Cincinnati
Counsel Atlanta
Partner Cleveland
Partner Atlanta
Associate Atlanta
Associate Washington, D.C.
Associate Chicago
Associate Chicago
Partner Seattle
Partner Denver
Partner Washington, D.C.
Associate Dallas
Partner Washington, D.C.
Associate New York
Partner New York
Partner Los Angeles
Associate Atlanta
Associate Atlanta
Associate Chicago
Partner Columbus
Associate Chicago
Associate Houston
Director of Practice Services
Director of Practice Services Cincinnati
Counsel Washington, D.C.
Associate San Francisco
Partner Philadelphia
Counsel Costa Mesa
Partner New York
Partner Cleveland
Partner Los Angeles
Associate Cleveland
Partner San Francisco
Partner Seattle
Partner Washington, D.C.
Partner Cleveland
Counsel Chicago
Partner Philadelphia
Associate Costa Mesa
Associate Chicago
Partner Cleveland
Associate Los Angeles
Associate Houston
Partner Philadelphia
Associate Los Angeles
Associate Washington, D.C.
Partner Washington, D.C.
Associate Houston
Partner San Francisco
Partner Houston
Partner Washington, D.C.
Partner New York
Partner Philadelphia
Partner Cleveland
Partner Orlando
Partner Cleveland
Partner Houston
Associate New York
Associate Cincinnati
Partner Cincinnati
Associate Denver
Associate Houston
Partner Cleveland
Partner Chicago
Associate Seattle
Counsel Philadelphia
Partner Cleveland
Partner New York
Associate Philadelphia
Partner Atlanta
Partner Houston
Associate Washington, D.C.
Associate Los Angeles
Associate Los Angeles

Experience

  • The Advertising, Privacy Governance and Technology Transactions, Digital Risk and Cybersecurity teams provide seamless overall counseling to global consumer products and retailers, helping the companies navigate the supporting of advertising claims, evolving loyalty and subscription programs, and CCPA compliance. The coordination of such work has never been more important as companies grapple with how lawfully to collect, protect and use valuable consumer data.
  • We served as incident response and post-disclosure counsel for Marriott Hotels regarding the Starwood Hotels guest record security incident disclosed in 2018. We also are defending Marriott in multidistrict litigation against claims brought by individuals, banks and cities.
  • All seven of our teams have supported a multinational grocer, including advised on CCPA compliance, conducting an advertising and digital media boot camp, providing counsel regarding e-commerce and cybersecurity and handling legal issues related to the response, notification and litigation arising from a payment card security incident.
  • We advised a large specialized research and treatment center on healthcare compliance, including the use of de-identified protected health information for research purposes.
  • Multiple DADM Group teams combined to provide services to a multi-brand restaurant company with thousands of locations. Our work included data security incident response; incident response training and tabletop exercises; extensive technology contract negotiations to support integration of new brands into the multi-brand concept; guidance regarding implementation of secure payment technology and mobile payment applications; and acquisition-related due diligence and security assessments.
  • We represent an alliance of multinational corporations in connection with a partnership with IBM Watson Health and other analytics providers. This partnership harnesses the power of IBM’s artificial intelligence capabilities and other provider services through the collection and analysis of health data to improve health outcomes for employees and to reduce healthcare costs for member companies.
  • Our Digital Risk Class Action and Litigation team defeated certification of a putative class action brought against a large regional discount retailer on behalf of banks that issued payment cards affected by the retailer’s 2015 data breach. The plaintiffs attempted to certify a class of about 2,500 banks, arguing that the retailer was negligent in its failure to maintain adequate cybersecurity, leading to damages including actual fraud losses, card reissuance costs and lost revenue from the potential compromise of more than 1 million payment cards. Through significant fact discovery, the team developed a solid factual record to oppose class certification.
  • We advised an international fast food chain regarding the use of a new blockchain tool to tokenize and distribute sensitive data, including an analysis of the technology against laws providing safe harbors for encryption in the event of a security incident.

Recognition

  • Selected as a 2020-2021 “Pacesetter” in Cybersecurity Services by ALM Intelligence Pacesetter Research
  • BTI Powerhouse for Cybersecurity Litigation (2022)
  • BTI Cybersecurity Powerhouse (2020)
  • BTI CyberSavvy Law Firm (2020)
  • Chambers Global
    • Privacy & Data Security: The Elite (USA) (2022)
    • Privacy & Data Security (USA) (2014 to 2021)
    • Privacy & Data Security: Healthcare Spotlight Table – Nationwide (2018 to 2022)
  • Chambers Fintech
    • Legal – USA (2018 to 2022)
  • Chambers USA
    • Advertising: NAD Proceedings – Nationwide (2022)
    • Advertising: Transactional & Regulatory – Nationwide (2018 to 2022)
    • Privacy & Data Security: The Elite – Nationwide (2021-2022)
    • Privacy & Data Security – Nationwide (2013 to 2020)
    • Privacy & Data Security: Healthcare Spotlight Table – Nationwide (2018 to 2022)
  • Chambers USA Award: “Privacy & Data Security Team of the Year” finalist (2015, 2017)
  • The Legal 500 United States
    • Media, Technology and Telecoms: Advertising and Marketing: Transactional and Regulatory (2018 to 2022)
    • Media, Technology and Telecoms: Cyber law (including data privacy and data protection) (2021-2022)
    • Media, Technology and Telecoms: Cyber Law (2016 to 2020)
    • Media, Technology and Telecoms: Data Privacy and Data Protection (2016 to 2020)
  • Law360: Privacy "Practice Group of the Year" (2013 to 2015, 2018)
  • Selected for Vault’s Guide to Legal Practice Areas
    • Privacy and Data Security (2017 to 2021)

News

News

Press Releases

Publications

Alerts

Articles

Podcasts

Blog Posts

Key Contacts

Blog

In The Blogs

Previous Next
Blockchain Monitor
DOJ Seizes Over $3 Billion in Historic Crypto Dark Web Fraud Case
By Teresa Goody Guillén, Carlos F. Ortiz, Shade I. Quailey, Michelle N. Tanney
November 21, 2022
On November 7, 2022, the U.S. Department of Justice (DOJ) announced that it had seized more than $3.36 billion worth of bitcoin as part of a continuing investigation into a 10-year fraud involving the Silk Road dark web marketplace. This...
Read More ->
Data Counsel
California's AB 587: What You Need to Know About Social Media Content Moderation
By Jiwon (Jamie) Kim, Jeewon K. Serrato
November 21, 2022
On Sept. 13, California Gov. Gavin Newsom signed into law AB 587, which requires social media companies to publicly post their content moderation policies and semiannually report data on their enforcement of the policies to the attorney...
Read More ->
Blockchain Monitor
Crypto Market Data Published; Settlement Pilot Announced; Reports Analyze Crypto Scams; Exchanges Seek to Prove Reserves as Users Withdraw Funds
By Amos Kim, Christopher W. Lamb, Keith R. Murphy, Robert A. Musiala Jr.
November 18, 2022
In this issue: New Crypto Market Data Published, Blockchain Settlement Pilot Announced CFPB Publishes Report on Crypto Scams; Study Analyzes Scams on Uniswap Multiple Cryptocurrency Exchanges Intend to Publish ‘Proof of Reserves’ Users...
Read More ->
AD-ttorneys Law Blog
16th Public Commission Meeting – All About the Biz Opp Rule
By Daniel Kaufman, Amy Ralph Mudge
November 18, 2022
So today’s Federal Trade Commission (FTC or Commission) meeting was a bit of a narrowly focused affair – all about the Business Opportunity Rule (Rule), which is a long-standing FTC rule that generally requires “business opportunities” to...
Read More ->
Data Counsel
New York Department of Financial Services Publishes Proposed Second Amendment to Its Cybersecurity Regulation
By Elise R. Elam, Patrick H. Haggerty, Vaughn Stupart
November 17, 2022
On Nov. 9, 2022, the New York State Department of Financial Services (NYDFS) published a proposed second amendment to its cybersecurity regulation. This follows its pre-proposed amendment that was published on July 29. Our prior analysis...
Read More ->