Melissa Hewitt focuses her practice on privacy and cybersecurity law. She advises clients on data privacy and data security issues in business transformations, cyber and data risk management and governance, and compliance with federal, state and international data privacy and security laws. Melissa counsels clients on a variety of legal questions related to information and data usage, including the requirements of the EU General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other privacy and data protection laws and regulations.
Melissa also assists clients with the development, implementation, assessment and maintenance of compliance programs. Her broader practice includes advising clients on breach response and preparedness and developing incident response plans, including addressing notification obligations and regulatory investigations from various federal and state regulators. She has handled security incidents for a wide range of entities, including educational institutions, health systems, consulting firms and technology companies.
In addition to her work in the area of data privacy, Melissa has experience in all stages of litigation. She has represented clients in class actions, including employers and timekeeping companies in actions filed under state biometric laws. Melissa’s clients have also included Fortune 500 companies, which she represented in products liability and premises liability matters.