Patrick H. Haggerty

Partner

Cincinnati
T +1.513.929.3412
F +1.513.929.0303

Overview

Pat Haggerty is a member of the firm’s Chambers USA-ranked Privacy and Data Protection Team. He advises clients involved in security incidents implicating domestic and international laws and regulations. Drawing on his extensive experience representing companies in connection with government investigations and enforcement actions, as well as his experience handling litigation matters, Pat provides companies that have experienced security incidents with business-focused, practical solutions that minimize regulatory and litigation risk. Having handled more than 100 data security incidents across the financial, healthcare and retail industries, Pat works with clients to develop and implement information security compliance programs and incident response plans.

Pat has earned the designation of Certified Information Privacy Manager (CIPM) through the International Association of Privacy Professionals (IAPP).

Select Experience

Privacy and Data Protection
  • Advises clients in the financial, healthcare, and retail sectors in cybersecurity and data breach incidents in the U.S. and abroad.
  • Represents clients in FTC, OCR, and state attorneys general (including multistate taskforce) investigations and enforcement actions for alleged data security and privacy violations.
Commercial Litigation
  • Obtained dismissal on behalf of a foreign country precluding breach of contract and misrepresentation claims in U.S. District Court for the Central District of California based on Foreign Sovereign Immunities Act. Dismissal was affirmed on appeal by U.S. Court of Appeals for Ninth Circuit.
White Collar Defense and Corporate Investigations
  • Represented former senior officer of publicly traded company in connection with investigation by U.S. Securities and Exchange Commission concerning revenue recognition. Agency decided to take no action against the former senior officer after a Wells submission.
More »

Experience

Privacy and Data Protection
  • Advises clients in the financial, healthcare, and retail sectors in cybersecurity and data breach incidents in the U.S. and abroad.
  • Represents clients in FTC, OCR, and state attorneys general (including multistate taskforce) investigations and enforcement actions for alleged data security and privacy violations. 
  • Advises companies on proactive cybersecurity readiness, including running full-scale tabletop exercises for executives and employees.
  • Represents multiple healthcare entities in breach of patient confidentiality lawsuits in state courts across the U.S.
  • Provides privacy due diligence and contract drafting to M&A teams. 
Commercial Litigation
  • Obtained dismissal on behalf of a foreign country precluding breach of contract and misrepresentation claims in U.S. District Court for the Central District of California based on Foreign Sovereign Immunities Act. Dismissal was affirmed on appeal by U.S. Court of Appeals for Ninth Circuit.
  • Represented board of directors of a public company in breach of fiduciary duty lawsuit brought in U.S. Bankruptcy Court for Eastern District of Virginia. Involved in discovery and extensive motion practice. Matter was settled through mediation.
White Collar Defense and Corporate Investigations
  • Represented former senior officer of publicly traded company in connection with investigation by U.S. Securities and Exchange Commission concerning revenue recognition. Agency decided to take no action against the former senior officer after a Wells submission.
  • Represented oil service provider in joint investigation by U.S. Securities and Exchange Commission and U.S. Department of Justice regarding alleged violations of Foreign Corrupt Practices Act related to conduct allegedly occurring in Kazakhstan, Nigeria and Angola. Obtained settlement in which DOJ agreed to take no action against company and company agreed to pay minimal fine to SEC.

Recognitions and Memberships

Recognitions

  • The Legal 500 United States (2017)
    • Recommended in Cyber law (including data protection and privacy)

Memberships

  • American Bar Association
  • Ohio State Bar Association
  • Cincinnati Bar Association
  • Kentucky Bar Association 
  • Cincinnati Academy of Leadership for Lawyers: Member of Class XX (2016) 
  • International Association of Privacy Professionals (IAPP)
    • Certified Information Privacy Manager (CIPM)
    • Cincinnati IAPP KnowledgeNet: Co-Chair
  • Potter Stewart American Inn of Court

Blog Posts

Pro Bono

  • Represented former prisoner in Federal Tort Claims Act lawsuit against the United States brought in U.S. District Court for the District of Columbia.
  • Represented widower in Social Security benefits matter before an administrative law judge.
  • Co-authored two amicus briefs filed with the Supreme Court of the United States.

Prior Positions

  • Law Clerk to the Honorable Thomas M. Reavley, U.S. Court of Appeals for the Fifth Circuit
  • Law Clerk to the Honorable Leonard Davis, U.S. District Court of the Eastern District of Texas 

Admissions

  • U.S. Supreme Court
  • U.S. Court of Appeals, Ninth Circuit
  • U.S. District Court, Southern District of Ohio
  • U.S. District Court, District of Columbia
  • Ohio
  • Kentucky

Education

  • J.D., University of Cincinnati College of Law, 2002, Frank S. Rowley Scholarship; Dean's Honors List; Editor-in-Chief, University of Cincinnati Law Review
  • B.S., Business and Economics, University of Kentucky, 1999, Dean's List

Blog

In The Blogs

Previous Next
Data Privacy Monitor
New Guidance on GDPR Data Processing Contracts Published by the UK ICO
By David M. Brown
December 14, 2018
The U.K. Information Commissioner’s Office (ICO) recently published guidance on contracts between controllers and processors. This new guidance provides a more in-depth and detailed discussion of the key issues than did a previously...
Read More ->
Data Privacy Monitor
Controversial Australian Encryption Act Denounced by Privacy and Cryptography Advocates
By Brian P. Bartish
December 13, 2018
Last week, Australia’s parliament passed a controversial act that will enable law enforcement and intelligence agencies to compel access to encrypted communications. In an explanatory memorandum, the Australian Parliament stated that the...
Read More ->
Data Privacy Monitor
The Weekly Privacy Rewind
By Aaron R. Lancaster
December 10, 2018
California Consumer Protection Act Privacy Groups Urge California Lawmakers Not to Weaken California Consumer Privacy Act • A variety of privacy groups, including the Electronic Frontier Foundation, the Digital Privacy Alliance and the...
Read More ->
Data Privacy Monitor
The Weekly Privacy Rewind
By Aaron R. Lancaster
December 5, 2018
GDPR European Regulators Fine Uber Over 2016 Data Breach • British and Dutch privacy regulators issued fines totaling approximately $1.2 million against ride-hailing company Uber over its 2016 data breach. • According to the U.K.’s...
Read More ->
Data Privacy Monitor
Deeper Dive: Minimizing Risk
By Brian P. Bartish, Patrick H. Haggerty, M. Scott Koller
April 3, 2018
For organizations of any size, making sense of the constantly evolving cyber risk landscape can seem daunting. With new threats materializing on a constant basis, it can be difficult for organizations to efficiently allocate resources and...
Read More ->