Patrick H. Haggerty

Partner

Cincinnati
T +1.513.929.3412
F +1.513.929.0303

Overview

Pat Haggerty is a member of the firm’s Chambers USA-ranked Privacy and Data Protection Team. He advises clients involved in security incidents implicating domestic and international laws and regulations. Drawing on his extensive experience representing companies in connection with government investigations and enforcement actions, as well as his experience handling litigation matters, Pat provides companies that have experienced security incidents with business-focused, practical solutions that minimize regulatory and litigation risk. Having handled more than 100 data security incidents across the financial, healthcare and retail industries, Pat works with clients to develop and implement information security compliance programs and incident response plans.

Pat has earned the designation of Certified Information Privacy Manager (CIPM) through the International Association of Privacy Professionals (IAPP).

Select Experience

Privacy and Data Protection
  • Advises clients in the financial, healthcare, and retail sectors in cybersecurity and data breach incidents in the U.S. and abroad.
  • Represents clients in FTC, OCR, and state attorneys general (including multistate taskforce) investigations and enforcement actions for alleged data security and privacy violations.
Commercial Litigation
  • Obtained dismissal on behalf of a foreign country precluding breach of contract and misrepresentation claims in U.S. District Court for the Central District of California based on Foreign Sovereign Immunities Act. Dismissal was affirmed on appeal by U.S. Court of Appeals for Ninth Circuit.
White Collar Defense and Corporate Investigations
  • Represented former senior officer of publicly traded company in connection with investigation by U.S. Securities and Exchange Commission concerning revenue recognition. Agency decided to take no action against the former senior officer after a Wells submission.
More »

Experience

Privacy and Data Protection
  • Advises clients in the financial, healthcare, and retail sectors in cybersecurity and data breach incidents in the U.S. and abroad.
  • Represents clients in FTC, OCR, and state attorneys general (including multistate taskforce) investigations and enforcement actions for alleged data security and privacy violations. 
  • Advises companies on proactive cybersecurity readiness, including running full-scale tabletop exercises for executives and employees.
  • Represents multiple healthcare entities in breach of patient confidentiality lawsuits in state courts across the U.S.
  • Provides privacy due diligence and contract drafting to M&A teams. 
Commercial Litigation
  • Obtained dismissal on behalf of a foreign country precluding breach of contract and misrepresentation claims in U.S. District Court for the Central District of California based on Foreign Sovereign Immunities Act. Dismissal was affirmed on appeal by U.S. Court of Appeals for Ninth Circuit.
  • Represented board of directors of a public company in breach of fiduciary duty lawsuit brought in U.S. Bankruptcy Court for Eastern District of Virginia. Involved in discovery and extensive motion practice. Matter was settled through mediation.
White Collar Defense and Corporate Investigations
  • Represented former senior officer of publicly traded company in connection with investigation by U.S. Securities and Exchange Commission concerning revenue recognition. Agency decided to take no action against the former senior officer after a Wells submission.
  • Represented oil service provider in joint investigation by U.S. Securities and Exchange Commission and U.S. Department of Justice regarding alleged violations of Foreign Corrupt Practices Act related to conduct allegedly occurring in Kazakhstan, Nigeria and Angola. Obtained settlement in which DOJ agreed to take no action against company and company agreed to pay minimal fine to SEC.

Recognitions and Memberships

Recognitions

  • The Legal 500 United States (2017)
    • Recommended in Cyber law (including data protection and privacy)

Memberships

  • American Bar Association
  • Ohio State Bar Association
  • Cincinnati Bar Association
  • Kentucky Bar Association 
  • Cincinnati Academy of Leadership for Lawyers: Member of Class XX (2016) 
  • International Association of Privacy Professionals (IAPP)
    • Certified Information Privacy Manager (CIPM)
    • Cincinnati IAPP KnowledgeNet: Co-Chair
  • Potter Stewart American Inn of Court

Blog Posts

Pro Bono

  • Represented former prisoner in Federal Tort Claims Act lawsuit against the United States brought in U.S. District Court for the District of Columbia.
  • Represented widower in Social Security benefits matter before an administrative law judge.
  • Co-authored two amicus briefs filed with the Supreme Court of the United States.

Prior Positions

  • Law Clerk to the Honorable Thomas M. Reavley, U.S. Court of Appeals for the Fifth Circuit
  • Law Clerk to the Honorable Leonard Davis, U.S. District Court of the Eastern District of Texas 

Admissions

  • U.S. Supreme Court
  • U.S. Court of Appeals, Ninth Circuit
  • U.S. District Court, Southern District of Ohio
  • U.S. District Court, District of Columbia
  • Ohio
  • Kentucky

Education

  • J.D., University of Cincinnati College of Law, 2002, Frank S. Rowley Scholarship; Dean's Honors List; Editor-in-Chief, University of Cincinnati Law Review
  • B.S., Business and Economics, University of Kentucky, 1999, Dean's List

Blog

In The Blogs

Previous Next
Data Privacy Monitor
The Weekly Privacy Rewind
By Aaron R. Lancaster
October 8, 2018
BIPA Medline and Con Tech Lighting Latest Illinois Employers Hit With Claims under BIPA • Two Illinois employers, Con Tech Lighting and Medline Industries, are the latest to face claims alleging violations of Illinois’ Biometric...
Read More ->
Data Privacy Monitor
California Legislature Cracks Down on Advertising Bots Involved in Commercial Transactions and Influencing Voters in Elections
By Alan L. Friel
October 8, 2018
By: Alan L. Friel and Zoe Steinberg Bot or real person? – a question most online users probably don’t ask themselves when interacting online or seeing how many followers a person has on a social media platform. Most likely, online users...
Read More ->
Data Privacy Monitor
The Ninth Circuit Wades Into the “Autodialer” Fray and Creates a Circuit Split. TCPA Litigants Await FCC Guidance
By Rand L. McClellan
September 27, 2018
What constitutes an autodialer or “automatic telephone dialing system” (ATDS) under the Telephone Consumer Protection Act (TCPA) is in flux. Under the statute, an “automatic telephone dialing system” is defined as “equipment that has the...
Read More ->
Data Privacy Monitor
California Delays Privacy Law Enforcement and Congress Is Lobbied to Pre-empt the Law
By Alan L. Friel
September 25, 2018
This summer California enacted, effective Jan. 1, 2020, the California Consumer Privacy Act (CCPA), a privacy law unprecedented in the U.S. that grants California residents a broad range of European-like privacy rights. Amendments passed...
Read More ->
Data Privacy Monitor
Deeper Dive: Minimizing Risk
By Brian P. Bartish, Patrick H. Haggerty, M. Scott Koller
April 3, 2018
For organizations of any size, making sense of the constantly evolving cyber risk landscape can seem daunting. With new threats materializing on a constant basis, it can be difficult for organizations to efficiently allocate resources and...
Read More ->