Patrick H. Haggerty

Partner

Cincinnati
T +1.513.929.3412
F +1.513.929.0303

Overview

Pat Haggerty is a member of the firm’s Chambers USA-ranked Privacy and Data Protection Team. He advises clients involved in security incidents implicating domestic and international laws and regulations. Drawing on his extensive experience representing companies in connection with government investigations and enforcement actions, as well as his experience handling litigation matters, Pat provides companies that have experienced security incidents with business-focused, practical solutions that minimize regulatory and litigation risk. Having handled more than 100 data security incidents across the financial, healthcare and retail industries, Pat works with clients to develop and implement information security compliance programs and incident response plans.

Pat has earned the designation of Certified Information Privacy Manager (CIPM) through the International Association of Privacy Professionals (IAPP).

Select Experience

Privacy and Data Protection
  • Advises clients in the financial, healthcare, and retail sectors in cybersecurity and data breach incidents in the U.S. and abroad.
  • Represents clients in FTC, OCR, and state attorneys general (including multistate taskforce) investigations and enforcement actions for alleged data security and privacy violations.
Commercial Litigation
  • Obtained dismissal on behalf of a foreign country precluding breach of contract and misrepresentation claims in U.S. District Court for the Central District of California based on Foreign Sovereign Immunities Act. Dismissal was affirmed on appeal by U.S. Court of Appeals for Ninth Circuit.
White Collar Defense and Corporate Investigations
  • Represented former senior officer of publicly traded company in connection with investigation by U.S. Securities and Exchange Commission concerning revenue recognition. Agency decided to take no action against the former senior officer after a Wells submission.
More »

Experience

Privacy and Data Protection
  • Advises clients in the financial, healthcare, and retail sectors in cybersecurity and data breach incidents in the U.S. and abroad.
  • Represents clients in FTC, OCR, and state attorneys general (including multistate taskforce) investigations and enforcement actions for alleged data security and privacy violations. 
  • Advises companies on proactive cybersecurity readiness, including running full-scale tabletop exercises for executives and employees.
  • Represents multiple healthcare entities in breach of patient confidentiality lawsuits in state courts across the U.S.
  • Provides privacy due diligence and contract drafting to M&A teams. 
Commercial Litigation
  • Obtained dismissal on behalf of a foreign country precluding breach of contract and misrepresentation claims in U.S. District Court for the Central District of California based on Foreign Sovereign Immunities Act. Dismissal was affirmed on appeal by U.S. Court of Appeals for Ninth Circuit.
  • Represented board of directors of a public company in breach of fiduciary duty lawsuit brought in U.S. Bankruptcy Court for Eastern District of Virginia. Involved in discovery and extensive motion practice. Matter was settled through mediation.
White Collar Defense and Corporate Investigations
  • Represented former senior officer of publicly traded company in connection with investigation by U.S. Securities and Exchange Commission concerning revenue recognition. Agency decided to take no action against the former senior officer after a Wells submission.
  • Represented oil service provider in joint investigation by U.S. Securities and Exchange Commission and U.S. Department of Justice regarding alleged violations of Foreign Corrupt Practices Act related to conduct allegedly occurring in Kazakhstan, Nigeria and Angola. Obtained settlement in which DOJ agreed to take no action against company and company agreed to pay minimal fine to SEC.

Recognitions and Memberships

Recognitions

  • The Legal 500 United States (2017)
    • Recommended in Cyber law (including data protection and privacy)

Memberships

  • American Bar Association
  • Ohio State Bar Association
  • Cincinnati Bar Association
  • Kentucky Bar Association 
  • Cincinnati Academy of Leadership for Lawyers: Member of Class XX (2016) 
  • International Association of Privacy Professionals (IAPP)
    • Certified Information Privacy Manager (CIPM)
    • Cincinnati IAPP KnowledgeNet: Co-Chair
  • Potter Stewart American Inn of Court

Blog Posts

Pro Bono

  • Represented former prisoner in Federal Tort Claims Act lawsuit against the United States brought in U.S. District Court for the District of Columbia.
  • Represented widower in Social Security benefits matter before an administrative law judge.
  • Co-authored two amicus briefs filed with the Supreme Court of the United States.

Prior Positions

  • Law Clerk to the Honorable Thomas M. Reavley, U.S. Court of Appeals for the Fifth Circuit
  • Law Clerk to the Honorable Leonard Davis, U.S. District Court of the Eastern District of Texas 

Admissions

  • U.S. Supreme Court
  • U.S. Court of Appeals, Ninth Circuit
  • U.S. District Court, Southern District of Ohio
  • U.S. District Court, District of Columbia
  • Ohio
  • Kentucky

Education

  • J.D., University of Cincinnati College of Law, 2002, Frank S. Rowley Scholarship; Dean's Honors List; Editor-in-Chief, University of Cincinnati Law Review
  • B.S., Business and Economics, University of Kentucky, 1999, Dean's List

Blog

In The Blogs

Previous Next
Data Privacy Monitor
U.S. Senate Duo and California Ballot Initiative Propose to Radically Alter U.S. Consumer Internet Privacy and Upend Digital Advertising
By Alan L. Friel
April 19, 2018
Amid growing concerns over the improper use of user information and data breaches, and in the same week as the Senate examines the Cambridge Analytica controversy, a duo of U.S. senators who have long advocated for federal consumer privacy...
Read More ->
Data Privacy Monitor
The Weekly Privacy Rewind
April 18, 2018
Class Actions Uber Data Breach Suits Consolidated in California • The U.S. Judicial Panel on Multidistrict Litigation has settled on the U.S. District Court for the Central District of California in which to centralize the class actions...
Read More ->
Data Privacy Monitor
Deeper Dive: Take Action to Close the Largest Cause of Data Security Incidents – Your Employees
By David E. Kitchen
April 17, 2018
If you work at a typical company, employee actions and inadvertent present the greatest threat to the security of your data. Therefore, providing proper training and technical safeguards is one of the most important means to enhance your...
Read More ->
Data Privacy Monitor
The Weekly Privacy Rewind
By Julie A. Hein, Aaron R. Lancaster
April 11, 2018
Canada Data Breach Notification Provisions of PIPEDA Act Go Into Effect Nov. 1, 2018 • Pursuant to a March 26, 2018 Order in Council, the mandatory breach notification provisions of Canada’s Personal Information Protection and Electronic...
Read More ->
Data Privacy Monitor
Deeper Dive: Minimizing Risk
By Brian P. Bartish, Patrick H. Haggerty, M. Scott Koller
April 3, 2018
For organizations of any size, making sense of the constantly evolving cyber risk landscape can seem daunting. With new threats materializing on a constant basis, it can be difficult for organizations to efficiently allocate resources and...
Read More ->