Privacy and Data Protection – Information Technology

Overview

We focus our work for the IT industry on technology transactions, in addition to our usual comprehensive range of privacy and data protection services. We handle vendor contracts, mergers and acquisitions, and agreements involving the ownership, usage, transfer, and sharing of data, as well as a significant number of cloud computing deals for enterprise purchasers and cloud service providers. Our clients include: Web, software, and app developers; social game publishers; companies involved in the cloud, SaaS, platform usage, data analytics, network security solutions, advertising technologies and payment processing: and companies involved in Website, mobile app, and video game development.

Select Experience

  • Conducting due diligence and negotiating more than 150 cloud computing transactions on behalf of both cloud service providers and enterprise purchasers, including Software as Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS).
  • Developing contract programs for technology service providers, including their master services agreement as well as a framework for negotiating revisions with their customers.
  • Providing guidelines to clients in assessing cloud computing risks, including indemnification and limits of liability.
  • Developing and assessing Service Level Agreements (SLAs) in various settings, addressing issues such as business interruption and customer service.
More »

Experience

  • Conducting due diligence and negotiating more than 150 cloud computing transactions on behalf of both cloud service providers and enterprise purchasers, including Software as Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS).
  • Developing contract programs for technology service providers, including their master services agreement as well as a framework for negotiating revisions with their customers.
  • Providing guidelines to clients in assessing cloud computing risks, including indemnification and limits of liability.
  • Developing and assessing Service Level Agreements (SLAs) in various settings, addressing issues such as business interruption and customer service.
  • Facilitating the development and implementation of best practices to protect clients’ interests when purchasing and using cloud computing services.
  • Analyzing internal information governance requirements to mitigate cloud computing risks.
  • Developing internal and public-facing policies for responding to government access requests (pursuant to the Electronic Communication Privacy Act and other applicable laws) and addressing consumer privacy concerns in connection with the same.
  • Assessing and advising on international data transfers in the cloud and beyond under the European Data Protection Directive and other non-U.S. laws.
  • Advising technology service organizations on the development of predictive analytics technologies to provide fraud prevention and detection and digital marketing services consistent with applicable laws, FTC guidance, and best practices.
  • Advising traditional brick-and-mortar companies on the development of big data services in the business-to-consumer and business-to-business context based on the aggregation of consumer data.

Recognition

  • Recognized as one of the top law firms for client service, we were named to the 2018 BTI Client Service 30 for the fourth consecutive year.

News

Publications

Key Contacts

Blog

In The Blogs

Previous Next
Data Privacy Monitor
When Obscurity Is Not a Defense
February 22, 2018
Many organizations facing a data-security incident struggle to understand how or why their organization was targeted in an attack. Most simply believe they are too small or too obscure to be targeted by malicious cyber actors. Even larger...
Read More ->
Data Privacy Monitor
Recent OCR Newsletter Highlights Growing Cyber Extortion Threat for Healthcare Organizations
February 19, 2018
The OCR’s January 2018 newsletter details specific types of cyber extortion that healthcare organizations are currently encountering, including ransomware, denial of service attacks, distributed denial of service attacks and theft of...
Read More ->
Data Privacy Monitor
Looking Back: The Federal Trade Commission Issues Annual Data Privacy Report for 2017
February 6, 2018
On Jan. 18, 2018, the Federal Trade Commission (FTC) published its Annual Privacy and Data Security Update. The update is helpful to businesses in that it recaps the efforts and areas of involvement the FTC has targeted in the past year as...
Read More ->
Data Privacy Monitor
SAMHSA Updates Privacy Regulations to Reflect Advancements in Healthcare
January 31, 2018
On Jan. 3, 2018, the Substance Abuse and Mental Health Services Administration (SAMHSA) issued its final rule regarding the Confidentiality of Substance Use Disorder Patient Records Part 2. These changes become effective Feb. 2, 2018. As...
Read More ->
Data Privacy Monitor
Clock Ticking, European Commission Launches GDPR Implementation Guidance Website
January 26, 2018
With only four months remaining until the EU General Data Protection Regulation takes effect on May 25, 2018, the European Commission has launched a new website offering guidance on requirements and implementation targeted at an array of...
Read More ->