Mergers and Acquisitions, and Transactions


We also provide due diligence support in general M&A and other corporate transactions. No deal maker wants to buy into a data incident or acquire a data set that it cannot use or that will drag it into years of costly litigation, especially if those issues could have been identified during the due diligence process. Under tight time constraints, we efficiently identify, assess, and quantify risk, negotiate representations and warranties to address concerns and mitigate risk, and provide counsel that helps companies make business decisions at the end of the negotiations. We also conduct Data and Digital Risk Assessments, including with regard to:

  • IT products and services arrangements
  • Vendor and partner agreements
  • Product development (including software and Internet of Things)
  • Data collection, processing, use, retention, destruction, sharing, and transfer
  • Data security
  • International issues
  • Advertising, marketing, and promotions campaigns and techniques
  • CRM programs


  • Recognized as one of the top law firms for client service, we were named to the 2018 BTI Client Service 30 for the fourth consecutive year.




In The Blogs

Previous Next
Data Privacy Monitor
The Weekly Privacy Rewind
June 19, 2018
Class Actions Finkly & Sons Co. Faces Illinois Biometric Information Privacy Act Class Action • A former employee of steelmaker A. Finkly & Sons Co. filed a putative class action against the company in Cook County, Illinois, for violations...
Data Privacy Monitor
OCR Announces Intention to Move Forward With Development of Methodology to Distribute Enforcement Funds to Victims of HIPAA Violations
By Kathryn Carey, Lynn Sessions
June 15, 2018
The Office for Civil Rights (OCR) updated its agenda, outlining proposed and final rules as well as pre-rule document releases for 2018. A notable, and highly anticipated, advance notice of proposed rulemaking included on the agenda...
Data Privacy Monitor
11th Circuit Issues Opinion Vacating Order That Required LabMD to Overhaul Its Data Security Program
By Kathryn Carey, Aaron R. Lancaster
June 8, 2018
On June 6, the 11th Circuit issued its long-awaited decision on LabMD Inc. v. Federal Trade Commission, vacating as unenforceable the Federal Trade Commission’s (FTC’s) cease and desist order that required LabMD to create and implement a...
Data Privacy Monitor
The Weekly Privacy Rewind
June 5, 2018
Canada Canadian Banks Notify 90,000 Following Breach • Bank of Montreal and Canadian Imperial Bank of Commerce announced that they were contacted by hackers and informed that nearly 90,000 customers’ personal information was accessed. •...
Data Privacy Monitor
New Jersey Attorney General's Office Ramping Up Data Privacy and Cybersecurity Enforcement Efforts
By Sara M. Goldstein
June 4, 2018
The Office of the New Jersey Attorney General (AG’s Office) recently announced that it will be creating a new civil enforcement unit, known as the Data Privacy & Cybersecurity Section (DPC Section), to investigate data breaches impacting...