Ice Miller’s Data Security and Privacy Team: Technological and security experience focused on solutions for clients' real world legal needs.
Cybersecurity and data privacy represent serious business risks. Our team of data security and privacy attorneys seek to turn these risks into manageable business opportunities.
Our data security and privacy lawyers are intimately familiar with technology and associated security risks—our data security and privacy team includes information technology professionals; systems, network, and security engineers; software developers; and former CIA and defense department intelligence officers. We are well-versed in dealing with integration of technologies and software into business processes and enterprise systems, which enables our team to guide our clients to realistic and practical solutions to complex legal and regulatory issues. We understand that data security and cyber security are real risks for organizations, and by leveraging our expertise, clients know they are compliant and have the systems in place to mitigate cybersecurity risks should a cyberthreat materialize.
Our data security and privacy team has the legal resources that span information security, data privacy, personnel and physical security, our team can help clients implement end-to-end coverage of privacy and data security issues. We routinely design and implement information privacy and cybersecurity programs that reflect a client’s business and legal imperatives. Our data security and privacy team has the experience to navigate the specific cybersecurity needs for each client and across different industries. When problems arise, our incident response capabilities range from dealing with ransomware and malware events to managing the complex regulatory demands of breach notification and defending clients in state and federal courts.
Our attorneys include thought leaders in many key areas of information security and data privacy. This includes lawyers who take leading roles in developing best practices in data security, others who speak frequently to international audiences on issues such as cyberthreats, and others who serve as instructors for leading security and privacy organizations. As cyberthreats become an increasingly likely risk for businesses and organizations, proactively seeking counsel with specific expertise in data security and privacy laws mitigates risks and helps businesses arrive at resolutions more quickly.
Click the icon below to learn more about each area of practice.
Practice Areas of Concentration
Litigation and Investigations
- Data Breach and Incident Response, Investigation and Litigation
- Regulatory Agency Investigations into Data Privacy and Security Standards and Best Practices
- Government Agency Data Requests
- HIPAA-based Audits by the HHS Office for Civil Rights
- Online Defamation, Right of Publicity
- North American Electric Reliability Corporation Audits
- PCI-DSS Compliance Audits
Counseling
- EU Data Protection Issues – General Data Protection Regulation (GDPR)
- California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA)
- Cybersecurity and Network Intrusion Issues
- Ransomware and Cyber Extortion Response, Prevention and Remediation
- Insurance Coverage Analysis and Loss Recovery
- Global Data Protection and International Data Transfers
- Public and Private School and University Data Privacy Compliance
- Legal Compliance and Information Security Assessments
- Issues with Collection and Use of Employee Information
- Implementation of Industry Best Practices in Data Privacy and Security
- Information Management and Governance
- Data Analytics and Big Data Concepts
- Proper Collection and Use of Financial Information, Including Credit Card Information
- Online Privacy Policies and Terms of Use
- Data Mapping
- HIPAA Security Rule Risk Assessments
- HIPAA Privacy Rule and Breach Notification Rule Compliance
- Preparation for both NERC Operations & Planning and CIP Audits, Including Acting as a Lead Mock Auditor
- Assisting in Gap, Mock-Audit and Audit for both CIP and Operations & Planning NERC Audits
- General Data Protection Regulation (GDPR) Compliance
- Family Educational Rights and Privacy Act (FERPA) and Protection of Pupil Rights Amendment (PPRA) Compliance
- Illinois Biometric Privacy Act (BIPA) Compliance