Skip to main content
Top Button
Stephen Reynolds is a partner in Ice Miller's Litigation Group and a founder of the Firm’s Data Security and Privacy Practice. Stephen frequently advises clients on complex matters involving data security and privacy laws and serves on the board of directors of the International Association of Privacy Professionals (IAPP). Stephen’s expertise adds value to organizations by mitigating cyberthreats through proactive preventative measures and navigating complex litigation on behalf of clients in data security and privacy.

Data security, privacy and other cyberthreats create risk for companies of all sizes. Stephen has worked with a wide range of clients from Fortune 50 members to small businesses that are the victims of cybersecurity incidents. Stephen has advised on ransomware attacks, fund transfer fraud, data breaches, and business email compromise matters. Cybersecurity threats are a risk to businesses of any size, and Stephen has the experience to guide clients through any cyber event. Additionally, he actively represents companies in data security and privacy matters and has litigated through trial multiple other matters—such as products liability cases, construction litigation, trade secrets litigation, and general commercial litigation. Stephen has personally led over 200 security incidents as data breach coach.

Originally from Sebastian, Florida, Stephen earned his Bachelor of Arts from the University of Florida in 2004. Upon graduation, he was employed as a computer programmer and IT analyst.
Stephen received his juris doctor from the Indiana University Maurer School of Law in 2008, where he was a member of the Indiana Law Journal.
As a former computer programmer and IT analyst, Stephen is uniquely able to and routinely uses his computer background in cases involving data security and privacy, electronic discovery, social media discovery, and computer forensics. Stephen has given several presentations on data security and privacy, electronic discovery and social media discovery, and is a Certified Information Privacy Professional (CIPP/US). In addition to being a Certified Information Systems Security Professional (CISSP), Stephen teaches CISSP classes as a Direct Instructor with the (ISC)².
Stephen is also one of the leaders of Ice Miller's Internet of Things (IoT) industry initiative. He has worked with manufacturers of interconnected devices to identify risks associated with collecting and transferring of data, respond to cyber-attacks, and assist with reporting obligations and corrective action plans with the Consumer Product Safety Commission (CPSC).
Along with Nick Merker, Stephen teaches a course on Data Security and Privacy Law at the Robert H. McKinney School of Law: Indiana University.
Additionally, Stephen has extensive experience representing health care providers and mental health facilities in civil commitment hearings and proceedings regarding the release of mental health and other health care records.
Representative Clients
Reported and Representative Cases
In the Matter of the Commitment of J.K., No. 19A-MH-1886, 2020 WL 1909310 (Ind. Ct. App. Apr. 20, 2020)

Coachman v. IRS Worker Comp. Branch, No. 119CV01003JPHTAB, 2020 WL 1042531 (S.D. Ind. Mar. 4, 2020)

C.H. v. Cmty. Health Network, No. 19A-MH-1891, 2020 WL 742215 (Ind. Ct. App. Feb. 14, 2020)

In the Matter of the Civil Commitment of L.S., No. 19A-MH-1610, 2020 WL 701189 (Ind. Ct. App. Feb. 12,  2020)

In the Matter of the Civil Commitment of A.M. v. Community Health Network,Inc., 121 N.E. 3d 1039 (Ind. 2019), reh'g denied (June 28, 2019)

In the Matter of the Civil Commitment of K.G., 2019 WL 4065543 (Ind. Ct. App. Aug. 29, 2019)

In the Matter of the Civil Commitment of K.G., 2019 WL 3211316 (Ind. Ct. App. July 17, 2019)

In the Matter of the Civil Commitment of M.T., 132 N.E.3d 938 (Ind. Ct. App. 2019)

In the Matter of the Civil Commitment of B.N., 137 N.E.3d 330 (Ind. Ct. App. 2019)

In the Matter of the Civil Commitment of T.W., 121 N.E.3d 1039 (Ind. 2019)

Matter of Civil Commitment of A.M., No. 18A-MH-636, 2018 WL 6547211 (Ind. Ct. App. Dec. 13, 2018)

C.H. v. Options Behavioral Health Sys., No. 18A-MH-638, 2018 WL 5943704 (Ind. Ct. App. Nov. 14, 2018)

Appointed Consumer Privacy Ombudsman, In re Competition Accessories, LLC, No. 17-91310-BHL-11 (Bankr. S.D. Ind. 2017)

Ryan v. Ctr. Twp. Constable's Office, Case No. 1:15-cv-01387-TWP-TAB, 2016 WL 4592211 (S.D. Ind. Sept. 2, 2016)

Exec. Mgmt. Servs., Inc. v. Fifth Third Bank, No. 1:13-CV-582-WTL-MJD, 2016 WL 3881220 (S.D. Ind. July 12, 2016)

Community Health Network v. Bails, 53 N.E.3d 450 (Ind. Ct. App. 2016).

Fidlar Technologies v. LPS Real Estate Data Solutions, Inc., 82 F. Supp. 3d 844 (C.D. Ill. 2015), aff’d, 810 F.3d 1075 (7th Cir. 2016)
Graves v. Indiana University Health, 32 N.E.3d 1196 (Ind. Ct. App. 2015), trans. denied, 43 N.E.3d 244 (Ind. 2015)
R.P. v. Optional Behavior MHS, 26 N.E. 3d 1032 (Ind. Ct. App. 2015)
Civil Commitment of R.S. v. Gallahue Mental Health Services, 26 N.E.3d 1072 (Ind. Ct. App. 2015), trans. denied, 17 N.E.3d 932 (Ind. 2015)
Civil Commitment of M.S. v. Gallahue Mental Health Services, 14 N.E.3d 137 (Ind. Ct. App. 2014)
In re Commitment of C.P., 10 N.E.3d 1023 (Ind. Ct. App. 2014)
Graves v. Kovacs, 990 N.E.2d 972 (Ind. Ct. App. 2013)
HDNet LLC v. North American Boxing Council, 972 N.E.2d 920 (Ind. Ct. App. 2012), trans. denied, 980 N.E.2d 322 (Ind. 2012)
Castetter v. Township, 959 N.E.2d 837 (Ind. Ct. App. 2011)
Ice TV
Firm Publications
Blog Posts
Published In
Speaking Engagements
  • 2018 Indiana State  Bar Association Annual Meeting, "Cybersecurity Litigation: Managing Risk in a Risky World," October 11, 2018 - French Lick, IN
  • Global Security Exchange, "Data Breach Response: Tips for Involving Your Attorney and Law Enforcement," September 24, 2018 - Las Vegas, NV
  • ICMCP 2018 National Conference, "Hack Your Career: Ethical Shortcuts for Progressing in Cybersecurity," September 18, 2018 - Atlanta, GA
  • DRI Cybersecurity and Data Privacy Seminar, "The Intersection of Data Security and Ethics," September 7, 2018 - Chicago, IL
  • Chicago Electronic CrimesTask Force, sponsored by CNA Insurance and the United States Secret Service, "Cybersecurity Legal Update," August 29, 2018 - Chicago, IL
  • Indiana State Bar Association, "Managing Cybersecurity and Data Privacy," August 27, 2018 - Indianapolis, IN
  • Rocky Mountain Information Security Conference, "GDPR . . . . Separating Fact from Fiction," May 10, 2018 - Denver, CO
  • Indiana Chamber of Commerce Cybersecurity Conference, "First Came the Hackers, Then Came the Lawyers:  Responding to Litigation and Enforcement Actions Following a Data Breach," May 1, 2018 - Indianapolis, IN
  • ABA Corporate Counsel CLE Seminar, "The Internet of Things:  Changing Business, Changing Law, and Changing Lives," February 15-17, 2018 - La Quinta, CA
  • Cybersecurity Awareness Symposium, "Cyber Insurance and Internal Investigations," December 7, 2017 - Schererville, IN
  • 2017 ISSA International Conference, “GDPR is Effective May 2018: If you operate in Europe and don’t know that acronym, you probably should attend this session,” October 10, 2017 – San Diego, CA
  • IoT Tech Expo North America, "Information Security in Contracting" November 29, 2017 - Santa Clara, CA
  • Indianapolis Bar Association, "Data Security: Reining in Ransomware," September 26, 2017 - Indianapolis, IN
  • HR Indiana Annual Conference - The Psychology of a Data Breach, Indianapolis, IN - August 29, 2017
  • CPAs in Business and Industry Conference, "What All Businesses Should Know about the Internet of Things," June 21, 2017 - Carmel, IN
  • Indiana Continuing Legal Education Forum - Data Security Class Actions in the Seventh Circuit, Indianapolis, IN - June 16, 2017
  • Seventh Circuit Bar Association Annual Meeting - The Impact of Digital/Data Breach, Indianapolis, IN - May 1, 2017
  • The Center for Education and Research in Information Assurance and Security at Purdue University - The Rise of Cyber-Crime: A Legal Perspective, West Lafayette, IN - March 8, 2017
  • Indiana Cybersecurity State of the State 2016 - Cyber Risk/Law, Indianapolis, IN - November 22, 2016
  • Health Care Compliance Association's Indianapolis Regional Conference: IT HIPAA Security/Privacy, Indianapolis, IN - September 30, 2016
  • Robert H. McKinney School of Law Center for Intellectual Property Law and Innovation Event: "Recent Developments in Trade Secret Law and Litigation", Indianapolis, IN - September 27, 2016
  • ISSA May 2016 CISO Executive Forum: "Information Security in Contracts", Charlotte, NC - May 19-20, 2016
  • 2016 Indiana Health Information Management Association Annual Meeting: "Managing PHI in the Electronic Age: Top Legal Concerns...& Solutions", Indianapolis, IN - May 11, 2016
  • Ice Miller's Data Security and Privacy Practice with the Healthcare Financial Management Association: "Cyber-Crime: What Every Healthcare Professional Should Know", webinar - April 20, 2016
  • "The 21st Century Imperative: Cybersecurity", Butler University, Indianapolis, IN - Feb. 26, 2016
  • American Bar Association 2016 Corporate Counsel CLE Seminar: "Secure Your Data and Your Dollars: How to Effectively and Ethically Deal with Cyber- Attacks", Scottsdale, AZ - Feb. 11-14, 2016
  • "The New Business Threat:  Cyber-Crime," Ice Miller CLE Forum for In-House Counsel, Indianapolis, IN - Dec. 10, 2015
  • "The New Business Threat:  Cyber-Crime," Ice Miller CLE Forum for In-House Counsel, Columbus, Ohio - Dec. 1, 2015
  • Indiana Hospital Association Annual Meeting: Secure Your Data and Your Money: Preventing, Insuring and Surviving Cyber Attacks and Fund Transfer Fraud, Indianapolis, IN - Nov. 12, 2015
  • Information Systems Security Association's (ISSA) 2015 International Conference: Preventing, Insuring and Surviving Fund Transfer Fraud, Chicago, IL - Oct. 12, 2015
  • 2015 CACR Cybersecurity Summit: Preventing, Insuring and Surviving Fund Transfer Fraud, Indianapolis, IN - Sept. 15, 2015
  • "How to Respond to a Data Breach" - SHRM Annual Conference, Indianapolis, IN - August 26, 2015
  • "E-Discovery in Products Liability Litigation: Preparing for New FRCP Amendments on Proportionality and ESI", Strafford CLE webinar - August, 19, 2015
  • "Protect Data: Learn How to Prepare for, Prevent, and Address a Data Breach", Indianapolis, IN - April 22, 2015
  • "Data Breach: What You Need to Know" - March 24, 2015
  • “Data Breach: Guarding Against and Responding to a Data Breach,” CO-ACC Data Privacy and Professionalism CLE Presentation, Columbus, Ohio, March 19, 2015
  • "Prepare for the Inevitable: The Impact of a Data Breach on Your Business", Lisle, IL - March 12, 2015
  • Cyber-Security Seminar, Indiana Chamber of Commerce - Feb. 4, 2015
  • 2014 Products Liability Year in Review, 2015 Environmental, Mass Torts & Products Liability Litigation Committees' Joint CLE Seminar, Snowmass, CO - Jan. 31, 2015
  • "Practical Implications of a Data Breach," International Association of Privacy Professionals (IAPP) KnowledgeNet, Indianapolis, IN - Nov. 12, 2014 
  • “Electronic Discovery Update and Practice Pointers,” Ice Miller CLE Forum for In-House Counsel, Columbus, Ohio - Dec. 4, 2014
  • “The Anatomy of a Data Breach,” Ice Miller CLE Forum for In-House Counsel, Columbus, Ohio - Dec. 4, 2014
  • "Everything You Don't Know About E-Discovery (But Wish You Did)," National Business Institute CLE - April 24, 2013
View Full Site View Mobile Optimized