Stephen Reynolds - Ice Miller Partner In Litigation and Data Security and Privacy Group

One American Square Suite 2900 Indianapolis, IN 46282-0200

stephen.reynolds@icemiller.com
p: 317-236-2391
f: 317-592-4736

assistant Cyndi Timm
p 317-236-2253
email cyndi.timm@icemiller.com

Education

Undergraduate School
Bachelor of Arts in Criminology, University of Florida 2004

Law School
Indiana University Maurer School of Law 2008

Admissions

United States District Court - Central District of Illinois

Indiana

United States District Court - Northern District of Indiana

United States District Court - Southern District of Indiana

United States Court of Appeals - Seventh Circuit

Assistant

Cyndi Timm
p 317-236-2253
email cyndi.timm@icemiller.com

Education

Undergraduate School
Bachelor of Arts in Criminology, University of Florida 2004
Law School
Indiana University Maurer School of Law 2008

Admissions

United States District Court - Central District of Illinois
Indiana
United States District Court - Northern District of Indiana
United States District Court - Southern District of Indiana
United States Court of Appeals - Seventh Circuit

Awards & Recognitions
- The Best Lawyers in America©, Commercial Litigation and Litigation - Health Care (2021)
- Indiana University Maurer School of Law, Distinguished Service Award (2018)
- Most Influential Black Lawyers, Savoy Magazine (2018)
- Indianapolis Business Journal’s Forty Under 40 (2017)
- Indiana Super Lawyer, Rising Star (2015-2018)
- Finalist, Center for Leadership Development (CLD) Achievement in Professions Award (2012)
- Recipient of the Indiana Lawyer's Leadership in Law Up & Coming Lawyer Award (2012)
Memberships
- Electronic Privacy Working Group for the Defense Research Institute (DRI)
- Local Rules Advisory Committee for the Southern District of Indiana
- Board of Directors, International Association of Privacy Professionals
- Steering Committee, U.S. Secret Service Chicago Cyber Fraud Task Force
- Member, InfraGard Indiana
- Member, Indiana University Cybersecurity Advisory Council
- Advisory Member, Indiana Executive Council on Cybersecurity
- Certified Information Systems Security Professional (502213)
- Program Chair, 2018 DRI Cybersecurity & Privacy Seminar
- Program Vice Chair, 2017 Defense Research Institute (DRI) Cyber Security and Data Privacy CLE
- Member, Central Indiana - Information Systems Security Association (CI-ISSA)
- Seminar Co-Chair, American Bar Association 2017 Corporate Counsel CLE Seminar
- Member, American Bar Association
- Member, Seventh Circuit Bar Association
- Member, Marion County Bar Association
- Member, Indiana State Bar Association
- Member, Indianapolis Bar Association
- Past Member, Law360 Privacy/Consumer Protection Editorial Advisory Board
- Leadership Council on Legal Diversity (LCLD), 2017 Fellow
Community Involvement
- President, Board of Concord Neighborhood Center
- Member, Indiana University Maurer School of Law - Black Law Student Association (BLSA) Alumni Advisory Board
- Board of Directors, Indiana Federal Community Defenders, Inc.
- Board of Directors, Early Learning Indiana
- Board of Directors, Indiana Black Expo, Inc.
- Member, Alumni Board of the Indiana University Maurer School of Law
Professional Certifications
- Certified Information Systems Security Professional (CISSP)
- Certified Information Privacy Professional U.S. Private-Sector (CIPP/US)

Overview
Key Matters
Insights
Speaking Engagements

Stephen Reynolds is a partner in Ice Miller's Litigation Group and a founder of the Firm’s Data Security and Privacy Practice. Stephen frequently advises clients on complex matters involving data security and privacy laws and serves on the board of directors of the International Association of Privacy Professionals (IAPP). Stephen’s expertise adds value to organizations by mitigating cyberthreats through proactive preventative measures and navigating complex litigation on behalf of clients in data security and privacy.

Data security, privacy and other cyberthreats create risk for companies of all sizes. Stephen has worked with a wide range of clients from Fortune 50 members to small businesses that are the victims of cybersecurity incidents. Stephen has advised on ransomware attacks, fund transfer fraud, data breaches, and business email compromise matters. Cybersecurity threats are a risk to businesses of any size, and Stephen has the experience to guide clients through any cyber event. Additionally, he actively represents companies in data security and privacy matters and has litigated through trial multiple other matters—such as products liability cases, construction litigation, trade secrets litigation, and general commercial litigation. Stephen has personally led over 200 security incidents as data breach coach.

Originally from Sebastian, Florida, Stephen earned his Bachelor of Arts from the University of Florida in 2004. Upon graduation, he was employed as a computer programmer and IT analyst.

Stephen received his juris doctor from the Indiana University Maurer School of Law in 2008, where he was a member of the Indiana Law Journal.

As a former computer programmer and IT analyst, Stephen is uniquely able to and routinely uses his computer background in cases involving data security and privacy, electronic discovery, social media discovery, and computer forensics. Stephen has given several presentations on data security and privacy, electronic discovery and social media discovery, and is a Certified Information Privacy Professional (CIPP/US). In addition to being a Certified Information Systems Security Professional (CISSP), Stephen teaches CISSP classes as a Direct Instructor with the (ISC)².

Stephen is also one of the leaders of Ice Miller's Internet of Things (IoT) industry initiative. He has worked with manufacturers of interconnected devices to identify risks associated with collecting and transferring of data, respond to cyber-attacks, and assist with reporting obligations and corrective action plans with the Consumer Product Safety Commission (CPSC).

Along with Nick Merker, Stephen teaches a course on Data Security and Privacy Law at the Robert H. McKinney School of Law: Indiana University.

Additionally, Stephen has extensive experience representing health care providers and mental health facilities in civil commitment hearings and proceedings regarding the release of mental health and other health care records.

Representative Clients

Arjo

Reported and Representative Cases

In the Matter of the Commitment of J.K., No. 19A-MH-1886, 2020 WL 1909310 (Ind. Ct. App. Apr. 20, 2020)

Coachman v. IRS Worker Comp. Branch, No. 119CV01003JPHTAB, 2020 WL 1042531 (S.D. Ind. Mar. 4, 2020)

C.H. v. Cmty. Health Network, No. 19A-MH-1891, 2020 WL 742215 (Ind. Ct. App. Feb. 14, 2020)

In the Matter of the Civil Commitment of L.S., No. 19A-MH-1610, 2020 WL 701189 (Ind. Ct. App. Feb. 12, 2020)

In the Matter of the Civil Commitment of A.M. v. Community Health Network,Inc., 121 N.E. 3d 1039 (Ind. 2019), reh'g denied (June 28, 2019)

In the Matter of the Civil Commitment of K.G., 2019 WL 4065543 (Ind. Ct. App. Aug. 29, 2019)

In the Matter of the Civil Commitment of K.G., 2019 WL 3211316 (Ind. Ct. App. July 17, 2019)

In the Matter of the Civil Commitment of M.T., 132 N.E.3d 938 (Ind. Ct. App. 2019)

In the Matter of the Civil Commitment of B.N., 137 N.E.3d 330 (Ind. Ct. App. 2019)

In the Matter of the Civil Commitment of T.W., 121 N.E.3d 1039 (Ind. 2019)

Matter of Civil Commitment of A.M., No. 18A-MH-636, 2018 WL 6547211 (Ind. Ct. App. Dec. 13, 2018)

C.H. v. Options Behavioral Health Sys., No. 18A-MH-638, 2018 WL 5943704 (Ind. Ct. App. Nov. 14, 2018)

Appointed Consumer Privacy Ombudsman, In re Competition Accessories, LLC, No. 17-91310-BHL-11 (Bankr. S.D. Ind. 2017)

Ryan v. Ctr. Twp. Constable's Office, Case No. 1:15-cv-01387-TWP-TAB, 2016 WL 4592211 (S.D. Ind. Sept. 2, 2016)

Exec. Mgmt. Servs., Inc. v. Fifth Third Bank, No. 1:13-CV-582-WTL-MJD, 2016 WL 3881220 (S.D. Ind. July 12, 2016)

Community Health Network v. Bails, 53 N.E.3d 450 (Ind. Ct. App. 2016).

Fidlar Technologies v. LPS Real Estate Data Solutions, Inc., 82 F. Supp. 3d 844 (C.D. Ill. 2015), aff’d, 810 F.3d 1075 (7th Cir. 2016)

Graves v. Indiana University Health, 32 N.E.3d 1196 (Ind. Ct. App. 2015), trans. denied, 43 N.E.3d 244 (Ind. 2015)

R.P. v. Optional Behavior MHS, 26 N.E. 3d 1032 (Ind. Ct. App. 2015)

Civil Commitment of R.S. v. Gallahue Mental Health Services, 26 N.E.3d 1072 (Ind. Ct. App. 2015), trans. denied, 17 N.E.3d 932 (Ind. 2015)

Civil Commitment of M.S. v. Gallahue Mental Health Services, 14 N.E.3d 137 (Ind. Ct. App. 2014)

In re Commitment of C.P., 10 N.E.3d 1023 (Ind. Ct. App. 2014)

Graves v. Kovacs, 990 N.E.2d 972 (Ind. Ct. App. 2013)

HDNet LLC v. North American Boxing Council, 972 N.E.2d 920 (Ind. Ct. App. 2012), trans. denied, 980 N.E.2d 322 (Ind. 2012)

Castetter v. Township, 959 N.E.2d 837 (Ind. Ct. App. 2011)

Ice TV

Firm Publications

News

Blog Posts

Published In

"Indiana High Court Says Government Can't Unlock Your Phone," Bloomberg Law, July 20, 2020
"Not to Fear, the Feds Are Here: Preserving Attorney–Client Privilege in Data Breach Response," In-House Defense Quarterly, Winter 2020
"Can a Security Breach Impact a Company Years Later? Lessons Learned from the Equifax Breach," Pratt's Privacy & Cybersecurity Law Report, November-December 2019, Vol. 5, No. 9
"Data Protection 101: What Every DRI Member Should Know About Data Protection and Data Privacy," For The Defense, October 2019
"Data Breach Standing: U.S. Supreme Court Declines to Revisit Data Breach Injury Debate," Pratt's Privacy & Cybersecurity Law Report, July-August 2019, Vol. 5, No. 6
"Can the Government Force You to Unlock Your Smartphone?" Bloomberg Law, May 29, 2019
"Should My Family Office Be Concerned About Cybersecurity?" Inside Indiana Business, April 22, 2019
"Four Years Later, FTC Continues to Challenge Misleading Marketing and Privacy Practices," Pratt's Privacy & Cybersecurity Law Report: Vol. 4, No. 9, November/December 2018
“Digital Mapping – The Future is Pokemon Go!” Daily Herald Busines Ledger, June 20, 2018
"2018 Innovation Issue: Reynolds & Kohlstrand on What Blockchain Means for the Practice of Law," Indianapolis Business Journal, June 1, 2018
"Wake Up Call for Businesses After FTC Hits TaxSlayer with 20-Year 'Privacy Probation'," Inside Indiana Business, Jan. 15, 2018
"ACC Cybersecurity Guidelines: The What, Why, and How," Pratt's Privacy & Cybersecurity Law Report, October 2017
"Obtaining Information in the Digital Age," For the Defense, October 2017
"Password Sharing and Actions Against Disgruntled Employees Who Exploit Access," DRI Data and Security Dispatch, Volume 3 Issue 1, August 4, 2017
“Pay Up . . . Or Else? Ransomware is a Growing Threat to Higher Education – Part I,” Pratt’s Privacy & Cybersecurity Law Report, July/August 2017
"Your Privacy Policy Needs Updating: The California Online Privacy Protection Act and Its Implications for Your Business," Pratt's Privacy & Cybersecurity Law Report, June 2017
"2017 Forty Under 40: Stephen Reynolds," Indianapolis Business Journal, Feb. 11, 2017
"Recent Indiana Court of Appeals’ Ruling May Benefit Data Breach, Class Action Defendants," DRI For the Defense, October 2016 issue
“Is your County Prepared for Cyber Crime and Cyber Activism?” Association of Indiana Counties’ Indiana News 29, May/June 2016 issue
"The Internet Of Things Could Put Trade Secrets At Risk," Law360, June 7, 2016
Overcoming Business Challenges in a State of Innovation, Ice Miller 2015 Agribusiness Guide

Speaking Engagements

2018 Indiana State Bar Association Annual Meeting, "Cybersecurity Litigation: Managing Risk in a Risky World," October 11, 2018 - French Lick, IN
Global Security Exchange, "Data Breach Response: Tips for Involving Your Attorney and Law Enforcement," September 24, 2018 - Las Vegas, NV
ICMCP 2018 National Conference, "Hack Your Career: Ethical Shortcuts for Progressing in Cybersecurity," September 18, 2018 - Atlanta, GA
DRI Cybersecurity and Data Privacy Seminar, "The Intersection of Data Security and Ethics," September 7, 2018 - Chicago, IL
Chicago Electronic CrimesTask Force, sponsored by CNA Insurance and the United States Secret Service, "Cybersecurity Legal Update," August 29, 2018 - Chicago, IL
Indiana State Bar Association, "Managing Cybersecurity and Data Privacy," August 27, 2018 - Indianapolis, IN
Rocky Mountain Information Security Conference, "GDPR . . . . Separating Fact from Fiction," May 10, 2018 - Denver, CO
Indiana Chamber of Commerce Cybersecurity Conference, "First Came the Hackers, Then Came the Lawyers: Responding to Litigation and Enforcement Actions Following a Data Breach," May 1, 2018 - Indianapolis, IN
ABA Corporate Counsel CLE Seminar, "The Internet of Things: Changing Business, Changing Law, and Changing Lives," February 15-17, 2018 - La Quinta, CA
Cybersecurity Awareness Symposium, "Cyber Insurance and Internal Investigations," December 7, 2017 - Schererville, IN
2017 ISSA International Conference, “GDPR is Effective May 2018: If you operate in Europe and don’t know that acronym, you probably should attend this session,” October 10, 2017 – San Diego, CA
IoT Tech Expo North America, "Information Security in Contracting" November 29, 2017 - Santa Clara, CA
Indianapolis Bar Association, "Data Security: Reining in Ransomware," September 26, 2017 - Indianapolis, IN
HR Indiana Annual Conference - The Psychology of a Data Breach, Indianapolis, IN - August 29, 2017
CPAs in Business and Industry Conference, "What All Businesses Should Know about the Internet of Things," June 21, 2017 - Carmel, IN
Indiana Continuing Legal Education Forum - Data Security Class Actions in the Seventh Circuit, Indianapolis, IN - June 16, 2017
Seventh Circuit Bar Association Annual Meeting - The Impact of Digital/Data Breach, Indianapolis, IN - May 1, 2017
The Center for Education and Research in Information Assurance and Security at Purdue University - The Rise of Cyber-Crime: A Legal Perspective, West Lafayette, IN - March 8, 2017
Indiana Cybersecurity State of the State 2016 - Cyber Risk/Law, Indianapolis, IN - November 22, 2016
Health Care Compliance Association's Indianapolis Regional Conference: IT HIPAA Security/Privacy, Indianapolis, IN - September 30, 2016
Robert H. McKinney School of Law Center for Intellectual Property Law and Innovation Event: "Recent Developments in Trade Secret Law and Litigation", Indianapolis, IN - September 27, 2016
ISSA May 2016 CISO Executive Forum: "Information Security in Contracts", Charlotte, NC - May 19-20, 2016
2016 Indiana Health Information Management Association Annual Meeting: "Managing PHI in the Electronic Age: Top Legal Concerns...& Solutions", Indianapolis, IN - May 11, 2016
Ice Miller's Data Security and Privacy Practice with the Healthcare Financial Management Association: "Cyber-Crime: What Every Healthcare Professional Should Know", webinar - April 20, 2016
"The 21st Century Imperative: Cybersecurity", Butler University, Indianapolis, IN - Feb. 26, 2016
American Bar Association 2016 Corporate Counsel CLE Seminar: "Secure Your Data and Your Dollars: How to Effectively and Ethically Deal with Cyber- Attacks", Scottsdale, AZ - Feb. 11-14, 2016
"The New Business Threat: Cyber-Crime," Ice Miller CLE Forum for In-House Counsel, Indianapolis, IN - Dec. 10, 2015
"The New Business Threat: Cyber-Crime," Ice Miller CLE Forum for In-House Counsel, Columbus, Ohio - Dec. 1, 2015
Indiana Hospital Association Annual Meeting: Secure Your Data and Your Money: Preventing, Insuring and Surviving Cyber Attacks and Fund Transfer Fraud, Indianapolis, IN - Nov. 12, 2015
Information Systems Security Association's (ISSA) 2015 International Conference: Preventing, Insuring and Surviving Fund Transfer Fraud, Chicago, IL - Oct. 12, 2015
2015 CACR Cybersecurity Summit: Preventing, Insuring and Surviving Fund Transfer Fraud, Indianapolis, IN - Sept. 15, 2015
"How to Respond to a Data Breach" - SHRM Annual Conference, Indianapolis, IN - August 26, 2015
"E-Discovery in Products Liability Litigation: Preparing for New FRCP Amendments on Proportionality and ESI", Strafford CLE webinar - August, 19, 2015
"Protect Data: Learn How to Prepare for, Prevent, and Address a Data Breach", Indianapolis, IN - April 22, 2015
"Data Breach: What You Need to Know" - March 24, 2015
“Data Breach: Guarding Against and Responding to a Data Breach,” CO-ACC Data Privacy and Professionalism CLE Presentation, Columbus, Ohio, March 19, 2015
"Prepare for the Inevitable: The Impact of a Data Breach on Your Business", Lisle, IL - March 12, 2015
Cyber-Security Seminar, Indiana Chamber of Commerce - Feb. 4, 2015
2014 Products Liability Year in Review, 2015 Environmental, Mass Torts & Products Liability Litigation Committees' Joint CLE Seminar, Snowmass, CO - Jan. 31, 2015
"Practical Implications of a Data Breach," International Association of Privacy Professionals (IAPP) KnowledgeNet, Indianapolis, IN - Nov. 12, 2014
“Electronic Discovery Update and Practice Pointers,” Ice Miller CLE Forum for In-House Counsel, Columbus, Ohio - Dec. 4, 2014
“The Anatomy of a Data Breach,” Ice Miller CLE Forum for In-House Counsel, Columbus, Ohio - Dec. 4, 2014
"Everything You Don't Know About E-Discovery (But Wish You Did)," National Business Institute CLE - April 24, 2013

Stephen E. Reynolds

Partner Indianapolis

Stephen E. Reynolds

Partner Indianapolis

Education

Admissions

Representative Clients

Reported and Representative Cases

Ice TV

Firm Publications

News

Blog Posts

Published In

Speaking Engagements

Practices & Industries

Blockchain

Commercial Litigation

Construction

Data Security and Privacy

Health Care

HIPAA Privacy and Security

Information Technology and Software Disputes

Internet of Things

Internet, Technology and Social Media

Litigation

Products Liability

Risk and Crisis Management

Software Development and Licensing