Data Privacy


By drafting policies that companies can follow, Strong & Hanni’s team of data privacy lawyers help mitigate the risk of an FTC or regulatory investigation, or unfair competition claim, based on failure to follow enumerated privacy and security policies.  We help clients design privacy and security policies that comply with Sarbanes-Oxley, the Gramm-Leach-Bliley Act (GLBA), the Health Insurance Portability and Accountability Act (HIPAA), the California Consumer Privacy Act (CCPA), and the European Union’s General Data Protection Regulation (GDPR), as well as numerous national, state, and industry regulations. 

Our goal is to develop policies that satisfy the most stringent laws applicable to businesses, while advising our clients of the risks of non-compliance with the laws and regulations of far-flung jurisdictions with which our clients have few, if any, ties.  To ensure that policies comply with all applicable laws and regulations, we work with companies to conduct a detailed inventory of sensitive data throughout the client’s business, review controls being used to monitor and protect sensitive data, and analyze internal procedures designed to guarantee that Opt-In and Customer Privacy Preference choices are honored.  We also help clients define appropriate access controls for executives, employees, temporary employees, and contract labor to ensure compliance. 

Our team of data privacy lawyers includes professionals with prior experience in web development and information technology who help clients navigate the nuance of new technologies and the data collection issues that accompany them. Whatever your industry, let our teamwork with you to ensure compliance with an ever-growing body of data privacy laws and regulations.