Data Privacy and Cybersecurity

Constant Changes Require Continuous Attention.
Let Us Help You.

In our increasingly digital world, electronic data can flow freely between people and businesses, and laws aimed at consumer data may critically impact your legal compliance. Regardless of industry — whether you’re in technology, finance or healthcare, just to a name a few — there are laws restricting how you can manage, transfer and store consumer or employee data. These regulations may be state-specific, federal or even international, making it important to keep up with this ever-evolving landscape.

That current acronym soup of regulatory laws governing data usage includes acts such as CPRA (California Privacy Rights Act), Virginia’s CDPA (Consumer Data Protection Act), GDPR (General Data Protection Regulation), HIPAA (Health Insurance Portability and Accountability Act), COPPA (Children’s Online Privacy Protection Act), GLBA (Gramm-Leach-Bliley Act) and FCRA (Fair Credit Reporting Act). But without a full federal blanket policy governing all data sets, data privacy can be very complex and difficult to understand. Our team has the knowledge and expertise of the digital data landscape to help you maintain compliance in all of your data-handling activities.

Current and Upcoming State Privacy Laws

State Law Effective Date
California California Consumer Privacy Rights Act Jan. 1, 2023
Virginia Consumer Data Protection Act Jan. 1, 2023
Colorado Colorado Privacy Act July 1, 2023
Connecticut Personal Data Privacy and Online Monitoring July 1, 2023
Utah Utah Consumer Privacy Act Dec. 31, 2023

Cybersecurity Considerations

Cybersecurity is an issue affecting nearly all businesses no matter the size or target customer, because at a minimum you likely handle and/or capture consumer information — such as through your website. Is your site properly protecting data from cybersecurity threats? If not, are you ready for the potential consequences that can come from insufficient digital security? If your company should ever experience a data breach, we’re skilled in developing response plans and complying with State breach notice requirements that address these incidents and protect your interests.

Terms & Conditions and Privacy Policies

Additionally, while user agreements (like Terms & Conditions and Privacy Policies) most often appear as afterthoughts in the footers of websites, maintaining these legally binding contracts can help you mitigate risk like consumer lawsuits and fines or other governmental actions. We can prepare new agreements or evaluate your current policies to help comply with current laws and align with your business practices. An ounce of prevention is indeed worth a pound of cure, if not more.

Our Experience

Not only is our legal team well-versed in matters of data privacy and cybersecurity, we know that businesses also must comply with court actions requiring the disclosure of confidential information amid governmental investigations. Our team helps clients promptly respond to inquiries and allows those same clients to focus on running their business. Even in matters of litigation, our team has extensive experience aimed at protecting and fighting for our clients’ rights.

There are a wide variety of factors to consider when evaluating your business’s data privacy and cybersecurity needs. Don’t go it alone – allow DarrowEverett’s team of experts to help you maintain compliance within this ever-changing landscape. Taking proactive steps to protect your business is the more effective and cost-efficient way to protect and grow your business.

Our Services

  • Terms & Conditions
  • Privacy Policies
  • State-Specific Policies
  • Intellectual Property Policies
  • GDPR Guidance & Compliance
  • Guidance on GLBA, HIPAA, COPPA, FCRA, DMCA and more
  • Third-Party Service Provider Assistance
  • Data Security Advising & Handling Data
  • Data Breach Protocol and Notice Requirements

Practice Leaders

Contact our Data Privacy and Cybersecurity group.

Please contact us to let us know how DarrowEverett can serve you.

    DE Insights

    Our team wants you to stay informed about legal and regulatory developments that impact your business.

    Investment Advisors Face Added Regulation That Could Potentially Impact Litigation

    On February 13, 2024, FinCEN issued a Notice of Proposed Rulemaking (NPRM) to deter criminals and foreign adversaries who seek to potentially compromise the U.S. financial system and assets through investment advisors. If passed, the new rule would make investment advisors subject to the Bank Secrecy Act (BSA) by expanding the definition of “financial institution”…
    Read more

    SEC’s New Rules Give SPACs, Target Companies Much to Consider

    On January 24, 2024, the U.S. Securities and Exchange Commission (the “SEC”) adopted new final rules relating to special purpose acquisition companies (“SPACs”). The new rules affect both initial public offerings (“IPOs”) for SPACs and so-called “de-SPAC” transactions involving target companies who enter into a business combination with SPACs. In summary, the new rules appear…
    Read more

    Venture Debt: Down Round Protection Without Triggering Downside Provisions

    There is increasing chatter in the startup and investor space surrounding venture debt. It is not at all surprising that as the availability of ready capital has contracted considerably over the past two years, debt and debt-like items have come to the front of mind. It is tempting to think that it is only venture-backed…
    Read more