Debevoise’s Data Strategy & Security practice provides a collaborative approach to help clients navigate their business-critical privacy, data protection and data security issues.
Luke Dembosky
Jeremy Feigelson
Avi Gesser
Jim Pastore
Jane Shvets
Lisa Zornberg
Debevoise Data Blog
Ranked as a leading firm in the U.S. for Privacy & Data Security by Chambers Global (2020).
Debevoise is ranked by The Legal 500 US (2020) as a leading firm for Cyber Law, Data Privacy and Data Protection.
Debevoise & Plimpton ‘brings great professionalism, expertise and work ethic’ to its compliance and incident response expertise, and ‘takes great pride in understanding clients and creating and tailoring advice to their specific needs.
Ranked as a leading firm for Privacy & Data Security.
Debevoise ranks high in the information security space.
They have longstanding advisers who know how to represent corporations and boards, but are also highly integrated with government experience and meaningful relationships.
—Chambers USA, 2019-2020
Episode 6: Ransomware 2.0 - Avi Gesser and HJ Brehmer chat with special guest Dave Wong of FireEye Mandiant about the evolving threat landscape, risk mitigation strategies, and legal and practical considerations. Listen to the webcast here.
Debevoise Data Strategy & Security Brochure
Debevoise Announces Protocol to Promote Cybersecurity in International Arbitration
The Debevoise Data Strategy & Security (DSS) practice is global and interdisciplinary combining our cybersecurity, privacy, business continuity, artificial intelligence, M&A diligence and data governance practices into one fully integrated and coordinated group.
Together, we advise leading companies on responding to cybersecurity events, including regulatory inquiries and civil litigation. We also advise our clients on their overall data strategy, including how to protect and optimize the data that they maintain on premises, with vendors and in the cloud. Our strategic advice includes both legal and technical assistance with the data issues that arise in M&A diligence, licensing and vendor contracting. In addition, we help our clients determine what data they should delete or not collect because of cybersecurity, privacy or other risks.
Because we lead responses to cyber incidents of all sizes and types globally, and on a continuous basis, we are able to channel that deep experience into helping all of our clients improve their preparations, including by assessing their plans, processes, resources, and ability to respond quickly and effectively to a major cyber breach, operational disruption or other significant data or technology event.
We are able to leverage our worldwide network of law enforcement contacts in the event of an incident. Our team includes several former federal cybercrime prosecutors, including the former leader of the Justice Department’s Criminal Division, the former leader of the Department’s response to national security cyber threats, and two former Assistant U.S. Attorneys who brought landmark cyber cases in the country’s federal courts.
Our services are based on experience in the trenches of many of the country’s landmark cyber and privacy incidents (including many non-public incidents). Our lawyers have deep technical knowledge that allows them to translate complex technical findings into legal and business decision points. This has enabled us to provide a pragmatic approach to identifying and coordinating the key elements of effective incident response and overall data strategy.
Episode 9: Artificial Intelligence and Consumer Protection Risks - A Discussion with Andrew Smith, Director of the FTC's Bureau of Consumer Protection
6 August 2020
Avi Gesser, Anna Gressel, Andrew Smith
Episode 8: Artificial Intelligence Regulation in the Securities Industry - A Discussion with Haimera Workie of FINRA's Office of Financial Innovation
23 July 2020
Avi Gesser, Anna Gressel
Episode 7 - Safeguarding Employees’ Credentials and Preventing Unauthorized Access to Sensitive Data Stored in the Cloud and on Employees’ Personal Devices.
7 July, 2020
Avi Gesser, Mengyi Xu, Luke Tenery, Joe Shepley
Episode 6: Ransomware 2.0 - A Discussion with Dave Wong of FireEye Mandiant on the Evolving Threat Landscape, Risk Mitigation Strategies, and Legal and Practical Considerations
23 June 2020
Avi Gesser, HJ Brehmer
Episode 5: How to Demonstrate “Reasonable Cybersecurity Procedures” for Regulatory Inquiries and Litigation
16 June 2020
Avi Gesser, Stephanie Cipolla
Returning to Work in the US: Key Employment Law Considerations
5 June 2020
Alexander Cochran, Eric Dinallo, Avi Gesser, Jyotin Hamid, Tricia Sherno
Episode 4: Emerging Cybersecurity Issues for PE Sponsors and Portfolio Companies
21 May 2020
Luke Dembosky, Avi Gesser
Episode 3: Protecting Policyholder Data: Risks and lessons for insurers from the first weeks of work-from-home arrangements due to COVID-19
8 May 2020
Luke Dembosky, Eric Dinallo, Avi Gesser
Episode 2: Artificial Intelligence Regulation - A Discussion with Matthew Homer of the NYDFS on Reducing Risks Arising from AI Programs
21 April 2020
Avi Gesser, Anna Gressel, Matthew Homer
Episode 1: Reducing Cybersecurity and Related Regulatory Risks Arising from Remote Working Arrangements
1 April 2020
Luke Dembosky, Avi Gesser, Justin Herring
Are You Ready for CCPA? 19 November 2019
Jeremy Feigelson, Kate Saba, Warren Metlitzky
Life Under GDPR: A Breach Response Scenario
23 May 2017
Pierre Clermontel, Luke Dembosky, Jane Shvets, Anna V. Maximenko, Dr. Friedrich Popp