Faculty: Heather Egan Sussman

Sussman 150Heather Egan Sussman is a partner and co-head of the Privacy and Cybersecurity Practice Group, based in Ropes & Gray’s Boston office. Her practice focuses on privacy, cybersecurity and information management, and she is ranked by Chambers USA and The Legal 500 United States as a leader in her field.

Heather routinely guides clients through the existing patchwork of U.S. federal and state laws, including FCRA, ECPA, TCPA, HIPAA, CAN-SPAM, GLBA and California’s Online Privacy Protection Act, state breach notification laws, state information security laws, as well as existing self-regulatory frameworks, including those covering online advertising and payment card processing. She manages teams of talented local counsel around the world to deliver seamless advice for clients that operate across many jurisdictional lines, developing comprehensive privacy and cybersecurity programs that address competing regulatory regimes.  She drafts online privacy policies for global rollout and implements data transfer mechanisms for the free flow of data worldwide.

Heather also helps clients manage information and leverage the incredible value of data and digital technologies in ways that not only meet compliance obligations, but also support innovation, deliver value to the business, meets security needs and solidify brand and consumer trust.

Heather conducts internal investigations stemming from data incidents, and drafts comprehensive privacy and security programs for businesses operating across multiple jurisdictions and industry lines.  She drafts and negotiates contracts concerning data-related vendors and arrangements, guides clients through privacy and security assessments, and vets privacy and security risks in corporate transactions. She regularly counsels businesses on how to mitigate the risk associated with the collection, use, retention, disclosure, transfer and disposal of personal information.

In the event of a privacy or security breach, she helps clients respond and remediate. Heather also helps clients protect themselves from – and respond to – incidents of doxing (doxxing).

Her clients come from diverse business sectors, including technology, asset management, retail, consumer products, telecommunications, healthcare and life sciences, manufacturing, food and beverage, media, academic institutions, service industries, energy, banks and other financial institutions.

Heather has successfully litigated, mediated and arbitrated both small and large-scale disputes at state and federal agencies and in courts nationwide. Companies routinely rely on her to manage their response to catastrophes, investigations and government probes involving conduct by employees, contractors and third parties. She represents clients during investigations by regulatory authorities in connection with data security breaches and complaints regarding privacy and security practices. She defends companies facing individual and class action claims involving privacy, information security and consumer protection.

Comments are closed.

Details

When: Wednesday, April 18, 2018
7:00 am - 8:15 am (breakfast & registration)
8:15 am - 5:00 pm (followed by cocktail party)
Where: Mayflower Hotel
1127 Connecticut Ave, NW
Washington, D.C. 20036
CLE Credit: 6.0 hours (pending)

Send Us Your Nominations!

IR30 2018 logo -- 100Cybersecurity Docket’s  "Incident Response 30" for 2018 will be announced at Incident Response Forum 2018! Please click here for nomination info.

Corporate Sponsors

Kroll

Ankura 230x60

CrypsisLogo

JRS230

Academic Sponsor: Duke Law

Duke LENS 230

Law Firm Sponsors

Alston 230 v2

Baker230

BakerMcKenzie230

BarnesThornburg230

cov230x60

Debevoise230v2

Dickinson230

ks230v2

mofologo230x60

O'Melveny 230

Ropes &Gray

SheppardMullin 230

Sidley

Willkie 230