Data Privacy and Cybersecurity
Privacy and cybersecurity regulations continue to expand at all levels of government in the United States and internationally. Businesses of all sizes must take such regulations into account on a daily basis. Similarly, as the world grows more digitally connected, cyber threats have surged, resulting in a high-risk environment for businesses that do not take cybersecurity seriously.
BGM Law Group can assist businesses manage this intersection of increased regulations and increased cyber threats by:
- Drafting or reviewing agreements that address data privacy and cyber security provisions, including;
- Data Processing Addendums (including CCPA and other US state based requirements);
- Data Transfer Agreements, including:
- Standard Contractual Clauses (EU, KSA, and other countries);
- UK IDTA
- Information Security Schedules;
- Cloud Security Exhibits; and
- HIPAA Business Associate Agreements (BAAs)
- Undertaking due diligence on potential merger or acquisition targets;
Data Privacy
- Conducting internal privacy legal assessments;
- Starting or expanding data maps to assist businesses understand what data, including personal data, they are collecting;
- Assisting with responses to data subject requests;
- Reviewing privacy regulations and determining which regulations are applicable to the business.
- Review of website privacy stance, privacy tool(s) implementation
Cybersecurity
- Conducting internal security legal assessments;
- Developing and implementing security policies, practices and procedures;
- Implementing cyber threat mitigation strategies to protect data;
- Reviewing cybersecurity regulations and determining which regulations are applicable to the business.
