Skip to main content
John Paul Tomaszewski

About John Tomaszewski

About me

John Tomaszewski is Senior Counsel with Seyfarth Shaw's International Data Protection Practice Group. He has significant experience counseling companies regarding data protection and information security throughout the Americas, Europe and Asia. His clients have included a myriad of technology companies as well as financial services, pharmaceuticals, and e-commerce companies of all sizes. John has prepared privacy policy documentation for HR departments, cloud service providers, social media companies, and a host of both traditional “brick-and-mortar” and emerging technology clients. He has also developed fair information practice statements, certification practice statements, PKI policies, non-disclosure agreements, and similar information security and confidentiality instruments.

John has been a co-author of several information security and privacy publications, including the PKI Accreditation Guidelines and Privacy, Security and Information Management: An Overview, as well as publishing scholarly works of his own on the topic. He has also provided input to the drafting of various security and privacy laws around the world; including the new APEC Cross-Border Privacy Rules system, which was included in the White House’s Privacy Bill of Rights initiative in 2012. He is a frequent speaker globally on the topics of cloud computing, Self Regulatory Organizations (“SROs”), cross-border privacy schemes, and secure e-commerce. 

Specialties: Privacy Law, Self Regulatory Organizations, International Public Policy, Information Security, Digital Signatures, eCommerce Law, Corporate Governance, Contract Law, Legislative Review