Skip to main content


Not yet reviewed

About me

I advise and speak with clients, trade-groups and organizations regarding cyber liablity and Data Security/Privacy Issues and breaches, as they relate to various industries including healthcare companies, retail stores, restaurants, financial organizations, and technology companies. We have handled over 250 data breaches, including some of the largest healthcare data breaches and credit card breaches publicized to date. I have experience in the litigation of technology, media, trademark, trade dress, patent, copyright, cyber liability, and class action data security matters on a national basis. Our privacy team has handled over 25 privacy class action matters


Practice areas


  1. Litigation: 50%
    21 years
  2. Privacy: 50%
    21 years, 1 thousand cases



Free consultation (30 minutes)

Payment types:

Cash, Check, Credit card

Attorney endorsements

1 total 

Are you an attorney? Endorse this lawyer

  • Jay Nanavati

    I endorse this lawyer.


    Jay Nanavati Tax fraud and tax evasion Attorney
    Relationship: Co-worker

Contact info

Baker & Hostetler

45 Rockefeller Center
New York, NY, 10111


NYCurrently registered 201103/07/2016
ILActive Out of State Lawyer - Permitted to PracticeUnknown05/11/2016
We have not found any instances of professional misconduct for this lawyer.
Avvo contributions
Legal answers
Award nameGrantorDate granted
Incident Response 30Cyberdocket2016
Privacy and Data ProtectionChambers Global2016
Privacy Practice Group of the YearLaw 3602015
Privacy and Data ProtectionChambers USA2015
Leading Privacy and Data Security LawyerChambers & Partners USA Guide2015
Practice Group of the YearLaw3602014
Privacy MVPLaw3602013
Distinguished Legal Writing AwardBurton Foundation2013
Excellence in Adherance to Highest Prof Standards & IntegrityCouncil on Litigation Management2011
Civil ProcedureAmerican Jurisprudence Award1992
Work experience
TitleCompany nameDuration
Leader Privacy & Data ProtectionBaker & Hostetler2012 - Present
Chair, Privacy & Data Security Practice GroupMarshall Dennehey Warner Coleman & Goggin2000 - 2012
Association namePosition nameDuration
New York State Bar AssociationCo-Chair Privacy and Data Protection Committee2014 - Present
IAPPN/A2011 - Present
Legal cases
Case nameOutcome
Melanche v. Eisenhower Medical CenterDismissed CMIA claim
Atkinson v. Sharp Memorial HealthSettled
Hollenbach v. Catholic Health InitiativesSettled
See all legal cases 
Publication nameTitleDate
Data Privacy MonitorThe HIPAA/HITECH Final Rule Is Out2013
Data Privacy MonitorWhat Covered Entities and Business Associates Need to Do to Prepare for the New HIPAA/HITECH Requirements (Part I)2013
ComplyRxThe A to Zs of Healthcare Data Breaches2012
Data Privacy MonitorAll Contracts with Vendors Who Handle Personal Information of Massachusetts Residents Must Have Appropriate Safeguards in Place by March 1, 20122012
Data Privacy MonitorCybersecurity Act of 2012--What Does It Mean?2012
Data Privacy MonitorPrivacy and Data Breach Regulatory Activity--A Year in Review2011
Data Privacy MonitorData Breach Response: A Year in Review2011
Data Breach NewsNosey Employees Can Be Costly2010
PLUS JournalFlagging Down Identity Theft2009
In-House Defense Quarterly (DRI, Defense Research Institute)Is Your Company A Creditor? Identity Theft Prevention: Know Your Red Flags2008
School nameMajorDegreeGraduated
Widener University School of LawN/AJ.D. cum laude1994
Purdue UniversityChemical EngineeringB.S.1987
Speaking engagements
Conference nameTitleDate
IAPP Global Privacy SummitBreaking Down the Silos2016
The EconomistData Breach? Preparaing for the Fallout2014
Privacy Academy and CSA Congress 2014Ready to Handle a Data Breach? A Live, Step-by-Step Data Breach Scenario2014
PLUS International ConferencePrivacy and Data Security Across the Globe2014
WebinarBe Careful What You Wish For: The Final Rule is Out!2013
Net Diligence Cyber Risk & Privacy Liability ForumFederal/ State Regulations and their Impact on the Industry2013
National Association of Attorneys GeneralData Breaches2013
IAPP Global SummitData Breach in a Digital Age2013
HCCAMobile Threats and How Healthcare Can Reduce Risks2013
Georgetown Corporate Counsel InstituteCybersecurity: The Top-of-Mind Issue for General Counsels in 2013, and What You Need to Know to Address It2013
NetDiligence Cyber Risk & Privacy Liability ForumState of the Cyber nation--Cases, Theories, and Damages2012
WebinarContractual Risk Transfer; Privacy Breaches & Theft: What's Lurking in the Dusty Corners of Your Contract Files Can Hurt You2011
WebinarPrivacy Issues Facing Law Firms2011
WebinarRegulatory Update2011
PLUS International ConferenceHealthcare Cyber Risks and Privacy Breaches—Emergent Problem or Chronic Condition?2011
NetDiligence Cyber Risk & Privacy Liability ForumDamages and Other Litigation Issues After a Data Breach2011
Crittenden Mid-Market Chicago ConferenceNavigating the Evolving Legal, Regulatory and Cyber Liability Landscapes for Mid-Sized Healthcare Organizations2011
Chicago ConferenceAre you Ready for a Data Breach?2011
CFO Summit (Williamsburg)Social Media Legal Risks2011
ASHRM International ConferenceData Breaches—A to Z2011
ASHRM International ConferenceRisk Manager’s Guide to Navigating the Evolving Legal, Regulatory and Cyber Liability Landscapes2011
American Conference InstituteThe Current State of PCI, HIPAA and HITECH Compliance and How It’s Impacting Cyber Liability Coverage and Claims2011
WebinarBest Practices for Health Care Organizations to Keep the Cyber Liability Genie in the Bottle2010
NJHIMA Annual ConferenceHIPAA/HITECH Disclosures and Regulatory Enforcement—The ‘Do’s and Don’ts’ When Responding to Data Security and Privacy Breaches2010
NetDiligence Cyber Risk and Privacy Liability ForumData Breach Liability: An Unstable Legal Environment2010
4th Annual Advanced Forum on Cyber & Data Risk Insurance“Complying with State Public Notification Requirements and Deadlines: Making Sense of Conflicting Priorities in the Event of a Breach2010
PLUS International ConferenceWhat REALLY Happens After A Breach or Electronic Data Loss Event2009
ACI 3rd National Advanced Forum on Cyber/Data Risk InsuranceNew Federal Regulatory Developments & Enforcement Action Regarding Privacy and Security of Information,” and “Third Party Vendors and Suppliers: Limiting Liability Contractually2009
PLUS International ConferenceWalking The Data Security Tightrope: What Lies Below?2008
Philly I-on Law DayData Breach and Security Exposures2008