Header graphic for print
HL Chronicle of Data Protection Privacy & Information Security News & Trends


The privacy and security of personal data is a modern business imperative. Organizations owe employees and consumers a duty when they undertake to collect, use, transfer, store, and ultimately dispose of personal data. That duty is specified in laws, regulations, and enforcement actions at the international, national, and local levels, and is a matter of business ethics as well.

Hogan Lovells is well positioned to assist clients around the globe and in a wide array of industries with advice and representation in the rapidly changing area of privacy and data security law. With offices located throughout the Americas, Europe, Asia, and the Middle East, Hogan Lovells is unique in it ability to provide global assistance on privacy and data security matters. We draw upon the extensive experience of our technology, health, communications, and consumer protection lawyers to provide advice and counsel across a wide range of subject matters and industries. Our services include:

  • Advising on the array of federal laws, including the Children’s Online Privacy Protection Act (COPPA), the Health Insurance Portability and Accountability Act (HIPAA) and the new HITECH Act, and the Gramm-Leach-Bliley (GLB) Act
  • Advising on the state privacy, data security, and data breach notification laws, including the emerging state laws with specific requirements for data security
  • Advising on federal legislative and regulatory developments in privacy and data security law, including the potential for regulation of the use of personal data in marketing (e.g., behavioral advertising)
  • Conducting privacy and security risk management assessments
  • Organizing, managing, and coordinating compliance projects and responses to investigations with both national and international dimensions, allowing clients to efficiently manage their multi-jurisdictional legal needs
  • Formulating and implementing policies and best practices to address privacy issues pertaining to data collection and processing
  • Counseling in the drafting and implementation of privacy policies and terms of use, including how to notify consumers when those terms change, how to manage employee data, and how to handle cross-border data transfers
  • Assisting with marketing initiatives, including advising on compliance with the CAN-SPAM Act, federal and state telemarketing laws, and the EU electronic commerce directive impacting commercial e-mails and text messages
  • Monitoring events, decisions, and enforcement actions in a wide variety of privacy and security issues
  • Representing clients before privacy and data protection authorities in both the United States and Europe

The firm offers services in such areas as:

  • Children’s Privacy
  • Data Security
  • E-Commerce and Technology
  • Educational Privacy
  • Electronic Communications Privacy
  • E-mail Marketing
  • EU Data Protection and Privacy
  • Financial Services
  • First Amendment Speech Protections
  • Governmental Affairs
  • Health Privacy
  • International Compliance
  • Internet Standards
  • Law Enforcement Investigations
  • National Security
  • Privacy Audits and Reviews
  • Privacy Policy Drafting and Review
  • Telecommunications and Cable Privacy
  • Telemarketing