The legal framework for data privacy, both domestically and abroad, is constantly evolving. Trying to stay on top of this shifting landscape involving changing technologies and legal requirements can be in a word – overwhelming. In the past year alone, state and federal regulatory changes have altered the legal and compliance obligations of many companies across a broad range of industries. Additionally, the courts have already begun to issue consequential opinions and decisions that have placed heightened liability on companies to protect sensitive personal data.
With growing concerns related to the use of data and an increasing role of data protection regulations, XPAN Law offers clients the guidance their business needs to navigate this range of domestic and international privacy regulations. Internationally, XPAN Law works with clients in the area of privacy compliance for the European Union General Data Protection Regulation (“GDPR”). Our attorneys are highly knowledgeable in other regional privacy regulations, including China, Japan, Australia, and Canada.
Domestically, XPAN Law works closely with clients in areas of national privacy regulations such as HIPAA and COPPA, as well as state-specific privacy regulations that include the California Consumer Privacy Act (“CCPA”), the California Privacy Rights Act (“CPRA”), Nevada’s Internet Privacy Law, Colorado’s Privacy Act (“CPA”), and Virginia’s Consumer Data Protection Act (“CDPA”).
We guide clients in understanding the technological, administrative, and legal implications of data protection regulations while also taking into account the unique blueprint and needs of their business. Our team works diligently across numerous industries and regions to help clients develop effective cross-border data management policies and practices.