Industry focus
Privacy and security requirements are growing at a time when businesses are facing resource constraints, competing priorities, and intense market pressures. As former in-house counsel, I understand the need for clear, actionable advice and practical solutions.
How I represent clients at Schwabe
I am a privacy and cybersecurity attorney with more than a decade of experience in the technology sector. I’ve developed a deep understanding of the intricate legal landscape of vanguard technologies, such as social platforms, cloud computing, ad tech, and AI. Motivated by the desire to help clients introduce innovative services to the market, I help them navigate their way through the regulatory uncertainties that permeate our digital era.
Since my practice is rooted in global privacy, cybersecurity, and technology law, I provide clients with practical, actionable advice, smart solutions, and fresh ideas. I counsel them in diverse industries and at all stages of growth, from startups to tech giants. My certifications from two related bodies of the International Association of Privacy Professionals (CIPP/US and CIPP/EU), plus my AI certification from MIT, further demonstrate my commitment to guiding clients in our data-driven economy.
Former strategic counsel for tech giants
Prior to Schwabe, I was senior privacy counsel at two large tech companies. In this capacity, I supplied strategic counsel to leaders in sales, marketing, business development, engineering, data science, HR, and product development. I helped to develop processes, policies, and training that ensured compliance with global data protection requirements. I also engaged with customers, regulators, and privacy advocates to build trust and identify solutions.
At Schwabe, I leverage my knowledge and experience to advise clients on global data protection and tech laws, such as the EU General Data Protection Regulation (GDPR), the EU e-Privacy Directive, and recent U.S. state omnibus privacy laws, including the California Consumer Privacy Act. Clients value my business acumen and in-house experience, which equip me to provide insight and practicality, whether they are engaged in a regulatory investigation, a complex transaction, or a business transformation.
Experience
- Counseled a fitness client on the collection and use of consumer health data under the Washington My Health My Data Act.
- Guided a big tech client on the risks associated with voice-enabled technologies under U.S. wiretap laws, the EU e-privacy Directive, U.S. state omnibus privacy laws, and biometric laws.
- Advised a healthcare conglomerate on the use of tracking technologies under HIPAA, GDPR, and U.S. state omnibus privacy laws.
- Advised on the development and launch of AI-based Fintech service; created and implemented compliance strategies to meet requirements from GDPR, CCPA, FCRA, and anti-discrimination laws.
- Assisted clients in diverse industries with updating their privacy statements to ensure compliance with global data protection laws.
- Assisted various clients in responding to regulatory inquiries and investigations, including from the FTC, EU data protection authorities, and consumer protection advocates, related to the collection and use of personal data; drafted responses and developed legal strategies to reduce business disruptions from inquiries and investigations; and helped implement technical solutions across multiple business divisions to address concerns.
- Drafted and negotiated data-sharing terms, data processing agreements, and similar agreements, such as HIPAA BAAs, in various commercial contexts.
- Provided privacy expertise in M&A transactions to help clients reduce risks related to the transfer of customer and employee data.
- Advised client on various employment-related privacy matters, including background checks and employee monitoring.
- Counseled various clients on security incidents and cybersecurity events, including nation-state attacks; reported data breaches to data protection authorities and other agencies.
- Accelerated adoption of emerging technology by developing contractual standards and solutions; engaged with global lawmakers, regulators, and privacy advocates on policy matters; and evangelized data protection benefits with customers.
Education
- Seattle University School of Law, Juris Doctor (2009)
- University of Michigan, Bachelor of Arts (2000)
Admissions
- Washington State Courts
Memberships
- Privacy & Data Protection Security Law Committee of the Washington State Bar (2023–present)
- Leadership Council on Legal Diversity (2023–present)
- King County Bar Association (2023–present)
- American Bar Association (2023–present)
- National Native American Bar Association (2022 –present)
- Mother Attorneys Mentoring Association of Seattle (2017–present)
- International Association of Privacy Professionals (2011–present)
Awards
- 2023 Fellow, Leadership Council on Legal Diversity
Additional Publications
“Privacy & AI: Top 5 legal concerns for Privacy Attorneys,” Virtual CLE. WA State Bar Assoc., May 2023
“Data Privacy in the European Union,” Virtual CLE. WA State Bar Assoc., June 2022
“AI in Financial Services,” Artificial Intelligence and Robotics National Institute, ABA Section of Science & Technology Law (SciTech). Santa Clara, CA, January 9, 2020
“Ethical Issues for In-House Counsel,” IP Defense Summit. Seattle, WA, October 23, 2018
“Privacy & The Internet of Things,” Assoc. of Corp. Patent Counsel Conf. Park City, UT, June 27, 2017
“How Emerging Technologies are Transforming the Legal Profession,” Interlaw 2017 Americas/Asia Pacific Conference. Seattle, WA, April 28, 2017
“Investing in Europe: EU Data Protection Reform,” CLE. Seattle, WA, March 23, 2017
“How Big Data Will Transform the Legal Profession,” NWLawyer, WA State Bar Assoc., March 2016
Additional Events
Speaker, Copyright in the Age of AI: Navigating New Frontiers
The AI Strategy Summit: IP, Data and Compliance Conference
May 30, 2024
Outside Interests
As a descendent of John Beargrease, it was a lifelong dream to learn how to mush on the Minnesota North Shore.
Sign up