Compliance

Bond assists clients in a wide range of industries, without regard to size, with their data privacy and cybersecurity compliance.

Our attorneys work with clients to conduct legal assessments, data audits, risk management assessments, trainings, policy drafting, vendor assessments, due diligence review, filings, data subject request responses, data governance, as well as contract drafting and review.

Up to date on the regularly changing landscape of international and domestic cybersecurity and data privacy, we advise clients concerning a number of different regulations including, but not limited to: 

• European Union’s General Data Protection Regulation (GDPR) 
• United Kingdom General Data Protection Regulation (UK-GDPR) 
• California Consumer Privacy Act, California Consumer Privacy Rights Act (CCPA/CPRA) 
• Virginia Consumer Data Privacy Act (CDPA)
• Children’s Online Privacy Protection Act (COPPA)
• Health Insurance Portability and Accountability Act (HIPAA) 
• Graham-Leach-Bliley Act (GLBA)
• Fair Credit Reporting Act (FCRA)
• Family Educational Rights and Privacy Act (FERPA)
• New York Education Law 2-D
• PCI-DSS Compliance
• New York “Stop Hacks and Improve Electronic Data Security” Act (SHIELD), and
• New York Department of Financial Services Cybersecurity Regulation