We use cookies to deliver our online services. Details of the cookies we use and instructions on how to disable them are set out in our Cookies Policy. By using this website you agree to our use of cookies. To close this message click close.

Steven N. Spagnolo

Senior Associate
Washington, D.C.

Steven N. Spagnolo

Steve Spagnolo's years of experience in the information technology field help him navigate clients through complex privacy and data security laws at the state, federal, and even international levels.

Steve regularly counsels clients on incident response and breach notification, including responding to large-scale cyber-attacks. He also advises on compliance with the Health Insurance Portability and Accountability Act (HIPAA), state health privacy laws, Section 5 of the FTC Act, and other federal and state privacy and data security laws. He also helps clients manage government investigations related to privacy and cybersecurity, draft appropriate contractual language for safeguarding the privacy and security of sensitive information, and legitimize cross-border transfers of EU personal data to the United States.

Before attending law school, Steve got an inside look at the information technology industry, spending seven years working primarily on implementations of enterprise resource planning systems at several Fortune 500 companies.

Education and admissions


  • J.D., magna cum laude, Order of the Coif, Indiana University Maurer School of Law, Bloomington, 2010
  • B.S., University of Virginia, 2000


  • American Bar Association, 2011
  • Maryland State Bar Association, 2011

Bar admissions and qualifications

  • District of Columbia
  • Maryland
Loading data