Steven N. Spagnolo
Steve Spagnolo's years of experience in the information technology field help him navigate clients through complex privacy and data security laws at the state, federal, and even international levels.
Steve regularly counsels clients on incident response and breach notification, including responding to large-scale cyber-attacks. He also advises on compliance with the Health Insurance Portability and Accountability Act (HIPAA), state health privacy laws, Section 5 of the FTC Act, and other federal and state privacy and data security laws. He also helps clients manage government investigations related to privacy and cybersecurity, draft appropriate contractual language for safeguarding the privacy and security of sensitive information, and legitimize cross-border transfers of EU personal data to the United States.
Before attending law school, Steve got an inside look at the information technology industry, spending seven years working primarily on implementations of enterprise resource planning systems at several Fortune 500 companies.