As a member of the Data Protection, Privacy and Cybersecurity Team, Dan provides legal and compliance guidance on all aspects of information governance, privacy compliance, cyber due diligence, artificial intelligence (AI), and vendor management. He advises clients on navigating evolving state, federal, and international privacy laws and regulations, including the General Data Protection Regulation (GDPR), Federal Trade Commission Act (FTC Act), Health Insurance Portability and Accountability Act (HIPAA), and emerging state privacy laws. He also frequently works with businesses to understand the regulatory and operational impacts of their use or development of AI.
In addition, Dan assists companies with complex technology agreement negotiations, including the negotiation of accompanying data processing agreements and business associate agreements. Dan has managed all phases of the contract negotiation process for SaaS and on-premises software agreements, app development, AI agreements (as deployer or developer of the AI), and other technology agreements. He has experience with cybersecurity incident response, helping businesses contain risk and meet legal obligations in high-pressure situations surrounding data breaches. He also frequently drafts and reviews website privacy policies and addresses issues related to website privacy and advertising technology.