When incidents arise, Baker Donelson's credentialed data incident response team provides real-time legal and highly technical advice 24/7/365. We assist clients through all phases of a data incident. Our established relationships with forensic investigators, consumer notification mail houses, call centers and public relations firms provide clients the ability to staff even the largest breach matters from the first call. Baker Donelson has been recognized as an authorized NetDiligence Breach Coach® signifying it as a top tier law firm for Data Security, Privacy and Incident Response.
More than one-third of our Data Incident Response Team includes members who are certified by the International Association of Privacy Professionals (IAPP) as Certified Information Privacy Professionals (CIPP/US, CIPP/E, CIPP/A and/or CIPP/C) and two attorneys who are Certified Information Privacy Managers (CIPM). In addition, our team includes a member certified in the Law of Data Security and Investigations (GLEG), a Fellow of Information Privacy (FIP), a Privacy Law Specialist (PLS) and another who is certified as a Payment Card Industry Professional (PCIP).We have attorneys who specialize in handling incident responses in highly regulated industries, such as education, financial institutions and health care.
We assist clients through all phases of a data incident including:
- Working with industry experts to assist with detection, containment and recovery;
- Collaborating with expert third-party ransomware responders to advise clients on ransomware negotiations;
- Coordinating e-Discovery efforts when intrusions are identified;
- Communicating on behalf of our clients with state and federal law enforcement agencies with whom we have established relationships;
- Assisting with assessment and drafting of any state and federal notification obligations;
- Managing communications with vendors, employees, customers and other stakeholders;
- Responding to any state and federal government investigations that result from an incident;.
- Providing analysis to assist in developing post-incident remediation; and
- Representing clients in ensuing litigation, including class action cases, involving data incident issues.