Data Privacy and Cybersecurity Law

Legal Services

Data Privacy and Cybersecurity Law

“Our network has been hacked!” This all-too-common phrase can rock a business to its core. And unfortunately, regardless of what technological protections you have in place, no system is impervious to a breach. But how did it happen? What did they get? Is your customer data safe? What about your financials? Should you tell someone? What do you do next? Could you be held liable?

All of these questions (and more) should come to mind in the event that a data breach does occur. But through careful planning, preparation, and foresight, you can lend strength and confidence to an incident response. And that’s where we come in…

If you are experiencing an ongoing breach or your systems have recently been compromised, Kerr Russell’s Data Privacy and Cybersecurity professionals can help guide you through the incident response process. Just as critically, though, if your systems are currently operating normally, we can help make sure you are compliant with all local, state, federal, and international regulations; make sure your cybersecurity policies and procedures are appropriate for your business needs; and assist you with creating of a customized incident response plan. Regardless of size, industry, or location, we are here to make sure your business is prepared to address all of your data privacy and cybersecurity needs.

Our legal and consulting services include:

  • Cybersecurity Risk Assessment
  • Regulatory Compliance Review
  • Security Implementation Oversight
  • Policy Drafting and Review
  • Cybersecurity Awareness and Training
  • Table-Top Drills
  • Incident Response Planning
  • Breach Response, Assessment, and Mitigation
  • Coordination of Notifications to Customers, Media, Law Enforcement, and Insurance Carriers
  • Forensic Review Oversight
  • Litigation Services
+Practicing Attorneys & Staff


Michael A. Sneyd
Michael A. Sneyd


Nezar G. Habhab
Nezar G. Habhab


+Related Insights

March 27, 2023

Cybersecurity for Medical Practices: Addressing the HIPAA in the Room

Kathleen Westfall and Nezar Habhab discuss proactive measures medical practices should take to mitigate risk and protect patient data in the latest issue of the Detroit Medical News (First Quarter 2023).

January 29, 2021

Investing in Your Privacy

As people have come to learn this week (many for the first time), the stock market is a volatile tool through which earnings are made and lost in the literal blink of an eye. We, of course, do not intend to provide investing advice but, instead, hope to provide a word of caution relative to the tools used for such investments.

January 27, 2021

2021 Looks to be a Landmark Year in Privacy

As part of Data Privacy Day 2021, ask yourself, does my business have a Privacy Program in place? Probably not. But should it? That’s a great question for a privacy professional — someone focused on privacy practices, laws, and regulations.

July 17, 2020

Privacy Shield Offers No Defenses Under New EU Privacy Ruling

Failure to ensure adequate levels of data protection may result in heavy fines, and/or the complete shutdown of personal data transfers across international lines.

June 30, 2020

The Path to the CCPA 2.0 Starts as Enforcement Begins

By now, most US-based businesses have at least heard of the California Consumer Privacy Act (“CCPA”), and if you haven’t, you should contact your attorney soon because enforcement begins on July 1, 2020.

June 30, 2020

Contact Tracing - Balancing COVID-19 Tracing and Privacy

Many Americans have recently been introduced to new phone applications and workplace procedures that monitor and trace the spread of COVID-19 throughout the United States.

June 30, 2020

Data Breach? Engage Outside Counsel and an Independent Forensics Team

It’s 2:00 a.m. and you get a call from your security team – the inevitable has happened and you have to respond to a cybersecurity “incident.” 

June 30, 2020

Apple – Part of a Heathy (Privacy) Lifestyle

Every year in June, Apple Developers and fans flock to Cupertino for the annual Worldwide Developers Conference. This year’s WWDC was a little different due to the COVID-19 pandemic, but it didn’t stop Apple from announcing some major initiatives.

June 30, 2020

Could Tell-a-Friend Features Violate Privacy Laws?

Although privacy professionals will typically acknowledge that the EU is way ahead of the US when it comes to data privacy protections, for those outside the field it may seem a bit odd to focus on a decision by the Belgian Data Protection Authority.

June 30, 2020

CCPA Enforcement Begins July 1, 2020

California’s Attorney General will begin enforcing the rules and regulations of the California Consumer Privacy Act (“CCPA”) on July 1, 2020.

April 28, 2020

Health Care Data Security in the COVID-19 Era

Over the last few weeks, Google alone has blocked an average of 18 million COVID-19-related malware and phishing emails every day. Ransomware attacks are on the rise.

March 19, 2020

Data that can Hurt Your Bottom Line

Most companies hope to maximize profits and minimize risk; in fact, cost-benefit analyses are deployed almost daily for most managerial and operational decisions, so there is a strong possibility that your organization has shifted its attention from data privacy to “more urgent” matters. After all, you probably believe you do not collect personal information. 

March 19, 2020

Washington Privacy Act Fails … Again

It was a given that the Washington Privacy Act – the country’s (presumptive) second piece of general data-privacy legislation – would pass this year and follow the path blazed by the California Consumer Privacy Act (the “CCPA”).

March 16, 2020

Data Privacy & Security Considerations During the COVID-19 Pandemic

There are a myriad of articles hitting news feeds this month dealing with privacy issues related to COVID-19.  Attorneys at Kerr Russell have addressed many of those questions – their articles are available here. 

February 5, 2020

Data Privacy Tips and Best Practices

Focusing solely on “compliance” with applicable laws is an inefficient approach and should only be considered in specific circumstances.  

February 5, 2020

Data Privacy: Why Should You Care and What to Expect?

Over the last decade, stories of large data breaches, ransomware attacks, and identity theft have moved from isolated incidents to almost daily headlines. It is almost impossible to read a news thread or open a newspaper without seeing something related to cybersecurity or a data breach

February 5, 2020

Kerr Russell Attorney Explains What Data Privacy Is

2020 looks to be a busy year in data privacy. New laws and regulations will impose various requirements on organizations in every industry. These changes often have little regard to size or location.  

January 15, 2020

Kerr Russell Presenting on Privacy and Data Protection in 2020

Cybersecurity attorney, Jeffrey A. May, is presenting a webinar through Corp! Magazine and MichBusiness. The topic is “Privacy and Data Protection in 2020: What Your Business Needs to Know."
+Related News

November 16, 2020

22 Kerr Russell Attorneys Recognized as DBusiness 2021 Top Lawyers

A total of 22 lawyers from Kerr Russell are named as DBusiness Magazine 2021 Top Lawyers. The attorneys are selected through a peer review process.  DBusiness polled more than 18,000 attorneys across Wayne, Oakland, Macomb, Washtenaw, and Livingston Counties. 

April 13, 2020

Cybersecurity Threats Demand Companies Review Policies and Risk During Crisis

Kerr Russell attorney Jeffrey May was recently interviewed by Corp! Magazine. He discusses the business need for cybersecurity plans.

March 17, 2020

Coronavirus/COVID-19 Business Continuity:  A Message to Our Community, Clients and Friends

Kerr Russell is committed to its community, clients and people. As the world navigates through the impact of COVID-19 (coronavirus), we want to assure you that Kerr Russell is committed to supporting our community, clients and people as effectively as we have through every other crisis our Nation has encountered over our firm’s nearly 150-year history. Our firm is fully operational: We have made sure that our lawyers and staff are able to safely and effectively serve our clients’ needs and continue operations on an uninterrupted basis. Most of our people

January 16, 2020

Patricia Schabath, Jeffery May Featured in Crain's Detroit Business

Congratulations to Patricia Schabath and Jeffrey May for being featured in this week’s Crain’s Detroit Business “People on the Move.” Both were named members (partners) of the firm, effective January 1. You can view the Crain’s piece online HERE.

January 6, 2020

Patricia Schabath and Jeffrey May named members at Kerr Russell

Attorneys Jeffrey A. May and Patricia C. Schabath were recently named members (partners) at Kerr Russell. The two were selected at the end of 2019 and their promotions are effective as of January 1, 2020.

November 15, 2019

19 Kerr Russell Attorneys Recognized as DBusiness Top Lawyers for 2020

A total of 19 lawyers from Kerr Russell are named as dBusiness Magazine 2020 Top Lawyers. The attorneys are selected through a peer review process.  dBusiness polled 19,000 attorneys across Wayne, Oakland, Macomb, Washtenaw, and Livingston Counties.

September 17, 2019

Kerr Russell Presenting on Cybersecurity & Data Privacy

Attorney Jeffrey May is presenting a webinar through Corp! Magazine on "Cybersecurity & Protecting Your Digital Access."

July 9, 2019

Kerr Russell Cybersecurity Attorney Obtains CIPP/US Credential

Jeffrey A. May was recently credentialed as a Certified Information Privacy Professional/United States (CIPP/US).