wyrick.com
Contributor

Elizabeth H. Johnson

Elizabeth H. Johnson

Bio

Elizabeth is a member of the firm’s Privacy & Data Security Practice Group, which she led for 12 years before giving someone else a turn. Her practice addresses all aspects of U.S. privacy and data security law, as well as GDPR and international data transfer mechanisms. Elizabeth enjoys helping clients with compliance initiatives to address privacy and data security and has assisted with a wide variety of implementation projects including data subject rights portals, telehealth, health information exchanges, mobile applications ranging from wellness programs to ecommerce to gaming, precise location tracking, biometric authentication, and complex customer insights initiatives including fraud prevention. Elizabeth also supports all aspects of data breach preparation and response, including leading forensic investigations, advising on ransomware response, supporting notification to affected parties, coordinating with law enforcement, and handling government agency notifications and inquiries.

View Full Bio

Elizabeth's Posts

Tag Icon

FTC Flags a New Form of Unsportsmanlike Conduct via Notice of Penalty Offense

The FTC recently sent five tax preparers a notice of its intention to pursue civil penalties…

Read Post

My Health, My Data, My Class Action Lawsuit: Why the Washington My Health My Data Act Deserves EVERY Company’s Attention

To say there’s been a lot of new privacy law in the last decade is an understatement. For those of us who think we’ve “seen…

Read Post
Tag Icon

Abracadabra! The FTC Pulls a New Federal Breach Notice Standard out of its Hat

On May 20, 2022, with little fanfare and just five short paragraphs, the Federal Trade Commission announced that businesses must publicly report…

Read Post

Worried about Ransomware? Ten Steps to Help Legal Counsel Understand and Mitigate the Risk

Executive teams in the U.S. live in fear of a successful ransomware attack, and who can blame them? Attacks are both prevalent…

Read Post

CUL8R TCPA: SCOTUS Delivers a BFD Opinion in TXT MSG Litigation Landscape

In a unanimous decision we sincerely hope was not a cruel April Fool’s Day gag, yesterday the United States Supreme Court ruled in favor of…

Read Post

No Silver Linings: EDPB Issues a Grim Forecast on U.S.-Based Cloud and Data Access with New Guidance

On November 10, 2020, the European Data Protection Board (“EDPB”) issued highly anticipated guidance intended to clarify how data exporters could legally transfer data…

Read Post

European Data Protection Board Confirms: No Safe Harbor for Privacy Shield Members

As we discussed last week, the Court of Justice of the European Union (“CJEU”) recently ruled that…

Read Post

What’s in Your Wallet? Five Tips to Protect Forensic Reports from Discovery Post-Capital One

In a recent case that has set the data breach defense bar abuzz, a federal magistrate judge in Virginia overseeing a class action against…

Read Post

Infinity War: Exploring the State Data Security Law Multiverse and Its Newest Member (the NY SHIELD Act)

The oft-derided U.S. hodgepodge of privacy and data security law is about to add another hodge. Or is it a podge? Not important, moving on……

Read Post

Dissecting OCR HIPAA Penalties: Why small breaches continue to drive big settlements and penalties

It is unsurprising that big data breaches lead to big costs (we see you Facebook). You would be forgiven, then, for assuming…

Read Post

Record GDPR Fine of $230M Places Emphasis on Data Security

British Airways appears poised to be the recipient of the largest GDPR fine to-date. The UK Information Commissioner’s Office today issued a…

Read Post