wyrick.com
Contributor

Elizabeth H. Johnson

Elizabeth H. Johnson

Bio

Elizabeth leads the firm’s Privacy & Data Security Practice Group, which has more than 25 years combined experience in the practice area. Her practice addresses all aspects of privacy and data security law, including compliance initiatives to address major legal requirements such as the California Consumer Privacy Act (CCPA), HIPAA, Gramm-Leach-Bliley Act, the FCRA, the Telephone Consumer Protection Act, CAN-SPAM, data security breach notification, the General Data Protection Regulation (GDPR), Privacy Shield and other international data transfer mechanisms, COPPA, VPPA, and others. Elizabeth has assisted clients with a wide variety of implementation projects including cloud computing, health information exchanges, patient portals, bring-your-own-device, mobile applications, location tracking, online behavioral advertising, direct marketing, and complex customer insights initiatives. She also helps clients with government agency inquiries pertaining to privacy and data security, such as HIPAA compliance reviews conducted by the U.S. Department of Health and Human Services.

View Full Bio

Elizabeth's Posts

No Silver Linings: EDPB Issues a Grim Forecast on U.S.-Based Cloud and Data Access with New Guidance

On November 10, 2020, the European Data Protection Board (“EDPB”) issued highly anticipated guidance intended to clarify how data exporters could legally transfer data…

Read Post

European Data Protection Board Confirms: No Safe Harbor for Privacy Shield Members

As we discussed last week, the Court of Justice of the European Union (“CJEU”) recently ruled that…

Read Post

What’s in Your Wallet? Five Tips to Protect Forensic Reports from Discovery Post-Capital One

In a recent case that has set the data breach defense bar abuzz, a federal magistrate judge in Virginia overseeing a class action against…

Read Post

Infinity War: Exploring the State Data Security Law Multiverse and Its Newest Member (the NY SHIELD Act)

The oft-derided U.S. hodgepodge of privacy and data security law is about to add another hodge. Or is it a podge? Not important, moving on……

Read Post

Dissecting OCR HIPAA Penalties: Why small breaches continue to drive big settlements and penalties

It is unsurprising that big data breaches lead to big costs (we see you Facebook). You would be forgiven, then, for assuming…

Read Post

Record GDPR Fine of $230M Places Emphasis on Data Security

British Airways appears poised to be the recipient of the largest GDPR fine to-date. The UK Information Commissioner’s Office today issued a…

Read Post