He also provides risk-based and actionable legal counsel to clients on data privacy and cybersecurity matters across a wide range of data-rich, highly regulated industries, including financial services, payments, health care, higher education, retail, hospitality, and technology. Additionally, Ryan’s cybersecurity experience includes designing security programs to protect trade secrets and building data governance programs that have addressed the proper management of trade secrets. He regularly advises clients with respect to CCPA, CPRA (and similar laws emerging in numerous US states), GDPR, HIPAA, GLBA, TCPA, FCRA, COPPA, CAN-SPAM, PCI-DSS, NYDFS, data breach notice laws, and cross-border matters involving global laws and regulations.

Ryan’s privacy and cybersecurity counseling often weaves in data management best practices in order to assist clients with building long-lasting internal governance structures for managing data throughout its entire lifecycle, with a focus on core issues such as ownership, licensing, data mapping, data subject rights, record retention, third party vendor management, training, access controls, and secure data destruction. In addition, for the entirety of his career, Ryan has supported clients through data breach response and data breach mitigation efforts, including preventative cybersecurity risk assessments and follow-on implementations. He brings a calm and measured approach to all cybersecurity situations.

Ryan’s matters are often multinational in nature and frequently involve emerging technologies, including fintech, Internet of Things (IoT), and connected medical devices. He is a trusted advisor to numerous well-known global consumer and business-to-business brands and invests the time necessary to learn the technologies, business processes, and goals of each of his clients in order to deliver tailored legal advice. A former in-house attorney, Ryan brings a strategic, pragmatic, and business-minded approach that has earned trust and enduring loyalty from his clients.