Skip to main content

Privacy and Data Security Law Institute 2014 (Fifteenth Annual)

Speaker(s): Adam Miller, Beth Givens, Cathy Bump, Christine E. Lyon, D. Esther Chavez, Dr. Lothar Determann, Fran Smallson, Francoise Gilbert, Holly K. Towle, Ian C. Ballon, James G. Snell, Jeff Rohlmeier, Jill A. Phillips, John F. Hyland, Jonathan D. Avila, Kathryn J. Fritz, Laura D. Berger, Merri A. Baldwin, Peter M. McGoff, Randy V. Sabett, Rodrigo Bustamante, Rudy Guyon, Stacy Martin, Susan Lyon-Hintze, Thomas J. Smedinghoff, Todd M Hinnen
Recorded on: May. 19, 2014
PLI Program #: 51899

Christine Lyon advises organizations on cutting-edge issues related to the collection, use, sharing, and safeguarding of data, including personal information of customers and employees. She serves as a trusted advisor, working with clients to develop global strategies to comply with U.S. and international privacy and data protection laws.

Christine's practice spans a variety of industry sectors, from information technology services to consumer products, and covers clients ranging from start-ups to large multinationals. She advises technology companies on building privacy protections into their offerings, including connected products and services (Internet of Things), cloud- based and mobile services, and social media initiatives, as well as on managing th  related "Big Data" implications. She also assists clients in evaluating and managing privacy risks, including in strategic transactions such as IT outsourcing, and mergers and acquisitions.

Christine began her career as an employment lawyer and continues to counsel companies about employment practices, with a particular focus on employee privacy (such as employee monitoring, investigations, and background checks), compliance with federal and state employment laws, and managing key aspects of employment relationships. She brings a collaborative, practical approach to helping companies manage their data and their workforces.

Legal 500 US recognized Ms. Lyon as a "rising star" in the area of privacy and data protection and recommended her for cyber law, and she received The Burton Award for Distinguished Legal Writing. She frequently writes and speaks on the topics of global data protection laws, workplace privacy issues, and data security laws. She is a co-editor of  Global Employee Privacy and Data Security Law  (BNA Books) and a member of the editorial board of the World Data Protection Report.

Global Privacy Compliance Program for Major Cloud-Based Service Provider

Assisted a cloud services provider operating in over 50 countries in developing a global privacy compliance program, including privacy-related terms for customer and vendor agreements, internal and external privacy and data protection policies, and intercompany international data transfer agreements.

Outsourcing of Global HR Data to Third-Party Cloud Services

Advised a financial services company operating in over 30 countries in moving its global HR data to a third-party cloud software-as-a-service (SaaS) provider, including negotiating privacy and data security terms with the third-party provider.

Privacy Program for Connected Consumer Products

Assisted a consumer products company in developing privacy policies and procedures for its new line of connected household products and related service offerings.








Peter McGoff is Senior Vice President, General Counsel and Corporate Secretary for Box, where he leads the Box legal, compliance, security and real estate departments. He also works closely with the senior management team and Board of Directors on any legal, regulatory or compliance matter affecting the Company. Prior to Box, Peter was Senior Vice President and General Counsel of Informatica, where he managed legal, real estate and license-compliance functions.

Peter earned his LLM in Intellectual Property Law from the London School of Economics, J.D. from University of the Pacific, McGeorge School of Law and a B.S. degree in Finance/Economics from California State University, Sacramento.

Randy V. Sabett, J.D., CISSP, is Vice Chair of the Privacy & Data Protection practice group at Cooley LLP and has over 20 years of both technical and legal cybersecurity experience.  A former crypto engineer from the NSA, Mr. Sabett’s practice focuses on data protection, privacy, licensing, and IP, dealing with such issues as risk assessment, corporate liability for privacy and data security, identity management, EU data privacy issues, active defense, electronic signatures, state and federal information security laws, and security breaches.  Mr. Sabett has counseled numerous clients on a variety of data breach incidents, involving major commercial retailers, large financial institutions, on-line service providers, and health care organizations.  He served as a Commissioner for the Commission on Cybersecurity for the 44th Presidency and has been recognized as a leader in Privacy and Data Security in the 2007-2014 editions of Chambers USA.  He was also named as the 2013 Information Security Professional of the Year by Information Systems Security Association (ISSA) International.  Mr. Sabett is an adjunct professor at GWU, a member of the Boards of Directors for the Georgetown Cybersecurity Law Institute and the Northern Virginia chapter of ISSA, and a frequent lecturer and author.  Selected works include:

  • “A Fine-Grained Approach for Analyzing Active Cyber Response by the Private Sector” (Co-author) PLI Fifteenth Annual Institute on Privacy and Data Security Law (2014)
  • “Adequate Attribution: A Framework for Developing A National Policy for Private Sector Use of Active Defense” (Co-author) Univ. of Maryland Jr of Business and Technology Law (2013)
  • “The ABA Cybersecurity Handbook” (Contributing Author) (2013)
  • “Sabett’s Brief”Monthly column in the ISSA Journal (2008 – present)
  • “Information Security and Privacy: A Practical Guide for Global Executives, Lawyers and Technologists” American Bar Association (Contributing Author) (2011)
  • “The Third-Party Assurance Model: A Legal Framework for Federated Identity Management” (Co-author) Jurimetrics, Vol. 50, No. 4 (2010)
  • “Beautiful Security” (Contributing Author) O’Reilly Publishing (2009)
  • “Foundations of Digital Evidence” (Contributing Author) (2008)
  • “Metadata: Savior or Pariah?” Council of Bars and Law Societies of Europe (Sep 2006)
  • “Encyclopedia of Cryptography and Security” (Contributing Author) Springer Publishing (2005)
  • “Internet X.509 PKI Certificate Policy and Certification Practices Framework” [RFC 3647] (Co-author) (2003)
  • “Internet Law and Practice” (Contributing Author), West Group (2002)
  • “Financial Services PKI Policy and Practices Framework” (Co-author) ANSI X9.79 (2001)
  • “Effects of Technology Convergence and PKI on the Practice of Law” UB IP Law Jrnl. (1999)
  • “Key Recovery in a Public Key Infrastructure” (Co-author) Jurimetrics, Vol. 38, No.3 (1998)
  • “PGP:Securing Privacy of Electronic Information” Elec. Banking Law and Rpt. (1997)
  • “Digital Signatures: Next Step in Integrity of Electronic Commerce” Daily Record (1997)
  • “International Harmonization in Electronic Commerce and EDI: A Proposed First Step Toward Signing on the Digital Dotted Line” The American University Law Review (1996)
Mr. Sabett holds two U.S. patents, one in information security and the other in active noise cancellation.  He has appeared on or been quoted in a variety of national media sources. - See more at:

Francoise Gilbert, a partner at Greenberg Traurig, is the author of the two volume treatise “Global Privacy and Security Law” (Wolters Kluwer Publishing), covering 68 countries. Her practice has focused on information privacy and security for more than 25 years. Interested in the challenges raised by hackers such as Robert Morris and Kevin Mitnick in the late 1980’s and early 1990’s, she began conducting extensive research of the existing laws. In 1991, she published her first law review article on Breaches of Security and started working with clients on the legal issues stemming from attacks on their systems. In 1992, she became involved in emerging health security and privacy issues in the use of technology for telemedicine services. In this connection, throughout the 1990’s, she contributed to the drafting of several federal and state bills that were the predecessors of HIPAA.

Since then, her practice has evolved as privacy and cyber security laws and jurisprudence were developed in the United States and globally. Francoise deals regularly with compliance challenges raised by cloud computing, connected objects, smart cities, big data, mobile applications, wearable devices, social media, data analytics, artificial intelligence, internet of things, autonomous vehicles and other cutting-edge developments. As a practicing attorney, she advises public companies, emerging technology businesses and non-profit organizations, on the entire spectrum of domestic and international privacy and cyber security issues legal issues. Sample engagements include, compliance, product strategy, privacy-by-design, privacy policies, mergers & acquisitions, cross border data transfers and global privacy programs.

Françoise holds law degrees from Paris University (France) and Loyola University (Chicago, Illinois) and a graduate degree in Mathematics from Paris University (France). She is accredited as a Certified Information Privacy Manager (CIPM) and a Certified Information Privacy Professional (CIPP/US, CIPP/E).

Internationally recognized as a thought leader and expert in data privacy and cyber security, Francoise Gilbert has been continuously praised for her experience and in-depth knowledge of this area. She was named “2014 San Francisco Lawyer of the Year” by Best Lawyers for her work in information privacy and security, and a “Cybersecurity and Privacy Trailblazer” by the National Law Journal in 2015.  She is listed in Chambers USA and Chambers Global (since 2008), Best Lawyers in America (since 2007), and Who’s Who in Ecommerce and Internet Law (since 1998). Françoise has also been recognized as one of the US “top privacy advisers” by Computer World and as an “attorney who matters” by Ethisphere.

Beth Givens is founder and executive director of the Privacy Rights Clearinghouse (PRC), established in 1992. The PRC is a nonprofit consumer education and advocacy organization, based in San Diego, California. Its mission is to engage, educate and empower individuals to protect their privacy. Givens and her organization represent the interests of consumers in public policy proceedings at the state and federal levels. She and her colleagues are often interviewed by the media on consumer privacy issues.

The PRC’s many consumer guides cover a broad range of informational privacy topics, including: credit reporting, identity theft, data breaches, online privacy, medical records, workplace issues, online data brokers, employment background checks, computer security, debt collection, education, telemarketing, and smartphones.

Givens has participated in numerous task forces and commissions including: California Attorney General Do-Not-Track Working Group, Consumer Federation of America Identity Theft Services Best Practices Task Force, Consumer Federation of America Cloud Computing Working Group, California Judicial Council Working Group on Personal Information and Court Outsourcing, California Real ID Act Privacy and Security Work Group, and California Radio Frequency ID Advisory Committee.

Givens co-authored a chapter on identity theft in Protection, Security and Safeguards (2nd ed,, 2013). She contributed a chapter on consumer and privacy rights to the 2006 book, RFID: Applications, Security and Privacy.  She authored the encyclopedia entries on identity theft for Encyclopedia of Privacy (2007), World Book Encyclopedia (2004) and Encyclopedia of Crime and Punishment (2002). Givens is author of an early book on informational privacy, The Privacy Rights Handbook (Avon, 1997), and is co-author of another early guide, Privacy Piracy: A Guide to Protecting Yourself from Identity Theft (1999), with Mari Frank, Esq.

Prior to her work as a consumer advocate, Givens was a librarian specializing in library network development and resource sharing.  Givens has a master’s degree in Communications Management from the University of Southern California Annenberg School for Communication, and a master’s degree in Library and Information Services from the University of Denver. She is a member of the International Association of Privacy Professionals.

Cathy Bump serves as Global Privacy Director of Expedia, Inc. She oversees global compliance with privacy and data security laws across Expedia’s subsidiary brands, including,, Hotwire, Orbitz, Travelocity, HomeAway, and Egencia Corporate Travel.  Cathy is responsible for Expedia’s implementation and maintenance of best practices in connection with privacy as well as compliance with data protection laws globally.  She works closely with Expedia’s Information Security Team to implement both internal and third party data security safeguards, and also guides the shaping of Expedia’s positions on privacy issues and legislation.

Cathy serves as Co-chair of the Bay Area Association of Corporate Counsel (ACC) Privacy & eCommerce Committee.

Prior to joining Expedia, she held the position of Vice President of Policy & Legal for TRUSTe, the leading online privacy standard-setting and seal organization.  An attorney with diverse experience – encompassing business, litigation, and policy issues -- she initially began specializing in privacy and data security while serving as in-house privacy counsel for Intuit Inc.

Cathy holds a J.D. from Hastings College of the Law and a B.A. in political science from Stanford University.  She has been a Certified Information Privacy Professional (CIPP) since 2004.

Esther Chavez is Senior Assistant Attorney General in the Consumer Protection Division of the Office of Texas Attorney General Ken Paxton.

Ms. Chavez’ professional activities include service on the Texas State Bar’s Consumer and Commercial Law Section council where she has served as chair and as director of the section’s continuing legal education programs and annual consumer law student writing competition.  Previously she has served as Vice Chair of the Texas State Bar’s Hispanic Concerns Section and as Vice Chair of its Legal Services to the Poor in Civil Matters Committee.

Ms. Chavez is a frequent speaker on consumer protection topics  and in the last several years has been a speaker at continuing legal education seminars including the 2015 Texas State Bar’s Advanced Consumer & Commercial Law Course, the National Association of Attorneys General Fall 2014 Consumer Protection Conference, the Practising Law Institute’s Annual Privacy Symposium, the  National Advertising Division of the Better Business Bureau’s Annual Advertising Law Review and the American Bar Association’s  61st and 62nd Antitrust Law Spring Meetings.

Jeff Rohlmeier is Director of Privacy in the law and public policy department at Motorola Mobility, a Lenovo company.  He also serves as coordinator of the Lenovo and Motorola privacy programs.  In this capacity, he serves as leader of company-wide privacy compliance-related efforts, including issues arising under various global privacy and related data protection laws and standards.  In particular, he provides guidance to product development, information technology, marketing and others on the privacy implications of their personal information handling and use activities; software and applications; websites; product features; marketing campaigns; third party relationships; employee data practices; and related areas.

Prior to rejoining Motorola (where he earlier held the role of Privacy Compliance Lead with Motorola, Inc.), Mr. Rohlmeier was Chief Privacy Officer at Thomson Reuters.  Earlier in his career, Mr. Rohlmeier served as Associate Director of the Office of Technology and Electronic Commerce within the United States Department of Commerce’s International Trade Administration in Washington, DC.  While at the Commerce Department, he served as point-person for implementation and interpretation of the U.S.-European Union Safe Harbor Privacy Framework; project manager for implementation of the Asia-Pacific Economic Cooperation (APEC) Privacy Framework; and was responsible for monitoring developments and coordinating interagency policy on privacy and related e-commerce policy issues around the world.

Mr. Rohlmeier has authored several articles on international privacy compliance and related topics. While in government, Mr. Rohlmeier earned two Silver Medals for Meritorious Federal Service, presented by Secretaries Evans and Gutierrez respectively.  He also completed a six-month detail to the U.S. Department of Homeland Security’s Privacy Office.

Mr. Rohlmeier received his Juris Doctor from The Chicago-Kent College of Law and a Bachelor of Arts in Political Science and History from Purdue University.

Jim Snell is a partner in the Privacy & Security Group at Perkins Coie.  He represents clients in a broad range of complex commercial matters, including patent litigation, Internet and privacy issues, trade secret matters, matters involving unfair competition claims under California Business and Professions Code section 17200, false advertising, and class actions.

Jim is a Certified Information Privacy Professional (CIPP) as designated by the International Association of Privacy Professionals (IAPP) and a co-chair of the IAPP’s KnowledgeNet program.

John Hyland practices exclusively in the area of employment law.  Prior to forming Rukin Hyland Doria & Tindall, John was Of Counsel with Paul, Hastings, Janofsky & Walker LLP in the firm's San Francisco office where he advised and represented companies in State and Federal court actions covering all areas of employment law, including wrongful termination, discrimination, harassment, disability law, employee privacy, employee leaves, and wage and hour issues.  John has represented clients in jury trials and arbitrations, and has argued cases before the California Court of Appeal.  John regularly conducts training seminars and presents on a wide array of employment law issues.  John also serves as an instructor for the Sonoma State University Human Resources Certification Program.  Law & Politics Magazine selected John as one of its Northern California Super Lawyers each year from 2006 through 2012, and again in 2014.  San Francisco's Best Lawyers named John in its 2012 edition, and The Best Lawyers in America selected John for inclusion in its 2012, 2013 and 2014 editions.

In addition to his litigation and counseling practice, John devotes a significant part of his practice to serving as a mediator.  John obtained certification as an employment law mediator from Cornell University’s School of Industrial Relations.  He serves as a mediator for the Sonoma County Superior Court ADR Program in which he mediates a wide array of civil cases.  John’s experience representing both employees and employers provides him a unique and balanced insight into both sides of an employment dispute.

John serves as a faculty member for the Sonoma State University Human Resources Management Certificate Program.

John received his B.S. degree from Saint Joseph's University in Philadelphia, Pennsylvania.  He earned his J.D. degree from Golden Gate University School of Law in San Francisco, where graduated in 1995 with highest honors and first in his class.  While at Golden Gate, John served as a contributing author and associate editor of the Golden Gate Law Review.

Jon Avila joined Wal-Mart Stores, Inc. as Vice President, Chief Privacy Officer on October 15, 2012.  Jon previously served as Assistant General Counsel, Chief Privacy Officer of The Walt Disney Company.  Jon initiated the data privacy program at Disney in 2001 and led the development of Disney's enterprise privacy compliance program covering all of Disney's online and offline business activities in the nearly 50 countries in which Disney operates.

Jon also has been active in the international data privacy community, having served for five years on the board of directors of the International Association of Privacy Professionals, including serving as President of the IAPP in 2009.  Jon has been invited to speak at numerous conferences on data privacy issues, including conferences of the international data privacy commissioners sponsored by the governments of Spain and Mexico.  Jon also has served on the advisory committee to the California Office of Privacy Protection on the development of its guidance on California's "Shine the Light" law relating to business' information sharing practices.

Jon began his legal career as a law clerk to Judge W. Eugene Davis of the United States Court of Appeals for the Fifth Circuit.  Jon later was an associate with Latham & Watkins, and Litigation Counsel with the CBS television network.  Before joining Disney, Jon served as General Counsel, Chief Privacy Officer of, Inc., a venture capital funded Internet company.

Jon graduated with a B.A. from Yale University and a J.D. from Harvard Law School.  Jon also holds a diploma from the University of Salamanca (Spain).

Kathryn J. Fritz is a partner in the Litigation, Intellectual Property and Privacy Groups and serves as Managing Partner of Fenwick & West, a law firm specializing in technology and life sciences matters. Ms. Fritz is resident in the firm’s San Francisco office.

Ms. Fritz’s practice concentrates on business and intellectual property litigation, with an emphasis on trademark, right of publicity and copyright, especially as applied to new technology areas. She has represented and advised software publishers, computer hardware manufacturers, gaming and digital media companies, entertainment companies, traditional media publishers and consumer products companies on commercial and intellectual property issues.

Ms. Fritz received her B.A., magna cum laude, from the University of California at Santa Barbara, where she was a member of Phi Beta Kappa and a University of California Regents’ Scholar. She received her J.D., cum laude, from Georgetown University Law Center, where she was Research Editor of the American Criminal Law Review.


Ms. Fritz writes and speaks regularly on intellectual property issues to groups that include the Federal Judicial Center and Practicing Law Institute, and since 1999 has taught an advanced trademark law seminar at UC Berkeley School of Law, Boalt Hall.

She was named to The National Law Journal’s 75 Outstanding Women Lawyers in 2015; has been named to The Recorder’s list of Top 50 Women Leaders in Tech Law and, in 2015, was additionally designated as one of 10 “Power Players.”

Ms. Fritz has been a member of the Board of Trustees of the Santa Clara County Bar Association and the Board of Directors of the Bar Association of San Francisco.  She is an active speaker on issues relating to law firm management and change, and is active in diversity initiatives in the profession.


Ms. Fritz has been actively involved on behalf of pro bono clients.  She has represented documentary filmmakers in intellectual property matters, for many years was on the capital defense team for a client on California’s death row, ultimately achieving a reversal of his death sentence, and has assisted clients in obtaining political asylum.

Ms. Fritz is also active in the greater pro bono community.  She is a member of the Board of Directors of Equal Justice Works, has co-chaired the Bar Association of San Francisco’s Pro Bono Committee, is a member of the Pro Bono Institute’s Law Firm Advisory Board, and was a member of the Legal Service Corporation’s Pro Bono Task Force and co-chair of the Subcommittee on Technology Best Practices. She was recently honored by OneJustice for her pro bono leadership.


Commercial Litigation



Trade Secrets

Unfair Competition

Lothar Determann practices and teaches international technology, commercial and intellectual property law.

As a partner with Baker & McKenzie LLP in Palo Alto, California, Lothar Determann’s practice covers counseling companies on taking their products, data, intellectual property and contracts international, as well as related commercial and compliance matters. Dr. Determann is admitted to practice in Germany and California.

Dr. Determann has been a member of the Association of German Public Law Professors since 1999 and he teaches Data Privacy Law, Computer Law and Internet Law at Freie Universität Berlin (since 1994), UC Berkeley School of Law (Boalt Hall, since 2004), Hastings College of the Law (since 2010), Stanford Law School (2011) and University of San Francisco School of Law (2000-2005). He frequently presents on international and intellectual property law topics and has authored more than 100 articles and treatise contributions as well as 5 books, including Determann’s Field Guide to Data Privacy Law (2nd Edition, 2015) and California Privacy Law (forthcoming, 2015).

For more information see

Merri Baldwin is a shareholder at Rogers Joseph O’Donnell, where her practice focuses on attorney liability and commercial litigation.  She handles claims of legal malpractice and breach of fiduciary duty, as well as motions to disqualify and for sanctions.  She regularly counsels lawyers and law firms on legal ethics and law practice management issues.  She represents attorneys in disciplinary matters before the State Bar of California, and has extensive experience handling attorney-client fee disputes.  Ms. Baldwin is an advisor to the State Bar of California Committee on Professional Responsibility and Conduct.  She is a co-chair of the Legal Malpractice subcommittee for the American Bar Association Litigation Section Committee on Professional Services Litigation.  Ms. Baldwin is the President of the Bar Association of San Francisco for 2017.  Ms. Baldwin frequently lectures to attorneys and professional organizations on issues related to litigation, legal malpractice and ethics issues, and she is an adjunct professor at the University of California at Berkeley School of Law.  Ms. Baldwin co-edited The Law of Lawyers’ Liability (ABA/First Chair Press 2012) and since 2006 she has served as a consulting editor for the Attorney Fee Agreement Forms Manual, published by Continuing Education of the Bar, California.  Prior to law school, Ms. Baldwin was a Fulbright Scholar at the London School of Economics.


J.D., University of California at Berkeley, School of Law (Boalt Hall)

B.A., Smith College
Magna Cum Laude with high honors

Susan Lyon-Hintze, founder of the Law Office of Susan Lyon-Hintze, has provided legal counsel to tech and e-commerce clients for over 15 years over a decade of which has been focused exclusively on the area of privacy and security.  She advises clients from small start-ups to major Internet, technology, advertising, and mobile companies on a wide range of U.S. and international privacy and data security issues. Representative areas of expertise include CAN-SPAM, FTC Act, Children's Online Privacy Protections Act (COPPA), telemarketing laws, data security and data breach notice obligations, behavioral targeting and advertising, online and mobile tracking and monitoring using automatic tracking technology, facial recognition and biometrics, cloud computing strategy, and legislative and regulatory policy and outreach.

Ms. Lyon-Hintze formerly served as co-chair of Cooley LLP's privacy group and co-lead of Perkins Coie's privacy group.  She also gained valuable in-house experience as privacy counsel with Microsoft Corp., where she was the lead attorney responsible for global privacy law compliance for all sales and marketing activities and legislative policy in the area of privacy, data security, and online safety.  Prior to Microsoft she served as lead privacy counsel at Dell, Inc

Thomas J. Smedinghoff is Of Counsel in the Privacy & Cybersecurity Practice Group in the Chicago office of Locke Lord LLP.  His practice focuses on the developing field of information law and electronic business activities, with an emphasis on electronic transactions, identity management, data security, privacy, and online authentication.

Mr. Smedinghoff has been actively involved in developing e-business, e-signature, identity management, and data security legal policy both in the U.S. and globally.  He currently serves as Chair of the Identity Management Legal Task Force of the American Bar Association (ABA) Section of Business Law, and Co-Chair of its Cybersecurity Committee.  Mr. Smedinghoff is also a member of the U.S. Delegation to the United Nations Commission on International Trade Law (UNCITRAL), where he participates in the Working Group on Electronic Commerce. In that capacity, he helped to negotiate the international e-commerce treaty titled the United Nations Convention on the Use of Electronic Communications in International Contracts, and will soon be working with UNCITRAL to address international eID issues.

Mr. Smedinghoff is author of the book titled Information Security Law: The Emerging Standard for Corporate Compliance, (2008), and the editor and primary author of the e-commerce book titled Online Law: The Legal Guide to Doing Business on the Internet (1996).

Admitted: California, District of Columbia and Maryland
Second, Third, Fourth, Ninth and Federal Circuits
U.S. Supreme Court


Ian Ballon is a litigator who is Co-Chair of Greenberg Traurig LLP’s Global Intellectual Property & Technology Practice and represents Internet, technology, mobile and other companies in intellectual property and internet- and mobile-related, privacy and security litigation, including the defense of data privacy, security breach, behavioral advertising and TCPA class action suits. He is also the author of the leading treatise on Internet law, E-Commerce and Internet Law: Treatise with Forms 2d edition, the 5-volume set published by West ( In addition, he is the author of The Complete CAN-SPAM Act Handbook (West 2008) and The Complete State Security Breach Notification Compliance Handbook (West 2009). He also serves as Executive Director of Stanford University Law School’s Center for E-Commerce, which hosts the annual Best Practices Conference where lawyers, scholars and judges are regularly featured and interact. A list of recent cases may be found at

Mr. Ballon was named the Lawyer of the Year for Information Technology Law in the 2013 and 2016 editions of Best Lawyers in America. In addition, he was the 2010 recipient of the State Bar of California IP Section’s Vanguard Award for significant contributions to the development of intellectual property law ( He is listed in Legal 500 U.S., The Best Lawyers in America (in the areas of information technology and intellectual property) and Chambers and Partners USA Guide in the areas of privacy and data security and information technology. He also has been recognized by The Daily Journal as one of the Top 75 IP litigators in California in every year that the list has been published, from 2009 through 2016, and has been listed as a Northern California Super Lawyer every year from 2004 through 2016 and as one of the Top 100 lawyers in California. Mr. Ballon also holds the CIPP/US certification from the International Association of Privacy Professionals (IAPP).

Holly K. Towle is a partner with K&L Gates LLP, an international law firm. Ms. Towle's practice focuses on payment systems, privacy and data security, electronic business issues such as e-contracting structures for consumers customers and for business processes, and software licensing and other issues relating to information assets as distinguishable from “goods” or “services”. She is the author of two treatises, The Law of Electronic Commercial Transactions (2003-2015 LexisNexis), an information rich treatise explaining the legal landscape of commercial law when electronics or electronic settings are used, and also of Data Privacy, Protection, and Security Law (LexisNexis).

Laura D. Berger is an attorney in the Division of Privacy and Identity Protection at the Federal Trade Commission.  She enforces federal laws that protect consumer privacy. Recently, her law enforcement work has focused on the privacy and security standards applicable to social media and to the Internet of Things. She also has worked on the agency's efforts to educate app developers about privacy and security. She received a B.A. from Tulane University and a J.D. from the University of Michigan Law School. She works from the FTC's Regional Office in San Francisco.

RUDY GUYON is the Director, Legal at McAfee, Part of Intel Security. Rudy is Silicon Valley-based technology attorney for global businesses.  Rudy has expertise in licensing, commercial, and Internet transactions; international privacy and regulatory compliance; and technology products development and marketing.  Rudy enjoys the ever-changing nature of in-house practice.Previously Rudy practiced in-house at Hitachi Global Storage Technologies and the Fujitsu America group of companies.  Prior to that Rudy was with the firms Silicon Valley Law Group and Matsubara Muraki International Patent Law Office. Rudy has also lived and worked abroad in Japan and Europe, and speaks pretty good Japanese.  Rudy is a Certified Information Privacy Professional (CIPP/US), and he currently co-chairs the IP Licensing and International Committees of the Bay Area Chapter of the Association of Corporate Counsel.  Rudy graduated from the UCLA School of Law and UC Berkeley.  He has taught law at universities in Japan and Romania.

Todd Hinnen is the co-chair of Perkins Coie’s Privacy and Security Group and a Lecturer in Law at Stanford Law School.  Prior to joining Perkins Coie, Todd served as head of the National Security Division at the U.S. Department of Justice, Chief Counsel to then-Senator Joseph R. Biden, and Director for Combatting Terrorism at the National Security Council.  Todd began his career as a computer crime prosecutor with the Department of Justice, during which time he served as the Rapporteur for the G8 Subgroup on High-Tech Crime and the Head of the U.S. Delegation to the Organization of American States Cybercrime Experts Group.  He clerked for the Honorable Richard Tallman for the Ninth Circuit Court of Appeals and is a graduate of Harvard Law School and Amherst College.