See by:open filter
Former Executive Director of the Massachusetts Gaming Commission, Edward R. Bedrosian Jr., draws on more than 25 years of public sector experience to advise clients navigating the fast-developing sports betting market.
Ed was appointed head of the Massachusetts gaming regulatory system just a few years after the state legalized gaming. As Executive Director, Ed guided the opening of the state’s two major resort casinos which have a combined investment of over $3.4 billion. He advised Commissioners on regulatory compliance issues and worked with host and surrounding communities to address any impacts of casino openings. He also guided one of the most robust responsible gaming programs in the country. Additionally, Ed was responsible for regulating Thoroughbred and Standardbred horse racing as well as simulcasting in Massachusetts.
In addition to overseeing both civil and criminal litigation as the First Assistant Attorney General in the office of the Massachusetts Attorney General, Ed was the Attorney General’s top legal advisor. He oversaw appellate strategy, approved indictments and personally negotiated settlements. He was designated by the state’s Supreme Judicial Court as a member of Massachusetts Court Management Advisory Board where he served as an advisor on management issues to members of the Massachusetts trial court. Ed also advised the Attorney General on healthcare, environmental, energy, and antitrust law and regulatory issues. He served as the Attorney General’s point of contact on terrorism issues and was a member of the local multi-agency Anti-Terrorism Activation Committee.
At the Attorney General’s office, he managed two large bureaus plus the State Solicitor’s office, the Division of Gaming Enforcement, and the Division of Open Government, and was responsible for all Special Assistant Attorney General appointments. He was also frequently an advisor to large state agencies on litigation and regulatory matters.
Prior to his service in the Attorney General’s office, Ed was a Deputy District Attorney with the Middlesex County District Attorney’s office. He tried hundreds of cases, including white collar fraud, narcotics and homicide cases. He also managed a Special Investigations Unit that focused on organized crime and career criminals.
New York; Boston
New York; Boston
David’s practice focuses on complex litigation, particularly in the area of privacy and data security. He has extensive experience working with corporate clients that have suffered data breaches or have been accused of privacy violations, defending them against class actions and claims asserted by payment card brands and representing them in connection with federal and state government actions.
In addition, David is a thought leader in the area of privacy and cybersecurity, publishing extensively on the latest issues in the space and serving as a resource to reporters and others writing on breaking legal developments. David is also an active member of the Sedona Conference Working Group 11 on Data Security and Privacy Liability.
New York; Boston
New York; Boston
Matthew Coleman is a Managing Associate in Orrick’s Cyber, Privacy & Data Innovation practice group in New York. Matthew leverages years of experience in researching, auditing, counseling, and litigating complex, multi-jurisdictional issues surrounding privacy, cybersecurity and information governance. Matthew is a Certified Information Privacy Manager and a Certified Information Privacy Professional with a specialization in United States privacy law.
Matthew focuses his practice on helping clients develop global privacy programs to meet the requirements of an incomplete patchwork of privacy and cybersecurity laws, both in the United States and abroad, including the GDPR, CCPA and its progeny, GLBA, COPPA, FCRA, TCPA, CAN-SPAM and state breach notification and cybersecurity laws. He also has extensive experience guiding clients through mergers and acquisitions to identify and mitigate privacy and cybersecurity risks. Matthew routinely advises on emerging technologies, including artificial intelligence and blockchain, and helps clients navigate self-regulatory privacy programs such as the EU-US Privacy Shield, Binding Corporate Rules, APEC CBPRs, programs covering online behavioral advertising including the DAA, EDAA, IAB and the NAI, and programs covering payment card processing. An ever-growing portion of Matthew’s practice involves helping companies prepare for privacy or security breaches and leading an immediate response in the event of an incident, successfully guiding clients through investigation, remediation, notification and ensuing government inquiries.
Matthew leans on his experience working for federal regulators to keep clients on the safe side of the watchful eye of the law. His understanding of overarching data management best practices helps him counsel beyond the letter of the law, but also facilitate worldwide expansion, interoperable business processes, and innovative uses of consumer data all while maintaining user trust. His all-encompassing, risk-based approach involves developing and executing internal and external policies for the collection, use, disclosure, sharing, retaining, transferring, and destruction of personal information. This includes managing contractual relationships with vendors, employees, acquired entities, and creditors as well as the building privacy into companies’ product development life cycle and change management strategies. Prior to joining Orrick, Matthew was an Enterprise Privacy Solutions Manager for TrustArc (formerly TRUSTe), a San Francisco-based privacy consulting and certification firm, and an adjunct law professor of Privacy Law at Santa Clara University.
David Curtis is a member of Orrick's internationally-recognized Cyber, Privacy & Data Innovation practice.
David’s practice focuses on data privacy, cybersecurity, digital advertising, Internet law and consumer protection. David advises clients on data collection, storage, use, licensing and transfer issues. He also provides guidance on issues relating to the California Consumer Privacy Act of 2018 (CCPA), the Gramm-Leach-Bliley Act (GLBA), the Fair Credit Reporting Act (FCRA), and other state and federal laws and self-regulatory frameworks. In addition, David has experience evaluating the applicability of European data protection requirements to U.S. companies.
Before joining Orrick, David was an associate at Ropes & Gray LLP and an adjunct professor at Harvard Law School, where he taught legal research, writing and analysis. David clerked for Justice Barbara Lenk of the Supreme Judicial Court of Massachusetts.
Victoria ("Tori") Downey is an Associate in Orrick's internationally recognized Cyber, Privacy & Data Innovation practice group. Her practice focuses on the intersection of privacy, security and data management.
Tori partners with clients to navigate through the patchwork of global laws impacting privacy and cybersecurity. She also helps clients reduce the risk of privacy and security incidents.
Prior to joining Orrick, Tori served as an in-house data privacy & security law clerk at a pharmaceutical company in Boston, at a large non-profit corporation in New York City, and at an international oil and gas company in Beijing. She also worked on data privacy matters in the Office of the General Counsel of Northeastern University. Having worked across and within a broad array of industries, she brings an in-house perspective to her client matters.
Heather Egan Sussman is Global Co-chair of Orrick’s Cyber, Privacy & Data Innovation practice, and the leader of Orrick’s Boston Office. Her practice focuses on privacy, cybersecurity and information management, and she is ranked by Chambers USA and The Legal 500 United States as a leader in her field. Chambers explains companies turn to Heather because she is “generous with her time and endeavors greatly to educate her clients and understand a given client’s risk profile."
Heather routinely guides clients through the existing patchwork of laws impacting privacy and cybersecurity around the globe. In the U.S. this includes advising on federal and state laws such as FCRA, ECPA, TCPA, HIPAA, CAN-SPAM, GLBA, California’s Consumer Privacy Act, state breach notification laws, and state data security laws, as well as existing self-regulatory frameworks, including those covering online advertising and payment card processing. Outside of the U.S., she manages teams of talented counsel around the world to deliver seamless advice for clients that operate across many jurisdictional lines, developing comprehensive privacy and cybersecurity programs that address competing regulatory regimes. She drafts online privacy notices for global rollout and implements data transfer mechanisms for the free flow of data worldwide.
Heather also helps clients develop and achieve their data innovation strategies, so they can leverage the incredible value of data and digital technologies in ways that not only meet compliance obligations, but also support innovation, deliver value to the business, meet security needs and solidify brand and consumer trust.
Heather devotes a significant part of her practice to helping clients reduce the risk of privacy and security incidents, and she offers a comprehensive menu of services designed to do just this. In the event of a privacy or security breach, she helps companies respond, successfully guiding them through investigation, remediation, notification and any ensuing government inquiries. Companies routinely rely on her to manage their response to catastrophes, investigations and government probes involving conduct by employees, contractors and third parties.
Heather guides clients through comprehensive privacy and cybersecurity assessments worldwide, vets privacy and security risks in corporate transactions, conducts internal investigations stemming from data incidents, and she drafts and negotiates contracts concerning data-related vendors and arrangements. She regularly counsels businesses on how to mitigate risks associated with the collection, use, retention, disclosure, transfer and disposal of personal data.
Her clients come from diverse business sectors, including technology, financial services, retail, consumer products, energy and infrastructure, healthcare and life sciences, manufacturing, food and beverage, media, academic institutions, service industries.Heather frequently writes on current privacy and information security issues before trade and legal organizations and has been quoted in hundreds of major news outlets, including MSNBC.com, ABCNews.com, The New York Times, The Los Angeles Times, Bloomberg BusinessWeek, The San Francisco Chronicle, Washington Times, Houston Chronicle.
Privacy and cybersecurity underpins the innovative strategies of businesses across all sectors and introduces both legal and operational concerns. As a member of Orrick's internationally recognized Cyber, Privacy & Data Innovation team, Nick Farnsworth advises clients on a broad range of privacy and cybersecurity matters, including compliance, risk management and incident response.
Nick's practice focuses on guiding clients through the existing patchwork of state, federal and international privacy and cybersecurity laws. His practice includes advising clients on Section 5 of the Federal Trade Commission Act, the Fair Credit Reporting Act (FCRA), the Telephone Consumer Protection Act (TCPA), CAN-SPAM, state breach notification laws and state privacy and cybersecurity laws, such as the California Consumer Privacy Act. Nick also advises clients on the impact of international laws from a U.S. perspective, including the European Union General Data Protection Regulation (GDPR).
Nick assists clients from a broad range of industries and sectors in assessing their current privacy and cybersecurity practices. He regularly assists clients in developing global privacy and cybersecurity programs to practically implement the principles and obligations underlying various legal regimes, as well as assessing proposed marketing/advertising, transactional and business strategies from a privacy and cybersecurity perspective. Nick also advises clients on the assessment of suspected incidents/breaches and any associated notification obligations, as well as the privacy and cybersecurity risks associated with proposed transactions and ventures.
In addition, Nick has an active pro bono practice, which has included representing clients in immigration and innocence matters and assisting small businesses with their legal needs.
To make the California Consumer Privacy Act (“CCPA”) more accessible, Nick was a member of the team that developed Orrick's CCPA Readiness Assessment Tool. The tool provides companies an opportunity to test their preparedness for compliance with the CCPA as a first step to constructing their strategic compliance roadmap.
Ashley Gambone is a litigation associate in Orrick's Boston office.
Sheryl Koval Garko is an experienced trial lawyer who focuses on trademark, copyright, and trade secret litigation. Clients hire Sheryl for her creative, strategic, business-focused advice enriched by her extensive courtroom experience and working knowledge of a wide range of technologies.
For almost 15 years, she has represented clients ranging from Fortune 50 companies to start-ups in high stakes litigation and at trial. She has worked with leading technology companies and some of the most recognizable brands in the world, including New Balance, Samsung, and Microsoft. She has tried cases to both judges and juries in federal courts across the United States and is experienced practicing before the U.S. Patent and Trademark Office’s Trademark Trial and Appeal Board and the International Trade Commission.
Sheryl honed her skills in high profile, precedent setting cases. She represented New Balance at trial in the International Trade Commission in the successful defense of trade dress claims brought by Nike/Converse in a case that IP Law360 named it the top trademark ruling of 2016. Sheryl also represented Aereo against the major U.S. television networks in defense of its novel, industry-disrupting system for providing internet access to over-the-air broadcast television. That case ultimately went to the Supreme Court, which addressed copyright law issues of first impression.
Having prepared countless cases for trial, Sheryl has a clear understanding of the importance of identifying litigation strategy early on to direct the case in a cost- effective and efficient manner. Sheryl also leverages her wealth of experience to counsel clients on strategies to protect intellectual property when avoiding litigation is a strategic business priority.
Having also litigated a number of patent cases throughout her career, she brings to each matter a unique understanding of the intersection of copyright, trademark, trade secret and patent law. A superb communicator, she is able to explain diverse areas of complex technology to a judge or jury.
In 2017, World Trademark Review 1000, a peer and client survey, named Sheryl as one of the leading intellectual property litigators in the world, describing her as “‘highly recommended’ for her ‘helpful and creative advice,’ which is ‘always of first-rate quality.’” In the 2018 edition, WTR 1000 stated that Sheryl “offers significant firepower to any contentious mandate.”
She was named a 2017 Woman Worth Watching by Profiles in Diversity Journal. Sheryl was also singled out for Metropolitan Corporate Counsel’s Women in Business and the Law 2017 edition. In 2015, Massachusetts Lawyers Weekly named her one of the Top Women of Law and she received a 2015 Leadership Excellence Award from the National Diversity Council.
Gregg Griner is a partner in Orrick’s Technology Companies Group. His practice encompasses all areas of general corporate and securities law, with extensive experience in corporate finance, including public offerings and private placements of equity and debt, mergers and acquisitions, and venture capital fund formation.
Gregg represents companies in all stages of their life cycles, from start-ups to public companies, and in a variety of industries including, software, hardware, information services, financial services, financial technology, consumer goods, fashion, media, energy, medical devices and pharmaceuticals. He advises these companies in many aspects of their businesses including financings, corporate governance, employment matters, acquisitions, divestitures, licensing and distribution arrangements, and joint ventures and strategic partnerships.
Gregg also represents venture capital firms in their formation, fundraising efforts and maintenance, as well as in their investments in early and later stage operating companies and in complex leveraged transactions and restructurings. Gregg has worked with a number of leading technology and life science companies in connection with their initial and follow-on public offerings, M&A activities and leading investment banks in their underwriting of public equity and debt offerings.
Seth counsels clients through all stages of a privacy or data security incident, navigating the array of legal issues that arise, managing the response and investigation of an incident and defending clients against resulting litigation and regulatory investigations. He is also a trusted advisor of top U.S. companies on cyber risk insurance, leveraging his experience to provide a nuanced understanding when evaluating cyber risk insurance contracts.
Seth collaborates with colleagues firmwide on privacy and cybersecurity compliance and on incident response, applying lessons learned from significant incidents to help clients ensure compliance and effective planning.
Seth also has experience representing clients in connection with claims by credit card brands and financial institutions around payment card-related data breaches. He advises clients on the Payment Card Industry Data Security Standards and negotiation of agreements implicating payment card data.
Colleen Hespeler in an Associate in Orrick’s internationally recognized Cyber, Privacy & Data Innovation practice group. Her practice focuses on the intersection of privacy, security and data management.
Colleen partners with clients to navigate through the patchwork of global laws impacting privacy and cybersecurity. She also helps clients reduce the risk of privacy and security incidents.
Colleen has experience with assisting financial institutions with their compliance obligations under the SEC's privacy regulations, as well as the privacy regulations of other federal and state regulators. During law school, Colleen worked as an intern at the U.S. Securities and Exchange Commission.