Bianca Ponziani

She works with both start-ups and Fortune 500 companies to develop proactive compliance programs and provides practical guidance on a wide range of U.S. data protection laws, including:

• U.S. state privacy, data breach notification, and AI laws

• The Illinois Biometric Information Privacy Act (BIPA) and other biometric privacy laws

• The Children’s Online Privacy Protection Act (COPPA)

• The CAN-SPAM Act

• The Telephone Consumer Protection Act (TCPA)

• Section 5 of the Federal Trade Commission Act (FTC Act)

• The Health Insurance Portability and Accountability Act (HIPAA)

Bianca also counsels clients on international regulations, such as the EU and UK General Data Protection Regulation (GDPR) and the EU Artificial Intelligence Act, from a U.S. perspective.

She represents clients in regulatory inquiries and governmental investigations related to their data practices, including matters before the FTC and state attorneys general. Bianca has a particular focus on advising clients as they respond to emerging AI regulations. She assists with drafting AI governance and responsible use policies, conducting AI model risk assessments, and negotiating AI-related commercial contracts.  

In addition, Bianca provides practical guidance in complex, multijurisdictional corporate transactions to help navigate attendant privacy, cybersecurity, and AI risks.