Kate Lucente is an expert in privacy and cyber security law and has extensive experience counselling clients in the technology, automotive, AdTech, retail and financial industries. Kate’s practice focuses on privacy, cyber security and data governance.
With more than 15 years of experience in privacy and cybersecurity law, Kate has comprehensive knowledge and experience in this dynamic and increasingly complex area of law. Drawing on her considerable experience, Kate focuses on providing strategic advice and guidance that is practical, actionable and tailored to a company’s size, business model and risk profile.
Kate advises clients on a broad range of cyber security, privacy compliance and data governance matters, including:
- Global compliance advice on a broad range of issues, including advertising and marketing, AI, modeling and machine learning, biometrics, automated decision-making, cross-border data transfers, vendor management, electronic monitoring, cybersecurity and incident response.
- Data strategy and risk management, including managing and mitigating privacy litigation risks (e.g., CIPA and wiretapping, VPPA, TCPA).
- Compliance with US state and federal privacy and data protection laws, and industry self-regulatory programs.
- Monitoring and responding to global privacy developments and legislative changes.
- Policy-related advocacy and guidance to clients regarding proposed privacy and security laws and legislative trends.
- All facets of incident response, including IR plan development and testing, responding to incidents and post-incident liability and other activities.
- Risk analysis, strategic advice, and implementation work related to global expansions and post-merger integrations.
In her practice, Kate regularly:
- Partners with clients to design and operationalize sustainable global privacy compliance and data governance programs.
- Conducts risk and compliance assessments.
- Helps clients manage incident response matters, including engaging vendors and experts, overseeing forensic investigations, notification reporting, Board awareness, and manage post-incident liability.
- Provides product counseling and conducts product reviews, including advising on privacy impact assessments, strategy and risk mitigation, and design and implementation of privacy controls and supporting UX/UI.
- Helps clients develop and maintain all aspects of their privacy and compliance related functions, including policies and procedures, consumer-facing notices and consents, DPAs, and other artifacts.
- Conducts privacy due diligence reviews and advises on privacy risks and liabilities related to mergers and acquisitions and similar corporate transactions.
Kate also represents clients in responding to FTC, state AG and other agency proceedings related to privacy, breach notification, advertising and consumer protection, and enforcement proceedings by industry self regulatory bodies.