Add a bookmark to get started

Kate Lucente

Kate Lucente


Kate Lucente is an expert in privacy and cyber security law and has extensive experience counselling clients in the technology, automotive, AdTech, retail and financial industries. Kate’s practice focuses on privacy, cyber security and data governance.  

With more than 15 years of experience in privacy and cybersecurity law, Kate has comprehensive knowledge and experience in this dynamic and increasingly complex area of law. Drawing on her considerable experience, Kate focuses on providing strategic advice and guidance that is practical, actionable and tailored to a company’s size, business model and risk profile.   

Kate advises clients on a broad range of cyber security, privacy compliance and data governance matters, including:

  • Global compliance advice on a broad range of issues, including advertising and marketing, AI, modeling and machine learning, biometrics, automated decision-making, cross-border data transfers, vendor management, electronic monitoring, cybersecurity and incident response.
  • Data strategy and risk management, including managing and mitigating privacy litigation risks (e.g., CIPA and wiretapping, VPPA, TCPA).
  • Compliance with US state and federal privacy and data protection laws, and industry self-regulatory programs.
  • Monitoring and responding to global privacy developments and legislative changes.
  • Policy-related advocacy and guidance to clients regarding proposed privacy and security laws and legislative trends.
  • All facets of incident response, including IR plan development and testing, responding to incidents and post-incident liability and other activities. 
  • Risk analysis, strategic advice, and implementation work related to global expansions and post-merger integrations.

In her practice, Kate regularly:

  • Partners with clients to design and operationalize sustainable global privacy compliance and data governance programs.
  • Conducts risk and compliance assessments.
  • Helps clients manage incident response matters, including engaging vendors and experts, overseeing forensic investigations, notification reporting, Board awareness, and manage post-incident liability.
  • Provides product counseling and conducts product reviews, including advising on privacy impact assessments, strategy and risk mitigation, and design and implementation of privacy controls and supporting UX/UI.
  • Helps clients develop and maintain all aspects of their privacy and compliance related functions, including policies and procedures, consumer-facing notices and consents, DPAs, and other artifacts.
  • Conducts privacy due diligence reviews and advises on privacy risks and liabilities related to mergers and acquisitions and similar corporate transactions.

Kate also represents clients in responding to FTC, state AG and other agency proceedings related to privacy, breach notification, advertising and consumer protection, and enforcement proceedings by industry self regulatory bodies.

Bar admissionsFloridaWashington
CourtsUnited States Court of Appeals for the Eleventh CircuitUnited States District Court for the Middle District of FloridaUnited States District Court for the Southern District of Florida
  • J.D., University of Florida College of Law
  • M.A., Privacy and Mass Communications Law, University of Florida
  • B.S., Communications, University of North Florida


The Legal 500 United States

  • Recommended, Media, Technology, and Telecoms Cyber Law (including Data Privacy and Data Protection) (2021)


  • Co-editor, "DLA Piper Data Protection Laws of the World Handbook," 2011-present
  • "Perspectives: One law firm's take on the new draft CCPA regulations," IAPP, 11 Oct 2019
  • "The government in your cloud," 24 July 2019
  • "The Internet of Things: EU vs US guidance," 9 Jun 2015
  • "Data privacy law: the top global developments in 2018 and what 2019 may bring," 28 Jan 2019
  • "New York State releases cybersecurity, report on insurance industry, will assess New York-regulated Insurers' cybersecurity," 11 Feb 2015
  • Co-author, "Recent Developments Affecting Corporate Counsel," Tort Trial and Insurance Practice Law Journal, Fall 2013 (48:1)


  • Speaker, Workshop: Privacy and Information Security: Getting your House in Order for 2024 and Beyond, National Association of Women’s Lawyers (NAWL), General Counsel Institute, November 9, 2023
  • Speaker, California Consumer Privacy Act and AdTech, September 17, 2019 (Webinar)
  • Speaker, The California Consumer Privacy Act and your cloud architecture, May 8, 2019 (Webinar)
  • Speaker, IAPP Webinar: How to Modify Your GDPR SAR Practices for the CCPA, March 21, 2019 (Webinar)
  • Speaker, Operationalizing CCPA, Jan 16, 2019 (Webinar)
  • Speaker, Bloomberg BNA webinar: Data Regulations Have Changed: Are You Ready? November 13, 2018 (Webinar)
  • Speaker, California Consumer Privacy Act and GDPR – how do they differ? November 18, 2018 (Webinar)
  • Speaker, Privacy Laws are Changing – are you ready? PaymentsEd Forum (Boston), August 6, 2018
  • Speaker, Biometrics Privacy Laws and Trends, IAPP KnowlegeNet, Scottsdale, AZ, March 28, 2017
  • Speaker, DLA Piper’s Privacy Talks Series: Update on Privacy Shield, September 22, 2016 (Webinar)
  • Speaker, Cross-Border Issues – Proactive and Reactive Tips, eDiscovery Forum, October 6, 2016
  • Speaker, From Safe Harbor to Privacy Shield – What Now? (Webinar)
  • Speaker, GDPR: Are You Ready?, Seattle, San Francisco, Palo Alto, June 15-17, 2016
  • Speaker, Key Data Privacy and Security Issues for Companies of All Sizes, May 2016
  • Speaker, Privacy Talks Series - Update on Privacy Shield, September 2016 (Webinar)
  • Speaker, From Safe Harbor to Privacy Shield: what now? July 2016 (Webinar)

Media Mentions

  • "Industry Plays Whack-a-Mole to Fight Slew of State Privacy Bills," Advertising Age, February 16, 2017
  • "How data privacy practices could make or break the sale of your company," GeekWire, December 21, 2016
  • "Privacy Laws: How the US, EU and others protect IoT data (or don't)," ZDNet, March 7, 2016
  • "IoT Security Begins with Risk Assessment," eSecurity Planet,” May 9, 2016

Prior Experience

Prior to her legal career, Kate worked for several years in the financial services and communications industries.

Memberships And Affiliations

  • International Association of Privacy Professionals
  • Women in Privacy
  • American Bar Association
  • Chief