Kate Lucente’s practice focuses on privacy, data security, and e-commerce laws, rules and regulations, as well as related industry best practice and self-regulatory initiatives.
As part of her practice, Kate counsels clients on a broad range of data and risk management issues, including privacy and data protection, cyber security, incident response and preparedness, cloud and other business services agreements, privacy litigation risks, cross-border data flows, analytics, advertising and marketing regulations, biometrics privacy, healthcare and financial privacy, children's and student privacy, communications privacy, employee data and electronic monitoring. Kate has extensive experience counselling clients in the technology, communications, media, advertising, health services and financial industries.
- Partners with clients in designing and building privacy and data governance programs
- Provide compliance advice related to collection, storage and use of voiceprints, facial recognition, gait and other biometrics
- Manages global compliance projects covering a range of issues including data privacy and protection, data transfers, e-commerce, consumer protection, marketing and advertising, employee monitoring, records management, whistle blower programs, and cyber-law issues
- Advises clients on U.S. privacy laws, including privacy, telemarketing, security and data breach laws, CAN-SPAM, TCPA, COPPA, and GLBA
- Conducts compliance assessments and advises clients on implementation of global privacy compliance programs
- Advises on all facets of incident response, including notification and post-incident liability. As part of this, Kate has counseled clients regarding more than 100 security incidents, and has managed client response efforts for numerous security incidents and data breaches
- Conducts privacy due diligence reviews related to acquisitions, asset sales and related corporate transactions, and has represented clients in FTC enforcement proceedings
- Advises clients on the implementation of intra-group data transfer agreements to achieve compliance with laws in multiple jurisdictions around the world, and assists clients seeking Privacy Shield certification
- Negotiates privacy and security terms and agreements
- Drafts and advises on the implementation of privacy policies, and internal privacy and security policies and procedures
Kate also represents clients in responding to FTC and other agency proceedings related to privacy and consumer protection issues, and provides policy-related advocacy and guidance to clients regarding proposed privacy and security laws.
In addition to her J.D., Ms. Lucente also holds a M.A. in Mass Communications Law from the University of Florida, where she concentrated her graduate work and thesis on information privacy laws.
Ms. Lucente is also the co-editor (2011 - present) of the DLA Piper Laws of the World Handbook, which provides an overview of data protection laws in more than 90 jurisdictions worldwide.
- J.D., University of Florida College of Law
- M.A., Privacy and Mass Communications Law, University of Florida
- B.S., Communications, University of North Florida
- The Legal 500 United States
2021 - Recommended, Media, Technology, and Telecoms Cyber Law (including Data Privacy and Data Protection)
- Co-Editor, "DLA Piper Data Protection Laws of the World Handbook," 2011-present
- "Perspectives: One law firm's take on the new draft CCPA regulations," IAPP, 11 Oct 2019
- The government in your cloud, 24 July 2019
- "The Internet of Things: EU vs US guidance," 9 Jun 2015
- "Data privacy law: the top global developments in 2018 and what 2019 may bring," 28 Jan 2019
- "New York State releases cybersecurity, report on insurance industry, will assess New York-regulated Insurers' cybersecurity," 11 Feb 2015
- Co-author, "Recent Developments Affecting Corporate Counsel," Tort Trial and Insurance Practice Law Journal, Fall 2013 (48:1)
- Speaker, California Consumer Privacy Act and AdTech, September 17, 2019 (Webinar)
- Speaker, The California Consumer Privacy Act and your cloud architecture, May 8, 2019 (Webinar)
- Speaker, IAPP Webinar: How to Modify Your GDPR SAR Practices for the CCPA, March 21, 2019 (Webinar)
- Speaker, Operationalizing CCPA, Jan 16, 2019 (Webinar)
- Speaker, Bloomberg BNA webinar: Data Regulations Have Changed: Are You Ready?, Nov.
- Speaker, California Consumer Privacy Act and GDPR – how do they differ?, November 18, 2018 (Webinar)
- Speaker, Privacy Laws are Changing – are you ready?, PaymentsEd Forum (Boston), 6 Aug 2018
- Speaker, Biometrics Privacy Laws and Trends, IAPP KnowlegeNet, Scottsdale, AZ, March 28, 2017
- Speaker, DLA Piper’s Privacy Talks Series: Update on Privacy Shield, Sept. 22, 2016 (Webinar)
- Speaker, Cross-Border Issues – Proactive and Reactive Tips, eDiscovery Forum, Oct. 6, 2016
- Speaker, From Safe Harbor to Privacy Shield – What Now? Webinar
- Speaker, GDPR: Are You Ready?, Seattle, San Francisco, Palo Alto, June 15-17, 2016
- Speaker, Key Data Privacy and Security Issues for Companies of All Sizes, May 2016
- Speaker, Privacy Talks Series - Update on Privacy Shield, Webinar, Sep 2016
- Speaker, From Safe Harbor to Privacy Shield: what now? Webinar; July 2016
- "Industry Plays Whack-a-Mole to Fight Slew of State Privacy Bills," Advertising Age, February 16, 2017
- “How data privacy practices could make or break the sale of your company,” GeekWire, Dec. 21, 2016
- “Privacy Laws: How the US, EU and others protect IoT data (or don't),” ZDNet, March 7, 2016
- “IoT Security Begins with Risk Assessment,” eSecurity Planet,” May 9, 2016
Prior to her legal career, Kate worked for several years in the financial services and communications industries.
Memberships And Affiliations
- International Association of Privacy Professionals
- Women in Privacy
- American Bar Association
My latest insights
California’s Age-Appropriate Design Code Act – and the looming state patchwork of online...
8 May 2023 .12 minute read