Carol Umhoefer’s practice encompasses information technology, e-commerce and commercial matters as well as related regulatory compliance issues, with a particular focus on all aspects of data and IT regulations, including data protection, privacy, cyber security, document retention and encryption. She advises clients across a broad range of sectors, including financial services, professional services, online and traditional retail, pharmaceutical and medical devices, and technology providers. 

Carol has extensive experience advising on multi-national privacy assessments and compliance programs, with a particular focus on GDPR requirements, as well as conducting privacy impact assessments on a variety of technology solutions. She also advises on global and regional whistleblowing hotline and e-discovery projects. 

Carol regularly assists clients with regulatory compliance and investigations, in particular with respect to consumer protection issues, pharmaceuticals and medical devices.