Gretchen A. Ramos

Gretchen A. Ramos

Shareholder

Gretchen A. Ramos’s practice focuses on privacy, cybersecurity, and information management. A creative problem-solver with a long track record of success in commercial disputes, she never loses sight of the simple fact that she works in a service industry. Clients appreciate not only her legal skills, but also her direct, no-nonsense approach to client service, including her bullet-pointed emails, snapshot executive summaries, and creativity in finding ways to streamline communications for in-house counsel with dozens of other projects—and little time—on their hands.

Gretchen’s clients come from diverse industries, including technology (SaaS), health care and life sciences, consumer products, manufacturing, academic institutions, and non-profits. She provides clients with practical business advice on compliance with state and federal U.S. laws, GDPR, APEC, and other global privacy laws in relation to their external and internal privacy and security procedures, product and app development, and advertising practices. Gretchen also regularly drafts and negotiates contracts concerning data-related vendors, assists clients in assessing privacy risks in corporate transactions, and provides guidance on and conducts privacy and security assessments. She has managed dozens of data breaches, and helps client prepare for and immediately respond to security incidents and breaches.

Gretchen works closely with her clients to manage data and leverage its value in ways to meet compliance obligations as well as deliver value to the business and instill consumer trust. Her experience working with various industries allows her to quickly assess options and risks, and guide clients, including numerous genomic data companies, in resolving complicated privacy issues.

Gretchen has litigated, mediated, and arbitrated commercial disputes, including class actions, at state and federal courts nationwide, and has tried numerous cases to verdict. Her wide-ranging litigation background allows her to advise clients on the litigation risks they face in determining how to handle data privacy issues. In addition to providing compliance advice, Gretchen defends companies facing FTC and other regulatory investigations, and individual and class action claims involving privacy, information security, and consumer protection.

Concentrations

  • EU GDPR compliance
  • Cross-border transfer mechanisms (Standard Contractual Clauses, Privacy Shield, Binding Corporate Rules), and data processing agreements
  • FTC CIDs, State Attorney General investigations
  • Behavioral advertising, automated processing and profiling
  • Security breach response and notification
  • DPIAs and addressing complicated privacy issues relating to product development
  • COPPA, HIPAA, TCPA PCI-DSS, CAN-SPAM
  • Privacy and security gap assessments
Read More +

Capabilities

Experience

  • Certified Information Privacy Professional (CIPP/US, CIPP/EU, CIPM)
  • Counsels dozens of technology companies on how to develop and implement their privacy and security program and plan for GDPR compliance. °
  • Assists genomic data companies with developing global privacy programs by advising on and leading compliance efforts relating to GDPR, Privacy Shield certification, HIPPA, HITRUST, PCI-DSS, CAN-SPAM, and various other applicable regulations in the United States and abroad as their businesses expand. °
  • Guides companies in developing systems that enable their organizations to respond to data subjects’ requests for erasure, correction, and portability of personal data. °
  • Advised various multinational corporations on international data transfer mechanisms, including Privacy Shield, Binding Corporate Rules (BCRs), and APEC’s Cross Border Privacy Rules (CBPR) system. °
  • Coordinates data mapping activities and data protection impact assessments for various organizations. °
  • Developed a global privacy program for a large auto parts company in Singapore with operations in more than a dozen Asian countries. °
  • Informs companies on new and evolving data protection and privacy laws in the countries where they operate or plan to operate, and counsels them on the application of these laws to new products, services, and applications. °
  • Worked with security teams to ensure compliance with information security and privacy policies. °
  • Provides guidance to companies on cyber insurance issues and handling coverage disputes that arise with insurers. °

°Some of the above representations were handled by Ms. Ramos prior to her joining Greenberg Traurig, LLP.

Credentials

Education
  • J.D., Northeastern University
  • B.A., Hamilton College
Clerkships
  • U.S. District Court for the District of Nevada, 1997-1999
Admissions
  • California