Kate Black’s practice focuses on data privacy, information protection, and commercial transactions in consumer technology, digital health, life sciences, and genetics. Kate provides companies with comprehensive, practical strategies for meeting their regulatory obligations while building and maintaining public trust and advancing innovative and emerging models of health care research and delivery. She’s managed every aspect of global privacy programs, including supervising privacy assessments, providing product strategy and counseling, managing complex vendor and partner agreements, and overseeing security policy audits for leading health technology companies. She regularly advises on proposed regulatory and legislative changes that will impact the health technology environment and has been a featured speaker and frequent lecturer on data privacy and cybersecurity, data analytics, digital health, mobile medical applications, and privacy issues related to genetic and health research.
Prior to joining the firm, Kate served as 23andMe’s first Global Privacy Officer in Mountain View, CA and worked in the Office of Policy and Planning in the Office of the National Coordinator for Health IT in the U.S. Department of Health and Human Services in Washington, D.C.
- Compliance with HIPAA/HITECH, FTC Act, CMIA, COPPA, and CAN-SPAM
- Implementation of new regulations including the EU GDPR and CCPA, from advising on reasonable security controls to responding to data access requests
- Data use partnerships, vendor and service agreements, and clinical trial recruitment contracts
- Federal and state agency investigations
- Security breach response and notification
- Data use and privacy risks in product and mobile app development