Skip to main content

Gretchen A. Ramos is Global Co-Chair of the Data, Privacy & Cybersecurity Practice. Gretchen is a creative problem-solver that various large tech clients rely on to handle their most challenging data protection issues. Clients appreciate not only her legal skills, but also her direct, no-nonsense approach in providing advice. She works closely with her clients to manage data and leverage its value in ways to meet compliance obligations, as well as deliver value to the business and instill consumer trust.

Gretchen has wide-ranging experience counseling organizations in various industries, including digital health, financial services/cryptocurrency, ecommerce, technology (SaaS), consumer products and academic institutions. She provides clients with practical business advice on compliance with state and federal U.S. laws, CCPA, CPRA, GDPR, ePrviacy Directive, and other global privacy laws in relation to their websites and internal privacy and security procedures, product and app development, and advertising practices. Gretchen also regularly drafts and negotiates contracts concerning data-related issues, assists clients in assessing privacy risks in corporate transactions, and provides guidance on and conducts privacy and security assessments. She has also managed hundreds of data breaches, and regularly assists clients prepare for, immediately respond, and determine their various notification requirements.

Gretchen defends companies facing FTC and other regulatory investigations, and individual and class action claims involving privacy, information security, and consumer protection. She has litigated, mediated, and arbitrated commercial disputes, including class actions, at state and federal courts nationwide, and has tried numerous cases to verdict. Her wide-ranging litigation background allows her to advise clients on the litigation risks they face in determining how to handle data protection issues.

Concentrations

  • EU GDPR, ePrivacy compliance
  • Cross-border transfer mechanisms (Standard Contractual Clauses, Binding Corporate Rules, APEC Cross-Border Privacy Rules ), and data processing and sharing agreements
  • HIPAA, CMIA, COPPA,TCPA CAN-SPAM
  • Behavioral advertising, automated processing and profiling
  • FTC CIDs, State Attorney General investigations
  • Security breach response and notification
  • Privacy and security gap assessments
  • Data protection due diligence in relation to mergers and acquisitions
  • DPIAs and addressing complicated privacy issues relating to product development

Kompetencje

Doświadczenie

  • Certified Information Privacy Professional (CIPP/US, CIPP/EU, CIPM)
  • Works with dozens of ecommerce companies to ensure website documentation, registration flows and adtech issues are compliant with applicable laws.
  • Assist various digital health startups develop data privacy and security programs, advertising practices and contacting structure that is compliant with applicable laws and their data needs.
  • Counsels leading cryptocurrency exchange platform and various financial institutions in relation to various data protection issues.
  • Assists several genomic data companies with developing global privacy programs by advising on and leading compliance efforts relating to GDPR, ePrivacy Directive, HIPAA, CMIA, and various other applicable regulations in the United States and abroad as their businesses expand.
  • Advises various multinational corporations on international data transfer mechanisms, including Supplementary Measures for transfer of EEA personal data, Binding Corporate Rules, and APEC’s Cross Border Privacy Rules system.
  • Assists various gaming companies with compliance issues relating to COPPA, GDPR, and CCPA.
  • Provides guidance to companies on cyber insurance issues and handling coverage disputes that arise with insurers.

Sukcesy i wyróżnienia

  • Listed, Euromoney's Expert Guides: "Women in Business Law," 2021
  • Shortlisted, Euromoney, "Women in Business Awards - Best in Cybersecurity," 2020
  • Named, Daily Journal, "Top Women Lawyers," 2019 
  • Named, Daily Journal, "Top Cyber/Artificial Intelligence Lawyers in California," 2019-2020

Kwalifikacje

Wykształcenie
  • J.D., Northeastern University
  • B.A., Hamilton College
Staże
  • U.S. District Court for the District of Nevada, 1997-1999
Posiadane uprawnienia
  • California
  • Massachusetts