Danielle Dobrusin

Danielle is a member of the firm’s global privacy and cybersecurity practice and advises clients on compliance with US federal and state and international privacy and data security laws. Danielle regularly works with clients in developing privacy compliance programs designed to satisfy applicable obligations under all US federal and state privacy and information management requirements, including comprehensive state consumer privacy laws, such as the California Consumer Privacy Act of 2018 (CCPA), and other emerging privacy legislation. She works with clients to revise online privacy notices, implement processes to respond to consumer rights requests, and amend vendor contract templates to comply with new regulations. In addition, Danielle has a particular focus counseling on compliance with the federal Children’s Online Privacy Protection Act (COPPA) and state children and teen privacy and social media laws. Danielle also assists clients with privacy-related issues in the artificial intelligence (AI) and ad tech space.

• Advises several clients on compliance with US federal and state and international privacy laws governing children, teens, and social media use.
• Advises dozens of clients on the requirements of and compliance with the state consumer privacy laws.
• Assists clients with using third-party technology platforms (e.g., OneTrust, TrustArc) to comply with consumer rights requests and implement opt-out mechanisms.
• Advises multiple well-known multinational retailers on several privacy matters, including conducting enterprise-wide privacy risk assessments, assessing their programs to manage data and technology risks and providing state consumer privacy law compliance advice.
• Advises a multinational financial institution on myriad global privacy and data security issues, including compliance with US privacy laws and the EU General Data Protection Regulation (GDPR), and advises the company on its privacy policies, vendor contract negotiations and cybersecurity issues.
• Assists clients with analyzing US state and federal and non-US breach laws, providing guidance on forensic investigations, and preparation of notifications to individuals and regulatory authorities.
• Assists clients with proactive cyber incident readiness activities, such as running tabletop exercises with data breach hypotheticals, preparing breach notification toolkits, and reviewing incident response plans.
• Prepares internal and consumer-facing privacy and information security policies and procedures.

• Recognized as a Leading Associate for Cyber Law (including Data Privacy and Data Protection), Legal 500 United States, 2021-2025