Deepali Doddi concentrates her practice on data privacy and cybersecurity matters. She regularly advises clients across a broad spectrum of industries on issues arising under domestic data security and privacy laws and regulations, including COPPA, CAN-SPAM, TCPA, GLBA, the FTC Act, CalOPPA, DFARS cybersecurity requirements and breach notification laws. Additionally, she helps clients navigate international data privacy matters, such as certifying to the EU-US Privacy Shield Framework, selecting appropriate cross-border data transfer mechanisms and complying with the EU General Data Protection Regulation (GDPR).
Leveraging her experience as a former regulator with the US Department of Health and Human Services, Office for Civil Rights (OCR), Deepali also counsels clients on all facets of HIPAA compliance, including audit preparation, policies and procedures, business associate agreements, risk analysis and management and breach response.
Deepali is both a Certified Information Privacy Professional/United States (CIPP/US) and a Certified Information Privacy Professional/Europe (CIPP/E) through the International Association of Privacy Professionals (IAPP).