Key Takeaways | Coming Soon to a State Near You: Evolving US Privacy Requirements & Practical Tips - McDermott Will & Emery

Key Takeaways | Coming Soon to a State Near You: Evolving US Privacy Requirements & Practical Tips


There are now over a dozen newly enacted state privacy laws with varying requirements and exemptions. Many of these new rules overlap with existing state and federal obligations that are being enforced by different regulators with contrasting priorities.

In this webinar co-hosted with the Association of Corporate Counsel (ACC) Northeast Chapter, McDermott Partners Elliot Golding and Amy Pimentel were joined by Maureen Hernberg and John Vaughan to provide practical tips to build or supplement a compliance program to address the newly enacted state privacy laws and enforcement risks.

Top takeaways included:

  1. Prioritize compliance: Enforcement is increasing, especially with respect to “low-hanging fruit” that is externally visible (like privacy notice issues and the use of cookies and tracking technologies), privacy rights and sensitive data handling. Companies should reexamine their “external” compliance efforts and take steps to shore up other priority issues, such as conducting a cookie audit, practicing responding to a privacy request and engaging in a data mapping exercise.
  2. Do your homework. Scoping and harmonization across state privacy laws and other federal and industry-specific frameworks are key to creating workable solutions for your organization. Taking time to understand how all the laws applicable to your organization overlap and diverge will make building and updating compliance programs to cover additional laws more manageable. It can be helpful to consult individuals who have built these harmonized programs to get the benefit of benchmarking, practical tips and implementation insights.
  3. Educate your stakeholders. Successful programs require time (often more than expected) and resources. Educating key stakeholders is critical to facilitating efficient resource allocation and smart, risk-based decision-making.


Maureen Hernberg, Privacy Compliance, McKinsey

John Vaughan, Lead Product Counsel, Verily Life Sciences


Presented in Partnership with the ACC’s Northeast Chapter.


Dig Deeper

Cambridge, United Kingdom / Speaking Engagements / July 1-3, 2024

Privacy Laws & Business | 37th International Conference

Washington, DC / / May 8-10, 2024

2024 Privacy + Security Spring Academy

Washington, DC / Speaking Engagements / April 3-4, 2024

IAPP Global Privacy Summit 2024

Webinar / McDermott Webinar / March 19,2024

Healthcare Privacy Risks and Enforcement

Brussels, Belgium / Speaking Engagements / March 12-13, 2024

IIC European Telecommunications & Media Forum 2024

Get In Touch