Deepali Doddi concentrates her practice on data privacy and cybersecurity matters. She regularly advises clients across a broad spectrum of industries on issues arising under domestic data security and privacy laws and regulations, including COPPA, CAN-SPAM, TCPA, GLBA, the FTC Act, CalOPPA, DFARS cybersecurity requirements and breach notification laws. Additionally, she helps clients navigate international data privacy matters, such as certifying to the EU-US Privacy Shield Framework, selecting appropriate cross-border data transfer mechanisms and complying with the EU General Data Protection Regulation (GDPR).

Show More

• Advised clients in a range of industries on GDPR compliance issues, including responding to data subject requests, assessing lawful bases for processing personal data, updating privacy policies, and implementing EU Model Clauses to validate cross-border data transfers
• Advised a private equity fund in assessing the privacy and data security risks in a multi-million dollar acquisition of a health care revenue cycle management company
• Assisted multiple clients with responding to security incidents and data breaches, including analyzing reporting obligations under HIPAA and state breach notification laws and preparing incident notification letters

• The Best Lawyers in America, “Ones to Watch” in Technology Law, 2023

Education
University of Notre Dame Law School, JD, 2010
Northwestern University, BA, 2007

Admissions
Illinois