Site Search
Professionals 544 results
Capabilities 86 results
Practice Area
Winston takes a strategic approach to privacy and data security, integrating our extensive capabilities across practices to provide our clients with cutting-edge privacy and data security counseling, crisis management, security incident investigation and notification management, defense of data security class action litigation and regulatory inquiries, and international data protection. Our Global Privacy & Data Security Practice features a core team of privacy professionals and is bolstered by more than 40 attorneys from a variety of other disciplines firmwide. Our team combines compliance counselors, transactional lawyers, former government regulators and federal prosecutors, seasoned investigators, and experienced litigators. Few firms can rival our in-depth, sophisticated, and integrated experience in this area.
Practice Area
Privacy: Regulated Personal Information (RPI)
Winston’s Regulated Personal Information (RPI) Practice offers seamlessly integrated counseling and litigation services to companies looking for practical and solution-oriented assistance navigating the compliance, regulatory, and private class action enforcement risks presented by the emerging patchwork of complex (and often conflicting) privacy laws in the United States and beyond.
Practice Area
Financial Innovation & Regulation
Winston’s Financial Innovation & Regulation attorneys routinely counsel financial services, digital assets, and other clients on complex banking, crypto, FinTech, consumer financial, and securities matters. Many of our team members previously held positions as in-house counsel at global financial institutions and served in positions at government agencies, which gives us considerable experience in helping our clients obtain innovative, effective, and efficient solutions.
Experience 76 results
Experience
|July 17, 2025
Experience
|May 27, 2025
Experience
|April 11, 2025
Cuprina Holdings (Cayman) Limited Announces Closing of Initial Public Offering
Insights & News 5,036 results
Sponsorship
|September 18, 2025
Winston & Strawn Sponsors 21st Annual Boardroom Summit
Winston & Strawn is sponsoring the upcoming 21stAnnual Boardroom Summit & Board Committee Peer Exchange. This unique event will bring industry leading public company directors to discuss current trends, including shareholder activism, CEO succession strategies, and uses of AI in the boardroom.
Webinar
|August 21, 2025, 12:00 PM E.T.
Join our Financial Services Industry Group for a webinar focused on the key points in President Trump’s debanking executive order and recent debanking-related changes to the regulatory landscape. They will discuss expectations for debanking-related regulation and enforcement in the near future, as well as practical steps for financial institutions to manage associated risks and reduce the chances of becoming involved in debanking investigations. This webinar is part of a series covering the latest developments affecting our financial services clients.
Investigations, Enforcement, & Compliance Alerts
|August 18, 2025
|2 Min Read
PE Company on Hook for Portco’s False Claims Act Cybersecurity Violations
DOJ False Claims Act (FCA) settlements related to cybersecurity typically have focused on false representations by a government contractor of its compliance with cybersecurity requirements. A recently announced settlement shows that private equity owners are not immune from potential FCA liability.
Other Results 155 results
Law Glossary
What Is the General Data Protection Regulation (GDPR) Law?
The European Union General Data Protection Regulation (GDPR) law is an act, applied across the Union, which directs data privacy. The GDPR law is designed to protect the data privacy of all EU citizens and guide organizational approaches to handling data, as well as transferring it across borders. Under the GDPR, breach notification is mandatory within 72 hours if the breach is likely to “result in a risk for the rights and freedoms of individuals.” The GDPR applies to organizations within the EU as well as those outside of the EU if they offer goods or services to European citizens. It also applies to organizations that monitor the behavior of data subjects online.
Law Glossary
What Is Cross-Border Data Protection Law?
A cross-border data protection law involves the safe movement of electronic, personal data around the world. The European Union currently has a cross-border data protection law called the General Data Protection Regulation, which replaces the EU’s Data Protection Directive 95/46/EC.
Law Glossary
What Is the Environmental Protection Agency (EPA)?
The Environmental Protection Agency (EPA) is an executive agency of the United States under the direct authority of the President of the United States. The EPA’s mission is to protect people and the environment from significant health risks. The EPA is responsible for developing, maintaining, and enforcing environmental regulations and policies, including regulating the manufacturing, processing, distribution, and use of chemicals and other pollutants. EPA enforcement powers include fines, sanctions, and other measures.