Cyber (eCommerce)
-
Compliance with domestic and international privacy guidelines, such as the European Union (EU) General Data Protection Regulation 2016/679 (GDPR), Directive 95-46-EC, Personal Information Protection and Electronic Documents Act (PIPEDA), French Law Act No.2002-303, dated March 4, 2002, and accreditation procedure mandated by Decree No. 2006-6, dated January 4, 2006, California Consumer Privacy Act (CCPA), New York State Department of Financial Services (NYDFS) 23 NYCRR 500, W3C Web Content Accessibility Guidelines (WCAG).
-
Compliance for online merchant cookies policy, end-user license agreement (EULA), privacy policy.
-
Compliance with Europay, MasterCard, Visa (EMV) chip reader technology to avoid merchant liability (as opposed to previously, issuer liability) for point-of-sale (POS) swipe transactions using the magnetic strip of a stolen credit card.
-
Development and implementation of internet and social media corporate policies.
-
Compliance with Sarbanes-Oxley (SOx), leading all IT, security and data privacy SOX-related audits, established required remediation policies related to such audits, assisted in the preparation of external vendor SOC1 and SOC 2 reviews.
-
Compliance with the legal aspects of the Payment Card Industry Data Security Standard (PCI DSS), such as maintaining the Internal Security Assessor certification, conducting a regular PCI audit, assisting in the preparation of a yearly PCI Report of Compliance (ROC) and an Attestation of Compliance (AOC).
-
Spearheaded responses to privacy-related emergencies and conducted the information technology (IT) security and awareness course.
- Drafted and negotiated agreements for domestic and international ecommerce-related manufacturing, distribution, and agency.
-
Drafted and negotiated media-related agreements for internet and advertising, promotions, push-related activities and marketing, such as ad serving, proposals, programmatic issues, data management, measurement and analytics
-
Provided legal support for underwriting professional liability and cyber liability accounts.
Last updated 200615_1235