Brian Lam is a member of Mintz’s Privacy & Security Practice and Technology Transactions Practice. Brian focuses his practice on providing practical advice that enables companies to pursue their business in a competitive environment while reducing risk associated with the collection, use, storage, transfer, and potential loss of data. He frequently negotiates complex data-centric information technology agreements, and designs policies and corresponding controls for the implementation of best practices, compliance with state and federal law, and international considerations. He often reviews the data flows within an organization from both a senior leadership perspective as well as at the implementation level, and provides actionable recommendations to engineer such data flows in order to reduce compliance risk and engender consumer trust.
Brian frequently provides advice to clients that wish to buy or sell corporate entities whose business models leverage data and information technology, including data aggregation, analytics, and open source software.
Brian has been designated a Fellow of Information Privacy (FIP) by the International Association of Privacy Professionals, and is also a Certified Information Privacy Professional (CIPP) (US Specialization), Certified Information Privacy Manager (CIPM), and a Certified Information Systems Security Professional (CISSP). He has a B.S. in Computer Science and an M.S. in Telecommunications from the University of Colorado at Boulder, College of Engineering and Applied Science.
He is also a member of Governor Brown’s California Cybersecurity Task Force, a statewide partnership comprised of key stakeholders, subject matter experts, and cybersecurity professionals from California's public and private sectors, academia, and law enforcement that serves as an advisory body to the State of California Senior Administration Officials in matters related to cybersecurity.
Before becoming an attorney, Brian worked at one of the country’s leading information security firms, where he focused on analyzing the existing network security controls of financial institutions, online merchants, and government organizations. He also conducted penetration tests, provided guidance on PCI-DSS compliance, and assisted federal law enforcement with digital forensics post security incident. Subsequently, he joined one of the world’s largest management consulting and information services firms, where he led efforts to design and implement large-scale information security initiatives for Fortune 500 companies, including one of the world’s largest banking and consumer credit companies.
More Legal and Business Bylines From Brian H. Lam
- Are You Talking To A Bot? – New CA Law Makes Disclosure the Best Option - (Posted On Monday, July 01, 2019)
- What Startups Should Know About the California Consumer Privacy Act - (Posted On Wednesday, May 01, 2019)
- California Governor Floats “Data Dividend” Proposal - (Posted On Monday, February 18, 2019)
- California AG’s Office Gets Public Input on CCPA - (Posted On Tuesday, January 29, 2019)
- Oath (f/k/a AOL) Agrees to Pay Record Settlement over COPPA Violations - (Posted On Wednesday, December 12, 2018)
- Commitment to Protection of User Data Essential To Consumer Adoption of IoT Devices – Three Things to Know about the New Hampshire Amazon Echo Case - (Posted On Thursday, December 06, 2018)
- “Hey Alexa – Tell Me About Your Security Measures” - (Posted On Thursday, October 04, 2018)
- PRIVACY ALERT: California Leads the Privacy Parade Again with Groundbreaking Privacy Legislation - (Posted On Friday, June 29, 2018)
- Colorado Passes Far Reaching New Privacy and Cybersecurity Law - (Posted On Wednesday, June 06, 2018)
- Facebook Stops Funding Opposition to California Privacy Focused Ballot Act - (Posted On Tuesday, April 17, 2018)
Brian H. Lam is a member of Mintz’s Privacy & Security Practice and Technology Transactions Practice, and he was selected as a 2019 National Law Review Go-To Thought Leader for his analysis of cybersecurity regulation and laws, with a specific emphasis on his work related to the California Consumer Privacy Act (CCPA), the important and far-reaching implications of this new privacy and consumer protection legislation, and its road to implementation.