Cynthia is a highly regarded authority in the privacy and security field and a Certified Information Privacy Professional (CIPP). She handles the full range of data security issues for companies of all sizes, from start-ups to major corporations. Cynthia is masterful at conducting privacy audits; crafting procedures to protect data; advising clients on state, federal, and international laws and regulations on information use and data security; helping organizations respond to breaches; and planning data transfers associated with corporate transactions. She is an in-demand media commentator and speaker on privacy and cybersecurity issues.
Cynthia is Chair of the firm's Privacy & Cybersecurity Practice, a Certified Information Privacy Professional-US (CIPP-US), and a Certified Information Privacy Professional-Europe (CIPP-E).
She represents companies in information, communications, and technology, including e-commerce and other electronic transactions. She counsels clients through all stages of the “corporate lifecycle,” from start-ups through mid- and later-stage financings to IPO, and has broad experience in technology and business law, including online contracting issues, licensing, domain name issues, software development, and complex outsourcing transactions.
Cynthia has extensive experience in privacy, data security, and information management matters, including state, federal, and international laws and regulations on the use and transfer of information, behavioral advertising, data security breach compliance and incident response, data breach incident response planning, as well as data transfers in the context of mergers and acquisitions and technology transactions.
She conducts privacy audits and risk assessments to determine data and transaction flow and to assess privacy practices, and assists with drafting and implementation of privacy policies and information security policies and procedures and monitoring of privacy “best practices” across all levels of the enterprise.
More Legal and Business Bylines From Cynthia J. Larose
- Protecting Health Information Post Roe – Part 2: Steps for Health Care Providers - (Posted On Thursday, July 21, 2022)
- Protecting Health Information Post Roe Part 1: Steps for Women - (Posted On Tuesday, July 05, 2022)
- Understanding the American Data Privacy and Protection Act - (Posted On Wednesday, June 08, 2022)
- Massachusetts Information Security and Privacy Act Sent to “Study” - (Posted On Thursday, June 02, 2022)
- FTC to Twitter: Do What You Say (Or Pay $150M If You Don’t) - (Posted On Wednesday, June 01, 2022)
- Connecticut is on the Privacy Move - (Posted On Wednesday, May 04, 2022)
- Health Care Organizations Warned of Aggressive Ransomware Threat - (Posted On Thursday, April 28, 2022)
- SEC Provides New Far-Ranging Cybersecurity Guidance - (Posted On Friday, April 08, 2022)
- SEC Proposes New Cybersecurity Rules for Public Companies - (Posted On Monday, March 21, 2022)
- Utah Consumer Privacy Act – Mintz’s Hot Take - (Posted On Thursday, March 17, 2022)
Cynthia J. Larose and her thought leadership on all things Privacy has been selected for a National Law Review Go-To Thought Leadership Award. Ms. Larose’s expertise in this emerging area of law, especially as it has developed over the years, has provided readers with a complete body of knowledge for the developing regulatory and litigation issues and has helped NLR readers navigate concerns that are not always obvious. Additionally, Ms. Larose creates articles that are reader-focused and approachable, well-suited for the web and that translate complex legal issues into easy to understand reading. You can subscribe to Cybersecurity viewpoints from Mintz here.