Joseph J. Lazzarotti is a principal in the Berkeley Heights, New Jersey, office of Jackson Lewis P.C. He founded and currently co-leads the firm's Privacy, Data and Cybersecurity practice group, edits the firm’s Privacy Blog, and is a Certified Information Privacy Professional (CIPP) with the International Association of Privacy Professionals. Trained as an employee benefits lawyer, focused on compliance, Joe also is a member of the firm’s Employee Benefits practice group.
In short, his practice focuses on the matrix of laws governing the privacy, security, and management of data, as well as the impact and regulation of social media. He also counsels companies on compliance, fiduciary, taxation, and administrative matters with respect to employee benefit plans.
Privacy and cybersecurity experience - Joe counsels multinational, national and regional companies in all industries on the broad array of laws, regulations, best practices, and preventive safeguards. The following are examples of areas of focus in his practice:
-
Advising health care providers, business associates, and group health plan sponsors concerning HIPAA/HITECH compliance, including risk assessments, policies and procedures, incident response plan development, vendor assessment and management programs, and training.
-
Coached hundreds of companies through the investigation, remediation, notification, and overall response to data breaches of all kinds – PHI, PII, payment card, etc.
-
Helping organizations address questions about the application, implementation, and overall compliance with European Union’s General Data Protection Regulation (GDPR) and, in particular, its implications in the U.S., together with preparing for the California Consumer Privacy Act.
-
Working with organizations to develop and implement video, audio, and data-driven monitoring and surveillance programs. For instance, in the transportation and related industries, Joe has worked with numerous clients on fleet management programs involving the use of telematics, dash-cams, event data recorders (EDR), and related technologies. He also has advised many clients in the use of biometrics including with regard to consent, data security, and retention issues under BIPA and other laws.
Benefits counseling experience - Joe's work in the benefits counseling area covers many areas of employee benefits law. Below are some examples of that work:
-
As part of the Firm's Health Care Reform Team, he advises employers and plan sponsors regarding the establishment, administration and operation of fully insured and self-funded health and welfare plans to comply with ERISA, IRC, ACA/PPACA, HIPAA, COBRA, ADA, GINA, and other related laws.
-
Guiding clients through the selection of plan service providers, along with negotiating service agreements with vendors to address plan compliance and operations, while leveraging data security experience to ensure plan data is safeguarded.
More Legal and Business Bylines From Joseph J. Lazzarotti
- Construction Industry: Data Security Considerations - (Posted On Friday, April 01, 2022)
- “Get a Life” – Another Dentist Responds to Patient’s Online Review, This Time Faces a $50,000 OCR Penalty - (Posted On Tuesday, March 29, 2022)
- FTC Settles Privacy and Security Allegations with Online Merchant for $500K and Agreement to Extensive Compliance Program - (Posted On Wednesday, March 23, 2022)
- Is Crypto Too Cryptic for Your 401(k) Plan? - (Posted On Monday, March 21, 2022)
- Cyber Incident, Ransom Payment Reporting to DHS Mandatory for Critical Infrastructure Entities - (Posted On Friday, March 18, 2022)
- Not-For-Profits, Charities Might Attract More Donors with Improved Website Content, Attention to Privacy - (Posted On Monday, March 14, 2022)
- Do Employers Need a CISO for ERISA Compliance? - (Posted On Friday, March 11, 2022)
- California State Senator Introduces a BIPA-like Law to Protect Biometric Information - (Posted On Wednesday, February 23, 2022)
- Massachusetts Privacy Bill Provides WISP Reminder, Safe Harbor for Punitive Damages - (Posted On Monday, February 14, 2022)
- SEC to Advisors and Funds – Adopt and Implement Cybersecurity Policies and Procedures - (Posted On Friday, February 11, 2022)
Joseph J. Lazarotti is a Privacy, e-Communication and Data Security Principal with Jackson Lewis who has been named a 2019 National Law Review Go-To Thought Leader for his writing on data privacy and cybersecurity concerns. His coverage includes the ongoing saga of the California Consumer Privacy Act (CCPA), along with major court decisions affecting privacy and legislation nationwide and globally–corporate and otherwise–impacting the landscape of employer privacy. His writing is exhaustive and thorough, and National Law Review readers can count themselves well informed in cybersecurity by following Mr. Lazarotti’s thought leadership.