September 28, 2022

Volume XII, Number 271

Lorraine Maisnier-Boché

Lorraine Maisnier-Boché focuses her practice on data protection and information technology (IT) law.

She has deep experience in the digital and IT sector as well as the health care industry, frequently advising health care professionals, hospitals, governmental entities, insurance companies, medical device manufacturers, software editors and hosting service providers on complex IT projects.

Lorraine has a strong background in data protection, and regularly advises on GDPR compliance programs, international data transfers, marketing and profiling actions, sensitive data (e.g., personal health data), audits and security issues.


Prior to joining McDermott, Lorraine was an IT/DP lawyer in an international law firm for several years. She then served as Senior Legal Counsel at the French eHealth Agency (ASIP Santé), where she advised on the development and implementation of national health information systems and on drafting the related IT agreements and licenses. She assisted the eHealth Agency’s Data Protection Officer with maintaining records on data processing activities and ensuring that the Agency implements a GDPR compliance program. In this context, she also carried out legal review of applications for health care data hosting service providers and for obtaining access to the National Healthcare Professionals Directory, as well as implemented labels, certifications and guidelines regarding digital switchover, interoperability and cybersecurity in the health sector.

She is also a lecturer in IT and Data Protection law at the Paris University and author of several papers on digital, data protection and e-health law. She is a regular speaker in eHealth and data protection conferences and workshops. She is a Certified Information Privacy Professional/Europe (CIPP/E).

Articles in the National Law Review database by Lorraine Maisnier-Boché