Photo of Sarah C. Schenker

Sarah Schenker advises clients on privacy and security compliance, data breach response, and the technology transactions space. Her practice is focused on designing and managing enterprise-wide privacy programs in compliance with current and emerging US and international privacy laws, including the California Consumer Privacy Act (CCPA), California Privacy Rights Act (CPRA), and the General Data Protection Regulation (GDPR). Sarah has significant experience with corporate mergers and acquisitions, providing advice on privacy and security considerations.

Sarah also provides dedicated advice and specific deal counsel from start to finish during a tech transaction or implementation. She frequently negotiates complex technology transactions with unique issues, including privacy and security. Sarah has designed complete contract negotiation processes for in-house clients, advising on every element of the processes from intake to signature.

The California Consumer Privacy Act provided plaintiffs with a private right of action to pursue statutory damages following data security breaches that impact certain sensitive categories of information and are caused by a business’s failure to institute reasonable and appropriate security. Although the CCPA does not permit private suits with respect to alleged violations of

The California Consumer Privacy Act provided plaintiffs with a private right of action to pursue statutory damages following data security breaches that impact certain sensitive categories of information and are caused by a business’s failure to institute reasonable and appropriate security. Although the CCPA does not permit private suits with respect to alleged violations of

The California Consumer Privacy Act provided plaintiffs with a private right of action to pursue statutory damages following data security breaches that impact certain sensitive categories of personal information and are caused by a business’s failure to institute reasonable and appropriate security. Although the CCPA does not permit private suits with respect to alleged violations

The UK is nearing the end of its Brexit transition period (the Transition Period), which expires Dec. 31, 2020. Although the UK has not been a party to the European Economic Area (EEA) agreement since the passage of Brexit, it has been treated as an EEA member during the Transition Period. Because of this status,