Christopher G Cwalina

Christopher G. Cwalina is a partner in Holland & Knight's Washington, D.C., office and co-chair of the Cybersecurity and Privacy Team. He concentrates his national practice primarily on privacy and data security compliance; litigation; defending companies in investigations initiated by state attorneys general, the FTC and other government agencies; responding to security breach incidents; establishing international compliance frameworks for companies; and developing and writing company policies and procedures. Mr. Cwalina has managed some of the largest data breaches in the country. He regularly serves as a “breach coach” – leading companies from a variety of industries through crisis management and the intricacies of managing the competing interests of affected customers, consumers, regulators, Congress, consumer groups, media, law enforcement, payment processors and other third parties involved when large breaches occur.
Mr. Cwalina has extensive experience in responding to data breaches, hacking, network attacks and security incidents. He also has years of privacy class action litigation experience and provides data privacy compliance advice for a variety of companies, including communications companies, app developers, app platforms, ad networks, retailers, life sciences and healthcare companies, financial institutions, technology vendors, and advertising and marketing companies of all shapes and sizes. He advises corporations on regulatory issues and legislative affairs pertaining to data privacy and information security issues with a focus on technology, mobile and online practices, and also provides counsel on compliance with COPPA, GLBA, HIPAA, FCRA, ECPA, CPNI Rules, TCPA, The Patriot Act, state privacy laws and international privacy laws, regulations and directives, including the EU Data Protection Act.
Mr. Cwalina began his career in privacy as vice president and assistant general counsel at ChoicePoint Inc., where he ran the company's Privacy, Compliance, Ethics and Credentialing Department and led the company's response to the first publicly reported data breach, at a time when only one state notification law had been enacted. While at ChoicePoint, he helped the company respond to an FTC investigation and complaint, an SEC investigation, an investigation and complaint brought by a coalition of state attorneys general offices, and managed a number of class action complaints.
Mr. Cwalina regularly speaks and writes about topics pertaining to privacy and information security. He is a regular contributor to Holland & Knight's Privacy Blog and tweets from @HK_Privacy.