Paul is the co-practice leader of the Information Technology, Privacy & Data Security Group and member of the IP, Information & Innovation Group. He focuses his practice in the areas of data security, privacy, and management. Identified by one publication as "an established talent in an emerging field," Paul helps our clients comply with legal requirements for the protection of personal data, whether those requirements arise from contract, state, national, or international law. The Legal 500 United States has recognized Paul for his work on data security and regulatory compliance. Paul was also featured in the annual "40 Under 40" section of the New Jersey Law Journal, an American Lawyer Media publication, and selected as one of four "Rising Stars" in Privacy and Consumer Protection Law by Law 360.
Paul counsels clients on how to meet their obligations under, e.g., the Gramm-Leach-Bliley Act (GLBA), the Fair Credit Reporting Act (FCRA) and its Identity Theft Red Flags regulations, the Drivers Privacy Protection Act (DPPA), Video Privacy Protection Act (VPPA), and the dozens of other federal and state privacy laws and regulations. Paul has also been actively involved in the successful defense of several dozen putative class actions concerning consumer privacy.
Paul is a member of the International Association of Privacy Professionals, and sits on the Board of Directors of the Identity Theft Resource Center. Paul and partner Mark Melodia teach a course on Information Security Law as part of the CISO Executive Education and Certification Program offered by Carnegie Mellon University’s Heinz College.