Counseling. Wendell focuses his practice on privacy and data protection laws and guidance to help companies manage associated risks. He has extensive experience guiding clients on compliance with the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). He also regularly advises clients on compliance with industry sector-specific laws and best practices such as in energy and infrastructure (CIP Reliability Standards), financial services and payments (GLBA, FCRA, PCI DSS), transportation and construction (NIST standards), health (HIPAA), advertising (NAI and DAA self-regulatory principles), and education (FERPA).

He counsels Internet start-up clients on reducing risk in a practical and affordable manner, and drafts online terms & conditions and privacy policies for them. He counsels large and small companies, including those in the energy, infrastructure, transportation, construction, and Internet-service sectors, on their privacy and data-security compliance obligations with respect to employee data, industrial control systems, marketing campaigns, vendor risk management, big data, biometric data, employee monitoring, and other collection and uses of personal information. He helps companies implement and maintain privacy and data security programs, including drafting internal policies and procedures (particularly with respect to GDPR and CCPA compliance), performing privacy impact assessments, and designing online products and services to reduce legal risk.

Technology Transactions. Wendell regularly advises clients on various technology and data deals. He represents parties in their role as customer, partner, or provider. Deals include data sharing arrangements, software licensing, cloud services licensing, and outsourcing. He assists parties in drafting and negotiating agreements, including master service, licensing, confidentiality, privacy and data security, and other agreements. He also regularly counsels clients about the potential business and legal risks associated with a deal and the applicable contractual provisions. He supports M&A and financing deals to help the parties through the software and privacy and data security-related diligence process and with negotiating the associated terms of the deal.

Data Breach Response. Wendell frequently helps clients handle data security incidents from start to finish. He helps manage and implement incident response efforts, including updating senior management, managing consultants, drafting voluntary and legally required notices, and communicating with law enforcement and other government officials.

Litigation and Investigations. Wendell represents clients in privacy, data security, e-commerce, and other consumer protection-related litigation and government investigations, including before the Federal Trade Commission and state attorneys general.