Jon Neiditz writes the weekly Hybrid Intelligencer and co-leads the Cybersecurity, Privacy and Data Governance Practice at Kilpatrick Townsend. One of the first lawyers to focus broadly on data governance and knowledge asset protection, he remains the only person recognized by The Best Lawyers in America® both for Information Management Law and for Privacy and Data Security Law, also including him for Technology law and as the 2023 "Atlanta Lawyer of the Year" in Electronic Discovery and Information Management Law. He has been named by BTI as a 2022 Client Service All-Star and ranked nationally by Chambers USA and internationally by Chambers Global. For decades, Jon has helped clients anticipate, obviate, and manage information privacy and security risks; appropriately monetize information; comply with privacy, data protection and cybersecurity laws around the world in pragmatic ways; and contain and prevent harm from incidents while maximizing resilience and minimizing regulatory issues.
Jon has always collaborated with clients and peers on pragmatic innovation; for example, in the 1990s, he helped to define what accountable health care and health care reform might look like; in the 2000s he helped to invent multi-disciplinary incident response and the role of the “breach coach” and to define proportionate search in e-discovery; in the 2010s he helped pioneer governance of “big data” and protection of “crown jewels,” and in the 2020s he is beginning to help technology become “good” again. Jon has been selected as a "Cybersecurity Trailblazer" by the National Law Journal, as a Ponemon Fellow, and by Who’s Who Legal for Data Law. Jon is certified by the IAPP in Europe as well as in the U.S. (CIPP/E, CIPP/US and CIPM).
Develop a comprehensive set of recommendations for a leading communications company concerning adoption of the NIST Risk Management Framework to govern, enhance and integrate its mature cybersecurity and privacy programs.
Serve as general outside privacy, data and cybersecurity counsel to one of the leading cable and streaming TV providers.
Development of “attractive” combined global and regional privacy standards and programs and global data ethics program for a very technology-focused global consumer products manufacturer, and assistance in implementation of those standards and programs. Also serving as global legal advisor on incident response.
External advisor to a leading data and analytics firm in response to Notice of Noncompliance from the California Attorney General addressing many issues under the California Consumer Privacy Act. Negotiated successful resolution of all issues.
Responsible for incident response for many leading global companies.
Obtained closure of investigations by the U.S. Federal Trade Commission and the California and Georgia Attorneys General of a privacy incident involving complex issues associated with cryptocurrency vulnerabilities, and helped our client, a leading e-commerce provider, avoid any such exposures in the future.
Managed a major information crisis for a global education software provider in which extensive data on the individual health, safety and education needs and arrangements of students across the English-speaking world was deleted. As with all crises managed by Jon to date, no consumer litigation has (thus far) resulted.
For many financial services information companies, consumer products manufacturers, retailers, health care companies, and business services organizations adopting “big data” strategies or otherwise looking for new ways to protect knowledge assets, developed and helped to implement comprehensive overhauls of a wide range of policies governing corporate, customer and third party information, including privacy, e-communications, trade secrets, surveillance, retention, security, and defensible disposal programs. Kilpatrick Townsend has also led many privacy and information security compliance and auditing programs under such new programs.
Provided global privacy, data security and data residency guidance and processing and transfer mechanisms for the family leave program of the world’s largest technology company.
General service as global outside privacy counsel to leading manufacturers, financial services organizations, retailers and benefits administrators.
Helped numerous medical device manufacturers, mobile health care apps and many types of shared health information portals address health care privacy and information security issues.
Assisted high-profile advocacy organizations, business services organizations and law firms to make their infrastructure more secure, including advising on migration of data into cloud computing environments.
Regular service as global advisory counsel on data storage, processing and transfer issues involving complex connected car and big data initiatives around the world for a large telecommunications, hosting and platform company. Representation including issues under Chinese, Russian, South Korean, Malaysian, Japanese, Thai and Hong Kong laws, as well as under many European and Latin American data protection laws and the laws of Australia, New Zealand and Canada.
Negotiated privacy and security protections on behalf of a global insurance conglomerate, a global logistics company and a global manufacturer in connection with cloud-based CRM and HR solutions for global workforce and customer bases, including review and incorporation of safeguards and bases for data processing and transfer in Asia, Europe and Latin America.
Insights View All
Dartmouth College B.A. magna cum laude, with high honors
Yale Law School J.D., Articles Editor Yale Journal on Regulation; Director, Hospital Legal Services
Author, Hybrid Intelligencer
Nonhegemon, Interfaith Fellowship at Serenbe
Board of Advisors, Privacy + Security Forum
Editorial Advisory Board, Law360 Cybersecurity & Privacy (2014-2017)
Former Board Chair, Atlanta Regional Health Forum and Georgia Charitable Care Network
Former Special Advisor on health care to Florida Governor Lawton Chiles and other state leaders and governments
While we are pleased to have you contact us by telephone, surface mail, electronic mail, or by facsimile transmission, contacting Kilpatrick Townsend & Stockton LLP or any of its attorneys does not create an attorney-client relationship. The formation of an attorney-client relationship requires consideration of multiple factors, including possible conflicts of interest. An attorney-client relationship is formed only when both you and the Firm have agreed to proceed with a defined engagement.
DO NOT CONVEY TO US ANY INFORMATION YOU REGARD AS CONFIDENTIAL UNTIL A FORMAL CLIENT-ATTORNEY RELATIONSHIP HAS BEEN ESTABLISHED.
If you do convey information, you recognize that we may review and disclose the information, and you agree that even if you regard the information as highly confidential and even if it is transmitted in a good faith effort to retain us, such a review does not preclude us from representing another client directly adverse to you, even in a matter where that information could be used against you.