Kathryn Linsky is an associate in Norton Rose Fulbright's data protection, privacy and cybersecurity group, where her practice focuses primarily on information governance and lifecycle management. Kathryn regularly advises clients on best practices as well as compliance with state and federal privacy and cybersecurity regulations.
Prior to joining Norton Rose Fulbright, Kathryn served as a privacy and cybersecurity and commercial litigation associate at a national law firm. Kathryn is a Certified Information Privacy Professional (CIPP/US) through the International Association of Privacy Professionals, and is licensed to practice in New York.
- 2013 - JD, Cum Laude, Brooklyn Law School
- 2010 - BA, with honors, Lehigh University
While attending Brooklyn Law School, Kathryn served as the Notes and Comments Editor for the Brooklyn Journal of Corporate Finance and Commercial Law. She was awarded the CALI Excellence for the Future Award in Legal Writing, and was a Herbert & Norma Dicker Scholar.
- Drafted external privacy policies for numerous non-profit and for-profit corporations, including website and mobile application privacy statements.
- Drafted aspects of internal information security programs, including incident response plans and data retention policies.
- Counseled clients in response to security incidents including conducting investigations to determine the scope of the incident, managing forensic investigative units, providing individual and regulator notification, and implementing remediation activities.
- Advised a multi-national corporation on foreign data transfer regulations to determine the legality of intra-company transfer of employee data.
- Assisted a Fortune 500 financial services firm in responding to three SEC subpoenas, including representing the firm during SEC testimony.
- Secured Safe Harbor certification for a boutique consulting firm.
- New York State Bar License
- "This Office Party is BYOD: Data Collection and Protection in the Workplace," Norton Rose Fulbright, November 2016
- "Bring Your Own Device to Work: Legal Concerns and Legally Sound Employer Policies," Park Avenue Presentations, October 2016
- "Bring Your Own Device to Work: Legal and Practical Implications of the Mobile Workplace," Park Avenue Presentations, March 2016
- "Tsunami Watch – Cybersecurity (Legal) Update," Information Security Committee of the American Bar Association Section of Science and Technology Law, February 2016
Memberships and activities
- American Bar Association
- International Association of Privacy Professionals
- Women's Bar Association of the State of New York
- New York City Bar
According to news reports, cyber criminals appear to have gained unauthorized access to ADP, Inc.’s self-service customer portal to file fraudulent tax returns for some ADP customer employees. ADP has reportedly confirmed that a subset of its customers have been the victim of tax fraud perpetrated by....
May 10, 2016
It should come as no surprise to anyone who has used a mobile phone to pay for coffee or start a car that the world’s infrastructure is computerized and connected....
March 07, 2016