Annmarie Giblin

Norton Rose Fulbright US LLP

New York
United States
T:+1 212 318 3080
New York
United States
T:+1 212 318 3080
Annmarie Giblin

Annmarie Giblin



Annmarie Giblin helps clients navigate the legal complexities surrounding cybersecurity, privacy and data management with a focus on data governance, maintenance, cybersecurity planning and policies, privacy concerns and strategies, emerging technologies, and related compliance programs. Her practice is data-centric and anchored by her proactive cybersecurity approach, which holistically prepares for a data security incident and related response/compliance issues before it occurs, and includes all related legal concerns that affect data, including data governance, privacy legal issues and compliance, and the collection, use, sharing and transfer of data.

Understanding data management, cybersecurity, and privacy issues in all sectors, Annmarie represents clients in the banking, finance, transportation and logistics, software (including software as a service), social media, consumer-facing retail, cosmetics, insurance, accounting, advertising, mortgage lending, healthcare and not-for-profit industries. She also provides clients support with managing third-party vendor legal risks, cyber incident response, and legal guidance on emerging technologies, such as artificial intelligence.

Annmarie brings a unique perspective to every engagement, shaped by her over 16 years of legal experience, including time as the global cyber attorney for a large multi-national company and running her own cybersecurity and privacy boutique law firm. This background has prepared Annmarie to be a nimble and adaptable legal advisor, and she is especially skilled at monitoring and preparing for rapid changes in the law, allowing her to anticipate legal trends and new laws well before they are set into practice.

Professional experience

Expand all Collapse all

JD, St. John’s University School of Law, 2006

BA, State University of New York at Albany, 2002

  • New York State Bar
  • Developed and supported implementation a HIPAA/HITECH compliant cybersecurity and privacy program for an Healthcare focused AI Provider.
  • Developed and helped implement and maintain a privacy compliance program and cybersecurity risk framework for a multi-national consumer facing cosmetics company.
  • Drafted and updated the privacy policy for and supported the cyber incident response tabletop exercises of an investment management company.
  • Created and supported implementation of a CCPA privacy compliance program for an insurance company.
  • Created the privacy policy and written information security plan for a small accounting firm.
  • Revamped the master service agreement and related statements of work/service for a software-as-a-service company.
  • Advised on and helped implement a privacy and cybersecurity compliance program for a national transportation logistics provider.
  • Created and implemented a privacy compliance program and related cybersecurity risk framework, including drafting of all related legal policies, for a software-as-a-service provider.
  • Regularly advises a financial services company on cybersecurity issues and privacy law.
  • Managed and responded to a cyber incident affecting a large public hospital.
  • Advised an international start-up on the intricacies of United States Privacy and cybersecurity law including how it related to and affected their business plan.
  • Drafted and helped implement online privacy policies for a fertility clinic.
  • Advised and prepared policies to support privacy and cybersecurity compliance for new social media companies.
  • Drafted cyber insurance policy language and related endorsements for a multi-national insurance company.
  • Advised and assisted a financial services company in the negotiation and drafting of its third-party vendor contracts, including cloud providers and virtual event providers.
  • Lawdragon 500 Leading Global Cyber Lawyers, Lawdragon, Inc., 2024
  • American Inn of Court, Co-Chair of the Privacy and Cybersecurity Team
  • Women in Cyber Leadership