Carly Owens

Carly counsels clients across several sectors, including health technology, financial services, private equity, insurance, and technology on a range of United States (U.S.) federal and state privacy laws, including, but not limited to:

• Illinois Biometric Information Privacy Act (BIPA) and other biometric privacy laws
• Health Insurance Portability and Accountability Act (HIPAA)
• Washington My Health My Data Act and other state health privacy laws
• U.S. state privacy laws in California, Colorado, Connecticut, Utah and Virginia (CCPA, CPRA, CPA, CTDPA, UCPA, VCDPA)
• Telephone Consumer Protection Act (TCPA)
• Controlling the Assault of Non-Solicited Pornography And Marketing Act (CAN-SPAM)
• New York Department of Financial Services Cybersecurity Regulation 500

She also prepares clients for regulatory inquiry and government investigation and provides assessments of privacy and security practices for companies carrying out due diligence in the context of corporate transactions. Carly also maintains an active pro bono practice, which has included helping clients in immigration and criminal justice matters.

Carly has obtained the Certified Information Privacy Professional - United States (CIPP/US) designation from the International Association of Privacy Professionals.