Aaron Simpson

Overview

Aaron advises clients on a broad range of complex global privacy, data protection and cybersecurity matters, including with respect to existing and emerging requirements in the US and EU. As a leader on the firm’s global privacy team, Aaron’s work includes advising clients on large-scale cybersecurity incidents; conducting diligence and negotiating privacy and data security aspects of corporate transactions; developing of cross-border data transfer solutions; developing local, regional and international privacy and data protection compliance programs with existing and emerging data protection requirements in Europe and the US; and negotiating data-driven commercial agreements.

Aaron is well known as a top privacy professional and has been recognized by Chambers and Partners, The Legal 500 and Computerworld for his work on behalf of clients. Aaron splits his time between the firm’s New York and London offices, and is the only lawyer currently listed in both The Legal 500 United Kingdom and The Legal 500 United States guides, providing clients with a broad and unique transatlantic perspective. He is a sought-after media resource on privacy issues and has been quoted in such publications as Time Magazine, Bloomberg BNA, Businessweek Magazine, Computer Weekly, Corporate Secretary, DataGuidance, Law360, SC Magazine and The Times. Aaron regularly speaks before industry groups, legal organizations, government agencies and educational institutions at conferences, seminars, roundtables and webinars. He has written and co-written numerous articles, book chapters and handbooks on privacy and information security issues.

Experience

Advises clients with due diligence and negotiation of privacy and data security issues in corporate transactions.
Advises clients on compliance with the California Consumer Privacy Act of 2018 (CCPA), including conducting due diligence, preparing gap analyses, developing remediation plans, and undertaking compliance projects.
Advises clients on all legal issues associated with cybersecurity events pursuant to requirements imposed by laws and regulatory guidance in the European Union and the United States.
Prepares proactive, data breach-readiness solutions for clients, including through the creation of incident response plans and conducting board-level tabletop exercises.
Advises clients on international data protection requirements, including the EU General Data Protection Regulation and developing mechanisms to comply with cross-border data transfer requirements (such as through BCRs, the Privacy Shield and Standard Contractual Clauses).

Accolades

Honors & Recognitions

Recognized as a Leading Lawyer for Cyber Law (including Data Privacy and Data Protection) (2019-2023) and as a Recommended Lawyer (2016-2018), Legal 500 United States
Named a “Client Service All‐Star” by BTI, 2022
Recognized as a Leader in Privacy & Data Security, USA, Chambers Global, 2021-2024
Recognized as a Leader in Privacy & Data Security, USA-Nationwide, Chambers USA, 2020-2023
Recognized as a Recognized Practitioner in Data Protection and Information Law, UK-wide, Chambers UK, 2019-2020
Listed for Risk Advisory: Data Protection, Privacy and Cybersecurity, Legal 500 UK, 2017-2024
Recommended for FinTech, Legal 500 United States, 2019
Recognized as a Leader for Data: Information Technology, Who’s Who Legal, 2019-2020, and for Telecommunications, Media and Technology Law, Who’s Who Legal, 2013-2021
Selected as a Super Lawyer for Technology Transactions, New York Super Lawyers magazine, 2015. Also selected as a Rising Star, 2011-2014.
Recognized as Up and Coming in Privacy & Data Security, National, Chambers USA, 2013
Named among the Best Privacy Advisers, Computerworld magazine, 2008

Affiliations

Professional

Member, Section of Antitrust Law–Privacy and Information Security Committee, American Bar Association
Member, Association of the Bar of the City of New York
Former Member, Board of Editors, Pratt’s Privacy & Cybersecurity Law Report
Former Member, Information Technology Law Committee, Association of the Bar of the City of New York

Insights

Legal Updates

22 Minute Read
August 3, 2023
Alerts
SEC Finalizes Cybersecurity Disclosure Requirements
5 Minute Read
July 18, 2023
Alerts
Texas Enacts Texas Data Privacy and Security Act
3 Minute Read
June 15, 2023
Alerts
Washington Becomes the First State to Enact a Comprehensive Health Privacy Law
11 Minute Read
May 23, 2022
Alerts
US Issues Guidance to Companies Warning of Cybersecurity and Sanctions Risks Posed by IT Workers Directed by North Korea
2 Minute Read
November 18, 2021
Alerts
New York State Requires Private Employers to Notify Employees of Electronic Monitoring
14 Minute Read
October 8, 2021
Alerts
Personal Information Protection Law of China: Key Compliance Considerations
5 Minute Read
September 24, 2021
Alerts
OFAC’s Updated Advisory on Ransomware Payments
1 Minute Read
May 5, 2020
Alerts
Practical Insights for Addressing Privacy Concerns in the EU Amid the COVID-19 Pandemic
2 Minute Read
March 20, 2020
Alerts
Coronavirus/COVID-19: Key Privacy and Security Considerations
January 13, 2020
Alerts
New SEC Disclosure Guidance on Intellectual Property and Technology Risks Associated with International Business Operations
November 12, 2019
Alerts
Board Oversight of Privacy & Cybersecurity Risk: Delaware Developments
February 26, 2018
Alerts
SEC Publishes New Guidance on Public Company Cybersecurity Disclosure
1 Minute Read
June 15, 2016
Alerts
Hunton & Williams’ Privacy Team Publishes Several Chapters in International Comparative Legal Guide to Data Protection
April 14, 2016
Alerts
EU General Data Protection Regulation Finally Adopted
March 09, 2016
Alerts
Hunton & Williams Releases Management Guide to the EU General Data Protection Regulation
June 17, 2015
Alerts
Council of the European Union Agrees on General Approach to the Proposed General Data Protection Regulation
April 24, 2015
Alerts
FTC Reaches Settlement in First Enforcement Action Against a Retail Tracking Company
June 23, 2014
Alerts
Recent Developments Concerning Cybersecurity Disclosure for Public Companies
September 23, 2013
Alerts
HIPAA Omnibus Rule Compliance Deadline Has Arrived
March 29, 2013
Alerts
Department of Homeland Security Requests Comments on New Information Collection Requirements for CFATS Personnel Surety Program
March 28, 2013
Alerts
Department of Commerce Issues Notice of Inquiry Regarding Incentives to Adopt Improved Cybersecurity Practices
February 28, 2013
Alerts
NIST Issues RFI for Framework for Reducing Cyber Risks
February 14, 2013
Alerts
Obama Signs Presidential Policy Directive on Critical Infrastructure Security and Resilience
February 13, 2013
Alerts
Obama Administration Releases Highly Anticipated Cybersecurity Executive Order
January 25, 2013
Alerts
New HIPAA Omnibus Rule: A Compliance Guide
October 5, 2012
Alerts
Recent Federal Government Activity on Cybersecurity
June 22, 2011
Alerts
Department of Homeland Security Announces New Information Collection Requirements for CFATS Personnel Surety Program
February 2, 2009
Alerts
Stimulus Package Includes Breach Notice Obligations and Substantial Changes to HIPAA
December 9, 2008
Alerts
Hunton & Williams LLP Voted Top Privacy Advisers for Third Year in Computerworld Poll
May 29, 2008
Alerts
New CAN-SPAM Rule

Events & Speaking Engagements

December 1, 2023
Event
Speaker
The Shifting Sands of Data Protection: 2023 Year in Review, Conférence Annuelle Du Cercle De La Compliance 2023
November 16, 2023
Event
Presenter
California Consumer Privacy Act: What to Expect Next and Enforcement Challenges
May 22, 2023
Event
Speaker
Beyond the Comprehensive State Privacy Laws – What’s Happening in Privacy and Data Security Law in the Rest of the US?, Practicing Law Institute’s Twenty-Fourth Annual Institute on Privacy and Cybersecurity Law
March 2, 2023
Event
Speaker
From Safe Harbor to Privacy Shield to the Trans-Atlantic Data Privacy Framework: The Saga Continues, Hunton Andrews Kurth Webinar
January 25, 2023
Event
Panelist
Global Data Transfer Update, World Data Protection Day, BNP Paribas
December 2, 2022
Event
Speaker
The Shifting Sands of Data Protection: 2022 Year in Review, Le Cercle de la Compliance’s 10th Compliance Year in Review
September 30, 2022
Event
Speaker
Cybersecurity: US and Global Legal Landscape, Practicing Law Institute: Cybersecurity 2022: Managing Cybersecurity Incidents
January 26, 2022
Event
Speaker
A Roundup of 2021 Global Data Privacy Developments and A Look at What’s Coming in 2022, New York State Bar Association’s 2022 Annual Meeting – International Section
September 30, 2021
Event
Speaker
Cybersecurity: U.S. and Global Legal Landscape, Practising Law Institute: Cybersecurity 2021: Managing Cybersecurity Incidents
April 22, 2021
Event
Speaker
One-Hour Briefing – Battle of the Privacy Laws: Understanding Virginia’s New Consumer Data Protection Act and How It Compares to the CCPA/CPRA and the GDPR, Practising Law Institute
March 30, 2021
Event
Speaker
Virginia’s Consumer Data Protection Act
November 23, 2020
Event
Speaker
New SCCs and EDPB Recommendations: Key Strategies for Cross-Border Data Flows after Schrems II
November 19, 2020
Event
Speaker
The California Privacy Rights Act
November 5, 2020
Event
Panelist
Webinar — From a Regulator’s Perspective: Latest Developments on Cookie Guidance from the ICO and CNIL
August 17, 2020
Event
Panelist
Other New US Privacy and Data Security Rules, Practicing Law Institute’s Twenty-First Annual Institute on Privacy and Cybersecurity Law
July 23, 2020
Event
Speaker
Schrems II: The Practical Implications for Businesses
January 9, 2020
Event
Presenter
Get Ahead of Data Privacy Changes in 2020 Webinar, Lytics
November 25, 2019
Event
Lecturer
California Consumer Privacy Act of 2018: Overview and Path to Compliance, Benjamin N. Cardozo School of Law
November 15, 2019
Event
Hot Topics in Privacy and Cybersecurity: Understanding the Changing Landscape in a Data-Driven Business Environment
November 14, 2019
Event
Speaker
The New Age of Privacy, Hunton GC Privacy and Data Security Event
November 6, 2019
Event
Speaker
CCPA Amendments and Regulations – Managing the Changes, New York Privacy Officers’ Forum Leadership Series
June 4, 2019
Event
Speaker
US Privacy Law: At the Edge of a New Frontier, Hunton Webinar
May 20, 2019
Event
Speaker
Twentieth Annual Institute on Privacy and Data Security Law, PLI Webinar, New York
May 17, 2019
Event
Speaker
London Breakfast Briefing - Data Breach: Prepare Your Business and Test Your Readiness, London
March 13, 2019
Event
Co-presenter
Contracting Considerations Under the GDPR, PLI Webinar
November 15, 2018
Event
Speaker
The California Consumer Privacy Act: Impact and Implications, New York Privacy Officers’ Forum Breakfast Briefing
September 26, 2018
Event
Speaker
Clearing up the Cookie Chaos: Practical Approaches to Consent Under the e-Privacy Directive and GDPR
September 21, 2018
Event
Speaker
GDPR Minutes: The Intersection Between e-Privacy and GDPR, American Bar Association’s Privacy and Information Security Section of Antitrust Law
September 7, 2018
Event
Speaker
Hunton Andrews Kurth Webinar, California Consumer Privacy Act of 2018
June 5, 2018
Event
Speaker
Managing Cybersecurity Governance in the Boardroom
March 2018
Event
Presenter
SEC Cybersecurity Guidance 2018, Hunton & Williams Webinar
January 17, 2018
Event
Speaker
Understanding the UK Data Protection Bill
December 5, 2017
Event
Speaker
GDPR Breach Notification: A How-To Guide
November 14, 2017
Event
Speaker
A Primer on Cyber Insurance: Is It Your Answer To Surviving A Cybersecurity Crisis?
October 5, 2017
Event
Speaker
The Future of Data Protection Forum 2017, London, Thomson Reuters Practical Law
June 2017
Event
Presenter
GDPR in Practice: 30-Minute Guidance Review
June 22, 2017
Event
Presenter
GDPR: Demystifying the Operational Requirements Webinar
May 23, 2017
Event
Speaker
CISO Europe 14th Annual Conference and Roundtable, The Hague: Personal Data Breach Notification under the GDPR – Be Prepared!
April 18, 2017
Event
Speaker
Privacy Leaders Council: How to Prepare for the GDPR, Retail Industry Leaders Association
March 21, 2017
Event
Speaker
Cybersecurity Panel Discussion: A Live Cyber Attack Tabletop Exercise, Hunton & Williams Breakfast Briefing, London, UK
March 15, 2017
Event
Speaker
Understanding the Impact of the GDPR on the EU's Cybersecurity Landscape, IAPP European Data Protection Intensive, London, UK
March 14, 2017
Event
Speaker
GDPR Implementation: Strategic Issues to Address, CIPL, Hunton and AvePoint Breakfast Briefing, London, UK
January 26, 2017
Event
Speaker
How to Prepare for the EU General Data Protection Regulation, IFLR European In-House Counsel Summit 2017, London, UK
January 18, 2017
Event
Speaker
Negotiating Cloud Contracts: Key Data Protection Considerations, Society for Computers and Law Foundations of IT Law Program
November 15, 2016
Event
Speaker
Protecting Data in an Era of Hacks and Leaks, Offshore Alert Conference, London, UK
October 14, 2016
Event
Speaker
Cyber Security and Data Breach: Preparing for Mandatory Breach Reporting, PDP
October 14, 2016
Event
Speaker
Data Transfers: Devising a Practical Framework for Global Data Flows, PDP
September 27, 2016
Event
Speaker
Brexit: What Will the Impact Be? “Impact of Brexit from a Data Privacy and Security Law Perspective,” City of London Corporation and TORI Global
September 16, 2016
Event
Speaker
Vendor Management, Retail Industry Leaders Association
April 28, 2016
Event
Speaker
Hunton & Williams Webinar: GDPR: Impact on Cross-Border Data Transfers (Part 2)
April 12, 2016
Event
Speaker
Your Client is the Victim of a Cyber-Attack – How to Provide Value, Richmond Bar Association Business Law Section Spring CLE Program
April 12, 2016
Event
Speaker
PLI’s EU-U.S. Privacy Shield: A How-To Guide
March 9, 2016
Event
Speaker
Hunton & Williams Webinar: GDPR: A How-To Guide (Part 1)
September 25, 2015
Event
Speaker
U.S. and Global Policy Landscape, PLI’s Cybersecurity 2015: Managing the Risk
June 23, 2015
Event
Speaker
Living with Contracts – Software Audits and Privacy Compliance, Hunton & Williams LLP’s IT/Procurement Leadership Forum, New York
June 17, 2015
Event
Speaker
Information Risks & Trends Panel, CNA Cybersecurity Conference
June 9, 2015
Event
Pharmaceutical and Medical Device Compliance Conference
June 9, 2015
Event
Speaker
Privacy: Evolving Risks in Life Sciences, Pharmaceutical and Medical Device Compliance Conference
June 8, 2015
Event
Speaker
The Mobile Arena: An Evolving Landscape, PLI’s 16th Annual Institute on Privacy and Data Security Law
March 19, 2015
Event
Second Annual West Coast Pharmaceutical and Medical Device Conference
March 12, 2015
Event
Speaker
Anatomy of a Breach: From Discovery to Recovery, National Association of Attorneys General, Southern Region Meeting
January 2015
Event
Speaker
Privacy and Information Security Monthly Update, American Bar Association
January 9, 2015
Event
Speaker
Decision Analytics Program: Data Privacy 2015, Virginia Commonwealth University
November 13, 2014
Event
Speaker
Cyber Security: A How-To Guide, International Accounting Operations Conference
October 16, 2014
Event
Speaker
Law Firm Cyber Risk Conference, Sandpiper Partners LLC
June 16, 2014
Event
Speaker
The Mobile Revolution: New Challenges for Privacy & Data Security, PLI 15th Annual Privacy & Data Security Law Institute
June 3, 2014
Event
Panelist
Infosecurity Magazine Summer Virtual Conference 2014
May 19, 2014
Event
Speaker
Cybersecurity: Proactively Protecting Your Company, Momentum Privacy, Policy & Technology Summit
April 25, 2014
Event
Speaker
Data Security Breaches: Understanding the Threat and Navigating the Legal Landscape, CPE Retail Accounting Conference
June 20, 2013
Event
Speaker
U.S. Cybercrime 2013: Stark Realities, Sandpiper Partners LLC/PricewaterhouseCoopers LLP
June 18, 2013
Event
Speaker
The Digital Marketing Ecosystem: Trends, Risks, and Obligations, PLI 14th Annual Privacy & Data Security Law Institute
April 23, 2013
Event
Information Risk Management: Aligning Records, Privacy, Cyber & eDiscovery, ALM IRM Webcast
November 28, 2012
Event
US & UK Data Protection Law: Experts’ Views on Compliance Through Data Quality and Governance Webcast
November 28, 2012
Event
U.S. Privacy and Data Security Requirements Webcast
November 13, 2012
Event
Speaker
Security Breach & Privacy, Property Casual Insurers Association of America (PCI)
June 5, 2012
Event
ABA Privacy and Information Security Committee Monthly Update
May 24, 2012
Event
Preparing for a New US Privacy Landscape Webcast
December 9, 2011
Event
Speaker
Privacy Legislative Update, New York Privacy Officers Forum
October 26, 2011
Event
Speaker
Online Behavioral Advertising: Emerging Legal Issues, ACI Social Media Business Technology and the Law, New York, NY
September 13, 2011
Event
Speaker
Data Privacy in a Global Era, CLE Program hosted by Dana Holding Corporation, Toledo, OH
June 21, 2011
Event
Speaker
Online Behavioral Advertising: Emerging Legal Issues, Twelfth Annual Institute on Privacy and Data Security Law (PLI), New York, NY
June 9, 2011
Event
Speaker
Privacy Issues in Immigration, American Council on International Personnel (ACIP) 37th Annual Symposium, Arlington, VA
May 18, 2011
Event
Speaker
Hot Topics in Privacy Law, New York City Bar Association
April 11, 2011
Event
Lecturer
Privacy and Information Security, Columbia University
February 3, 2011
Event
Speaker
Cloud Computing: Emerging Privacy and Information Security Considerations, New York Privacy Officers Forum (NYPOF)
January 6, 2011
Event
Speaker
FTC Privacy Report Analysis: Protecting Consumer Privacy in an Era of Rapid Change, Association of Corporate Counsel
December 6, 2010
Event
Lecturer
Privacy and Information Security, Columbia University, New York, NY
November 4, 2010
Event
Speaker
Online Behavioral Advertising: Emerging Legal and Business Issues, New York Privacy Officers Forum
October 7, 2010
Event
Speaker
ABA’s Privacy Update Webinar
September 28, 2010
Event
Speaker
A Practice Legal Guide to Doing Business on the Internet, New York City Bar
September 8, 2010
Event
Speaker
Privacy, Confidential Information and Intellectual Property, Ethics Compliance Officer Association Law School
June 22, 2010
Event
Speaker
Privacy Developments in the Workplace, Practising Law Institute, New York, NY
June 11, 2010
Event
Speaker
Implications of the HITECH Act’s Breach Requirements, The Association for Healthcare Risk Management of New York, New York, NY
May 7, 2010
Event
Speaker
Massachusetts Standards for the Protection of Personal Information: What Your Firm Needs to Know, VigiTrust Roundtable, New York, NY
April 30, 2010
Event
Panelist
Cybersecurity Regulation, CFO Roundtable, Dallas, TX
April 26, 2010
Event
Lecturer
Privacy and Information Security, Columbia University, New York, NY
April 22, 2010
Event
Speaker
Data Privacy in a Global Era, AF&PA General Counsels Resource Committee, Jacksonville, FL
March 17, 2010
Event
Speaker
The Evolution of Federal and State Privacy Law and the Implication for CIOs, VigiTrust Roundtable, New York, NY
February 11, 2010
Event
Speaker
Data Security Breaches: The Growing Liability Threat, Crafting and Implementing Policies to Prevent and Respond to Inadvertent Disclosures Webinar, Strafford Publications
January 11, 2010
Event
Speaker
Privacy Issues in Marketing, InComm Partner Alliance 2010, Miami, FL

Publications

January 2023
Publications
Co-author
Accountability in Cybersecurity and Privacy: Keeping Your Name Out of the Headlines, Retail Industry 2022 Year in Review
December 7, 2022
Publications
Co-author
Privacy Shield Redux: Looking Ahead to a New EU-U.S. Data Transfer Framework, CPO Magazine
October 5, 2022
Publications
Co-author
Data Protection & Privacy 2023, Introduction, Getting the Deal Through
October 5, 2022
Publications
Co-author
Data Protection & Privacy 2023, USA, Getting the Deal Through
October 5, 2022
Publications
Co-author
Data Protection & Privacy 2023, United Kingdom, Getting the Deal Through
October 5, 2022
Publications
Co-author
Data Protection & Privacy 2023, EU Overview, Getting the Deal Through
September 2022
Publications
Co-author
U.S. Issues Guidance to Companies Warning of Cybersecurity and Sanctions Risks Posed by IT Workers Directed by North Korea, The Banking Law Journal
August 31, 2022
Publications
Co-author
How the EU Digital Markets Act Affects GDPR, Lawyer Monthly
June 7, 2022
Publications
Co-author
EU Digital Markets Act: Key Aspects and Lingering Questions, CPO Magazine
March 15, 2022
Publications
Co-author
Privacy and Data Security in ESG, Corporate Counsel
January 2022
Publications
Co-author
Virginia and Colorado Add to the Evolving US Privacy Landscape, Retail Industry 2021 Year in Review
August 18, 2021
Publications
Co-author
Data Protection & Privacy 2022, EU Overview, Getting the Deal Through
August 18, 2021
Publications
Co-author
Data Protection & Privacy 2022, Introduction, Getting the Deal Through
August 18, 2021
Publications
Co-author
Data Protection & Privacy 2022, Privacy Shield, Getting the Deal Through
August 18, 2021
Publications
Co-author
Data Protection & Privacy 2022, United Kingdom, Getting the Deal Through
August 18, 2021
Publications
Co-author
Data Protection & Privacy 2022, United States, Getting the Deal Through
February 2021
Publications
2020 Retail Industry Year in Review
November 4, 2020
Publications
Co-author
Data Protection & Privacy 2021, Introduction, Getting the Deal Through
November 4, 2020
Publications
Co-author
Data Protection & Privacy 2021, Privacy Shield, Getting the Deal Through
November 4, 2020
Publications
Co-author
Data Protection & Privacy 2021, EU Overview, Getting the Deal Through
November 4, 2020
Publications
Co-author
Data Protection & Privacy 2021, United Kingdom, Getting the Deal Through
November 4, 2020
Publications
Co-author
Data Protection & Privacy 2021, United States, Getting the Deal Through
September 21, 2020
Publications
Co-author
USA: SB 3300 and omnibus federal data protection efforts, DataGuidance
February 2020
Publications
Co-author
Board Oversight of Privacy and Cybersecurity Risk: Why Delaware Developments Matter, The Computer & Internet Lawyer
November 2019
Publications
Co-author
International: EU-US cross-border data transfers, OneTrust DataGuidance
October 1, 2019
Publications
Co-author
Data Protection & Privacy 2020, Overview, Getting the Deal Through
October 1, 2019
Publications
Co-author
Data Protection & Privacy 2020, Introduction, Getting the Deal Through
October 1, 2019
Publications
Co-author
Data Protection & Privacy 2020, The Privacy Shield, Getting the Deal Through
October 1, 2019
Publications
Co-author
Data Protection & Privacy 2020, United Kingdom, Getting the Deal Through
October 1, 2019
Publications
Co-author
Data Protection & Privacy 2020, United States, Getting the Deal Through
October 1, 2019
Publications
Contributing Editor
Data Protection & Privacy 2020, Getting the Deal Through
July 1, 2019
Publications
Co-author
Complying with Breach Notification Obligations in a Global Setting: A Legal Perspective, The Guide to Cyber Investigations, Global Investigations Review, Edition 1
May-June, 2019
Publications
Co-author
California Consumer Privacy Act and Its Impact on M&A Transactions, Deal Lawyers
April 5, 2019
Publications
Co-author
Data Protection & Privacy 2019, Belgium, Getting the Deal Through
April 5, 2019
Publications
Co-author
Data Protection & Privacy 2019, Introduction, Getting the Deal Through
April 5, 2019
Publications
Co-author
Data Protection & Privacy 2019, The Privacy Shield, Getting the Deal Through
April 5, 2019
Publications
Co-author
Data Protection & Privacy 2019, United Kingdom, Getting the Deal Through
April 5, 2019
Publications
Co-author
Data Protection & Privacy 2019, United States, Getting the Deal Through
February 6, 2019
Publications
Co-author
California Consumer Privacy Act: A Sea of Change for Retailers, Chain Store Age
October 29, 2018
Publications
Co-author
California Consumer Privacy Act and Its Impact, Los Angeles Business Journal
September 4, 2018
Publications
Co-author
Data Protection & Privacy 2019, EU Overview, Getting the Deal Through
August 2018
Publications
Co-author
The Journey to GDPR: Compliance Did Not End on 25 May, Lawyer Monthly
November 2017
Publications
Co-author
Do We Need a Data Protection Officer? (Flowchart), Thomas Reuters Practical Law
September 2017
Publications
Co-author
Data Protection & Privacy 2018, Safe Harbor and the Privacy Shield, United States, and United Kingdom Chapters, Getting the Deal Through
July 2017
Publications
Co-author
The UK’s commitment to the GDPR, ITProPortal
May 2017
Publications
Co-author
Chapter 36: USA, The International Comparative Legal Guide to: Data Protection 2017, 4th Edition
March 2017
Publications
Author
USA, The International Comparative Legal Guide to Data protection 2017
September 2016
Publications
Co-author
Data Protection & Privacy 2017, Safe Harbor and the Privacy Shield and United States Chapters, Getting the Deal Through
August 15, 2016
Publications
Co-author
The Privacy Shield Gets the Green Light from the European Union, Bloomberg BNA World Data Protection Report
May 2016
Publications
Author
European Commission Presents EU-U.S. Privacy Shield, Pratt’s Privacy & Cybersecurity Law Report
April 2016
Publications
Co-author
USA, The International Comparative Legal Guide to: Data Protection 2016, 3rd Edition
December 30, 2015
Publications
Co-author
Best Practices for Data Privacy and Security in the HR Space, Practical Law Practice Note
October 2015
Publications
Co-author
Dealmakers Ignore Cyber Risks at Their Own Peril, Pratt’s Privacy & Cybersecurity Law Report
September 2015
Publications
Author
Data Protection & Privacy 2016, The Future of Safe Harbor, Getting the Deal Through
September 2015
Publications
Co-author
Data Protection & Privacy 2016, United States, Getting the Deal Through
May 2015
Publications
Co-author
USA Data Protection 2015, ICLG
March 2015
Publications
Co-author
In Confronting Cyberattacks, Preparation is Key, Digital Transactions
February 2015
Publications
Co-author
Cybersecurity and Data Breach, Bloomberg BNA Privacy & Data Security Portfolio Series
September 2014
Publications
Author
Data Protection & Privacy 2015, The Future of Safe Harbor, Getting the Deal Through
September 2014
Publications
Co-author
Data Protection & Privacy 2015, United States, Getting the Deal Through
September 2013
Publications
Co-author
Data Protection & Privacy 2014, United States, Getting the Deal Through
February 20, 2013
Publications
Co-author
Emerging Legal Issues in Managing Cyber Risk for Pipelines, Pipeline & Gas Journal
January 24, 2013
Publications
Co-author
HITECH Breaches: A How-To Guide, BNA’s Health Law Reporter and Privacy & Security Law Report
July 2011
Publications
Co-author
The Shifting Sands of Data Protection and Resulting Privacy Pitfalls, State Bar of Texas – 10th Annual Advanced In-House Counsel Course
May 31, 2011
Publications
Co-author
White House Proposes Cybersecurity Legislation, Bloomberg Technology Law Reporter
January 2011
Publications
Co-author
Comment: Data Protection Outlook for 2011: A Global Discussion, Data Protection Law & Policy
July 2010
Publications
Contributing Author
Privacy and Data Security Law Deskbook, Aspen Publishers
June 10, 2010
Publications
Co-author
Emerging Privacy Issues in Bankruptcy, New York Law Journal
November 11, 2009
Publications
Co-author
Preservation and Monitoring of Corporate Messaging, New York Law Journal
February 2009
Publications
Co-author
The Stimulus Package and Health Privacy Breaches, Lawdragon
2008
Publications
Co-author
European Union Data Protection, Chapter 11 in West’s Data Security and Privacy Law: Combating Cyberthreats
September 18, 2008
Publications
Co-author
Surviving an FTC Investigation After a Data Breach, New York Law Journal
2008
Publications
Co-author
Data Security Handbook, ABA Section of Antitrust Law, Data Security Handbook

News

4 Minute Read
February 15, 2024
News
Chambers Global 2024 Recognizes Hunton Andrews Kurth
1 Minute Read
October 10, 2023
News
Legal 500 Names Hunton Andrews Kurth Among Top Law Firms in UK 2024 Guide
7 Minute Read
June 8, 2023
News
Legal 500 US Recognizes Hunton Andrews Kurth Among Top Law Firms in 2023 Guide
6 Minute Read
June 1, 2023
News
Chambers USA Recognizes Hunton Andrews Kurth Among Top Firms in 2023 Guide
4 Minute Read
February 16, 2023
News
Chambers Global 2023 Recognizes Hunton Andrews Kurth
January 17, 2023
Media Mentions
Quoted, Legal Tech’s Predictions for Privacy in 2023, Legaltech News
December 30, 2022
Media Mentions
Quoted, Legal Tech's Milestones for Cybersecurity and Privacy in 2022, Legaltech News
1 Minute Read
October 8, 2022
News
Legal 500 Recognizes Hunton Andrews Kurth Among Top Law Firms in UK 2023 Guide
October 7, 2022
Media Mentions
Quoted, BREAKING: US Moves Forward On New EU Data Transfer Pact, Law360
October 7, 2022
Media Mentions
Quoted, White House executive order brings EU-US data flow deal closer to finish line, IAPP
October 7, 2022
Media Mentions
Quoted, U.S. includes surveillance concessions in new transatlantic data flow framework, Compliance Week
6 Minute Read
June 9, 2022
News
2022 Legal 500 US Guide Recognizes Hunton Andrews Kurth Among Top US Law Firms
6 Minute Read
June 1, 2022
News
Chambers USA Recognizes Hunton Andrews Kurth Among Top Firms in 2022 Guide
4 Minute Read
February 18, 2022
News
Chambers Global 2022 Recognizes Hunton Andrews Kurth
1 Minute Read
February 8, 2022
News
BTI Client Service Names Five Hunton Andrews Kurth Partners All-Stars for 2022
2 Minute Read
November 30, 2021
News
Hunton Andrews Kurth Launches National Security Practice
1 Minute Read
October 1, 2021
News
Legal 500 Recognizes Hunton Andrews Kurth Among Top Law Firms in UK 2022 Guide
6 Minute Read
May 25, 2021
News
Chambers USA Recognizes Hunton Andrews Kurth Among Top Firms in 2021 Guide
March 15, 2021
Media Mentions
Quoted, New Virginia Consumer Privacy Law Adds Data Rights, Creates New Requirements for Data Controllers, CPO Magazine
March 9, 2021
Media Mentions
Quoted, Next State Up: Top Contenders For 3rd US Data Privacy Law, Law360
3 Minute Read
February 18, 2021
News
Chambers Global 2021 Recognizes Hunton Andrews Kurth
December 30, 2020
Media Mentions
Quoted, Legal Tech’s Predictions for Privacy in 2021, Legaltech News
October 30, 2020
Media Mentions
Quoted, US privacy: a new world?, Data Protection World Forum
1 Minute Read
September 30, 2020
News
Legal 500 UK 2021 Guide Recognizes Hunton Andrews Kurth Among Top Law Firms
3 Minute Read
August 4, 2020
News
Hunton Andrews Kurth Focuses on Schrems II and the Practical Implications for Businesses
July 27, 2020
Media Mentions
Quoted, Privacy Shield Revocation Greatly Complicates International Data Transfers; Is a Grace Period in the Works?, CPO Magazine
July 14, 2020
Media Mentions
Quoted, All Eyes On EU High Court Review Of Top Data Transfer Tools, Law360
July 6, 2020
Media Mentions
Quoted, US Courts Open To Demands For EU Data, But Risks Loom, Law360
6 Minute Read
June 12, 2020
News
2020 Legal 500 USA Guide Recognizes Hunton Andrews Kurth Among Top US Law Firms
5 Minute Read
April 27, 2020
News
Chambers and Partners Recognizes Hunton Andrews Kurth Among Top Firms in USA 2020 Guide
March 24, 2020
Media Mentions
Quoted, CCPA, SHIELD Act to take back seat during coronavirus pandemic?, Compliance Week
January 3, 2020
Media Mentions
Quoted, Legal Tech's Predictions for Cybersecurity in 2020, Legaltech News
1 Minute Read
October 15, 2019
News
Chambers and Partners Recognizes Hunton Andrews Kurth’s Global Privacy and Cybersecurity Practice in 2020 UK Guide
1 Minute Read
September 27, 2019
News
Hunton Andrews Kurth Recognized Among Top Law Firms in 2020 Legal 500 UK Guide
6 Minute Read
June 6, 2019
News
Hunton Andrews Kurth Recognized Among Top US Law Firms in 2019 Legal 500 USA Guide
2 Minute Read
April 3, 2019
News
Hunton Andrews Kurth Partners with the US Chamber of Commerce on ‘Seeking Solutions: Aligning Data Breach Notification Rules Across Borders’
1 Minute Read
November 9. 2018
News
Hunton Andrews Kurth’s Global Privacy and Cybersecurity Practice Recognized in Chambers UK 2019 Guide
1 Minute Read
October 30, 2018
News
Hunton Andrews Kurth Recognized Among Top Law Firms in the 2018 Legal 500 UK Guide
4 Minute Read
June 13, 2018
News
Hunton Andrews Kurth Recognized Among Top US Law Firms in Legal 500 USA 2018 Guide
2 Minute Read
March 21, 2018
News
Hunton & Williams Webinar Focuses on SEC Cybersecurity Guidance
4 Minute Read
March 14, 2018
News
Centre for Information Policy Leadership at Hunton & Williams Hires Nathalie Laneret as Director of Privacy Policy
1 Minute Read
November 3, 2017
News
Global Investigations Review Ranks Hunton & Williams White Collar Practice
September 18, 2017
Media Mentions
Quoted, Draft EU Cyberattack Notice Threshold Unrealistic, Companies Say, Bloomberg BNA
2 Minute Read
July 14, 2017
News
Hunton’s Privacy and Cybersecurity Practice Helps Businesses Prepare for Ransomware and Cyber Attacks
June 15, 2017
Media Mentions
Quoted, Backflips and The Bread and Butter, The Times
2 Minute Read
April 12, 2017
News
Aaron Simpson Appointed UK Managing Partner
3 Minute Read
April 10, 2017
News
Hunton & Williams Announces Changes to Leadership on Executive Committee, Practices and in London Office
2 Minute Read
March 6, 2017
News
Hunton & Williams Launches M&A Privacy and Security Initiative
October 18, 2016
Media Mentions
Quoted, 5 Keys For Financial Firms in EU Data Protection Overhaul, Law360
1 Minute Read
July 29, 2016
News
Aaron Simpson Speaks with Numerous News Outlets on EU-US Privacy Shield
1 Minute Read
July 25, 2016
News
Aaron Simpson Discusses Digital Fraud in the UK
1 Minute Read
February 2, 2016
News
Aaron Simpson Comments on Clarity of EU-US Privacy Shield
2 Minute Read
November 10, 2015
News
Hunton & Williams LLP’s Data Protection Practice Recognized by Chambers UK and Legal 500 UK
1 Minute Read
September 4, 2015
News
Manufacturers Should Be Cautious In Data Collection Aaron Simpson Tells Law360
1 Minute Read
August 20, 2015
News
Aaron Simpson Tells Law360 Ashley Madison Breach Damages Would Be Straightforward To Prove
July 20, 2015
News
Hunton & Williams’ Privacy Team Publishes Several Chapters in International Comparative Legal Guide to Data Protection
2 Minute Read
June 4, 2015
News
Hunton & Williams Authors Bloomberg BNA Portfolio on Cybersecurity
June 3, 2015
News
Hunton & Williams’ Privacy Practice Receives Global Tier 1 Ranking by Chambers
2 Minute Read
June 2, 2015
News
Hunton & Williams’ Privacy Practice Receives Global Tier 1 Ranking by Chambers
1 Minute Read
March 5, 2015
Media Mentions
Quoted, Fate of 2015 Privacy Bill, DataGuidance
1 Minute Read
January 15, 2015
News
Caught Between the Devil and the Deep Blue Sea – Aaron Simpson on Data Protection Laws, DataGuidance
2 Minute Read
November 24, 2014
News
Hunton & Williams LLP’s Data Protection Practice Lauded by Chambers UK and Legal 500 UK
1 Minute Read
June 23, 2014
News
Aaron Simpson Reports, Interlocutory Appeal May Be Wyndham’s ‘Best Shot’ for Getting Unfairness Questions in Front of 3rd Circuit
May 29, 2014
News
Hunton & Williams LLP's Global Privacy and Cybersecurity Practice Tops Chambers USA 2014 Rankings
1 Minute Read
May 8, 2014
News
DataGuidance Reviews with Aaron Simpson, Wim Nauwelaerts Microsoft Ruling on Customer Information Stored Outside US
2 Minute Read
April 9, 2014
News
Hunton & Williams LLP’s Global Privacy and Cybersecurity Practice Tops Chambers Global 2014 Rankings
July 31, 2013
Media Mentions
Quoted, Hackers steal identity info of 72,000 at U of Delaware, USA Today
July 11, 2013
Media Mentions
Quoted, When Retailer Asks: Can I Have Your Zip Code? Just Say No, TIME
2 Minute Read
June 24, 2013
News
Hunton & Williams LLP Attains 33 Practice and 91 Lawyer Rankings in Chambers USA 2013
2 Minute Read
June 21, 2013
News
Hunton & Williams LLP Global Privacy and Cybersecurity Practice Top Ranked in Legal 500 United States, EMEA Guides
2 Minute Read
May 30, 2013
News
Hunton & Williams LLP's Global Privacy and Data Security Practice Tops Chambers Rankings
3 Minute Read
June 7, 2012
News
Hunton & Williams LLP Maintains Top-Tier Rankings in Chambers USA 2012
1 Minute Read
August 1, 2011
News
Aaron Simpson talks to Bloomberg on data breach disclosure
June 15, 2011
News
Hunton & Williams LLP Keeps Top Spot in Privacy Rankings
1 Minute Read
May 12, 2011
Media Mentions
Quoted, USA: Senator introduces Do-Not-Track Online Act 2011, DataGuidance
July 13, 2010
News
Hunton & Williams Tops Privacy Rankings
4 Minute Read
April 8, 2010
News
Hunton & Williams LLP Announces 2010 Partner Promotions
June 26, 2009
News
Aaron Simpson talks about new security breach laws in SC, Alaska to DataGuidance
4 Minute Read
November 17, 2008
News
Hunton & Williams LLP Voted Top Privacy Adviser for Third Year in Computerworld Poll

Aaron P. Simpson