David Saunders (CIPP/US, CIPP/M) is co-chair of the firm’s Data Privacy and Cybersecurity Practice and a partner in its Complex Commercial Litigation Practice. Through the lens of a litigator, Mr. Saunders helps clients mitigate and manage risks related to data privacy and cybersecurity, from counseling on compliance with privacy regulations and managing data incident responses, to navigating regulatory investigations and handling biometric and other privacy-related litigation. Mr. Saunders works collaboratively with a diverse range of clients, from small business and pro bono clients to multinational Fortune 100 companies, understanding and advising on their data practices to provide guidance on the myriad issues that arise in today’s digital world.
Mr. Saunders has experience conducting risk assessments, developing privacy programs, drafting privacy policies, performing due diligence for corporate transactions, negotiating vendor agreements and working with clients through data incident response. Mr. Saunders regularly counsels on HIPAA, HITECH, GLBA, CCPA and state law privacy obligations, including engaging with key rulemakers at the state level to advance clients’ interests. He has litigated and helped resolve matters related to data privacy and cybersecurity issues, including navigating potential and actual regulatory investigations.
A member of the International Association of Privacy Professionals, Mr. Saunders is active in a number of community and professional associations including the Sargent Shriver National Center on Poverty Law, the Seventh Circuit Bar Association’s Board of Governors and serves as the immediate past chair of the Illinois State Bar Association’s Privacy and Information Security Law Committee. Mr. Saunders was a fellow in the Leadership Greater Chicago class of 2018.
Mr. Saunders maintains an active pro bono practice, having represented inmates in various actions in state and federal courts, and providing privacy program development, counseling and training to non-profits.