Claire Gibbs

Claire focuses her practice on regulatory compliance, incident response and remediation, and advising clients on privacy and cybersecurity risks in complex M&A transactions and other commercial agreements. She is an IAPP Certified Information Privacy Professional for the United States (CIPP/US).

Claire counsels clients on numerous privacy and security laws and standards, including the California Consumer Privacy Act of 2018 (CCPA), Section 5 of the Federal Trade Commission Act (FTC Act), the Health Information Portability and Accountability Act (HIPAA), the Gramm-Leach-Bliley Act (GLBA), biometric privacy laws, the Children's Online Privacy Protection Act (COPPA), the Fair Credit Reporting Act (FCRA), the Telephone Consumer Protection Act (TCPA), CAN-SPAM and the Payment Card Industry Data Security Standard (PCI DSS). She also counsels US-based companies on international privacy laws such as the General Data Protection Regulation (GDPR).

Claire also has extensive experience guiding clients through the aftermath of data breaches, including working with forensic investigators to evaluate potential breaches, assessing and complying with legal notification requirements, engaging with law enforcement, responding to regulatory inquiries, and building litigation defenses. 

In addition, Claire maintains an active pro bono practice assisting nonprofits with privacy compliance.