Site Search
Professionals 12 results
Capabilities 12 results
Practice Area
Privacy: Regulated Personal Information (RPI)
Winston’s Regulated Personal Information (RPI) Practice offers seamlessly integrated counseling and litigation services to companies looking for practical and solution-oriented assistance navigating the compliance, regulatory, and private class action enforcement risks presented by the emerging patchwork of complex (and often conflicting) privacy laws in the United States and beyond.
Practice Area
For decades, Winston has represented a broad array of clients in the insurance industry, including some of the world’s largest and best-known insurers. Our prowess in and understanding of the insurance industry encompasses not only its products, practices, and services, but also the increasing challenges posed by a world increasingly characterized by a fast-evolving technological landscape as well as financial, political, and environmental instability. Accordingly, Winston’s lawyers are among the most sought-after in the industry—not only by companies currently facing high-stakes litigations and investigations, but by those looking to take preventive action now in order to mitigate and manage their risk in the future.
Practice Area
Winston takes a strategic approach to privacy and data security, integrating our extensive capabilities across practices to provide our clients with cutting-edge privacy and data security counseling, crisis management, security incident investigation and notification management, defense of data security class action litigation and regulatory inquiries, and international data protection. Our Global Privacy & Data Security Practice features a core team of privacy professionals and is bolstered by more than 40 attorneys from a variety of other disciplines firmwide. Our team combines compliance counselors, transactional lawyers, former government regulators and federal prosecutors, seasoned investigators, and experienced litigators. Few firms can rival our in-depth, sophisticated, and integrated experience in this area.
Experience 1 result
Experience
|October 1, 2023
Class Action Plaintiff Sent Packing After Winston Secures Enforcement of Binance’s Terms of Use
Insights & News 78 results
In the Media
|March 12, 2025
|2 Min Read
Sean Wieber Discusses Growth of Privacy Class Actions Involving Biometrics and Genetics with Law.com
Winston & Strawn Global Privacy & Data Security Practice Co-Chair Sean Wieber was quoted in a Law.com article discussing the growth of privacy class action lawsuits against employers involving biometrics and genetics. In recent years, privacy disputes have emerged under Illinois’ Biometric Information Privacy Act (BIPA) as employees challenged how employers stored data, such as fingerprints used to clock in and out of work. Favorable rulings for plaintiffs in these cases exposed corporations to a potential risk for high costs for each violation, but legislative changes put a limit on the payout potential. Now, lawsuits are emerging under the Illinois Genetic Information Privacy Act (GIPA), which has statutory damages three times higher than BIPA, against employers who allegedly required employees or job seekers to provide “genetic information,” or family medical background, as a condition of employment.
Seminar/CLE
|December 10, 2024
NYDFS Enforcement and Supervision Trends
On December 10, our New York office hosted a Financial Crimes Compliance Group panel discussion on “Enforcement and Supervision Trends: What DFS-Licensed Institutions Need to Know.” Our panelists, led by former New York Department of Financial Services (NYDFS) insiders, including Richard Weber, prior General Counsel, gathered for an engaging discussion. They provided insight on NYDFS enforcement and supervisory priorities, along with recent licensing-requirement updates. The panelists discussed best practices for responding to DFS actions, negotiating penalties, and multi-agency dynamics.
Recognitions
|October 22, 2024
|2 Min Read
Three Winston Attorneys Named as 2024 Law360 MVPs
Winston partners Jeffrey Kessler, Tom Melsheimer, and Sean Wieber merited inclusion on Law360’s 2024 MVPs list. As described by Law360, this year’s winners “have distinguished themselves from their peers by securing hard-earned successes in high-stakes litigation, complex global matters and record-breaking deals.”
Other Results 13 results
Site Content
The Illinois Biometric Invasion of Privacy Act (BIPA), enacted in 2008, grants Illinois consumers the right to their own biometric data, such as fingerprints, retina or iris information, voiceprints, and DNA. Under the BIPA, private companies are prohibited from collecting biometric information unless (1) the person consents in writing and (2) the companies inform the person in writing of what data is being collected, for what purpose, and for how long. Besides the notice and consent requirement, the law also bans any company from selling or otherwise profiting from consumers’ biometrics.
Site Content
The Illinois Genetic Information Privacy Act (GIPA), enacted in 1998, prohibits employers and their agents from conditioning employment on genetic data, or from using genetic data in discriminatory ways. The statute also prohibits insurers from seeking genetic information to use in connection with accident or health insurance policies.