Ryan Logan is a special counsel in S&C’s General Practice Group and a member of the Firm’s Privacy, Cybersecurity Group and Intellectual Property & Technology Transactions Groups. His practice focuses on complex, cross-border data privacy and cyber breach matters, including compliance with state, federal and international privacy laws, regulations and requirements. These include the California Consumer Privacy Act (CCPA), Texas Data Privacy and Security Act and other state and local privacy laws, EU General Data Protection Regulation (GDPR), New York Department of Financial Services’ Cybersecurity Regulation, Gramm-Leach-Bliley Act (GLB), Children’s Online Privacy Protection Act, Health Insurance Portability and Accountability Act of 1996 (HIPAA), Fair Credit Reporting Act (FCRA) and CAN-SPAM. Ryan also advises clients on all facets of data breach preparedness, response and remediation, including regulatory investigations; and develops records management policies and retention schedules.
Ryan has represented clients in financial services, pharmaceutical manufacturing, healthcare, life sciences, artificial intelligence, technology, automotive production, industrial services, energy, and consumer and retail. His deep knowledge of clients’ businesses and the evolving privacy landscape enables him to effectively guide clients through any privacy or cybersecurity issue. His experience includes advising on privacy and security issues in connection with mergers, acquisitions and joint ventures; developing privacy policies and procedures; providing product and strategic counseling on privacy and data analytics; developing cross-border data transfer compliance strategies; negotiating data processing agreements; advising on employee privacy issues; and assisting clients with responding to regulatory investigations, potential litigation or monitoring programs.
Ryan is a member of the International Association of Privacy Professionals.
Speaking Engagements
Panelist, “Creating a Culture of Privacy: Structuring a Privacy Program that Delivers,” ALM General Counsel Conference East (November 18, 2024).
Presenter, “The Interplay of the EU AI Act, GDPR, and U.S. State Privacy Laws,” American Conference Institute (June 15, 2024).
