Bio

Sean is a member of the firm’s Privacy & Data Security practice group.  He counsels clients on legal requirements regarding privacy, data security, and data protection applicable to their businesses.  He has experience with a variety of federal, state, and foreign privacy and data security laws and regulations, including biometric privacy laws such as the Illinois Biometric Information Privacy Act (BIPA), state comprehensive privacy laws, including the California Consumer Privacy Act of 2018 (CCPA) and California Privacy Rights Act (CPRA) and other statutes adopted in, among other states, Colorado, Connecticut, Utah, and Virginia, CAN-SPAM, , the EU ePrivacy Directive and General Data Protection Regulation (GDPR), the Fair Credit Reporting Act (FCRA), the Family Educational Rights and Privacy Act (FERPA), the Gramm-Leach-Bliley Act (GLBA) and state financial services privacy laws, including the NYDFS Cybersecurity Regulations, HIPAA, state data breach notification laws, the Stored Communications Act, the Video Privacy Protection Act (VPPA), and the Wiretap Act.  Sean has significant experience guiding clients through responses to security incidents and data breaches, including responses to regulatory investigations into data breaches, drafting privacy policies and notices, creating and advising on the administration of privacy and security compliance programs, drafting and negotiating privacy and security contracts, and advising on privacy and data security issues in M&A transactions. Sean is a Board Certified Specialist in Privacy and Information Security Law and holds a CIPP/US certification from the International Association of Privacy Professionals (IAPP).

Sean received his J.D. from the University of Chicago Law School, where he received the Victor McQuistion Scholarship.  Sean received his B.A. in Anthropology, with honors and distinction, from the University of North Carolina at Chapel Hill.  Before joining the firm, Sean practiced in the privacy & data security and commercial litigation groups at a regional North Carolina firm.

Sean frequently writes on privacy, data security, and data protection matters. Visit our privacy law blog to read his take on current data privacy-related events.

  • Listed among North Carolina Super Lawyers – Rising Star (2020-2024)
  • Chapter Chair (2021-2023), IAPP Raleigh-Durham KnowledgeNet
  • Former Member (2020-2022), Dix Park Community Committee
  • Mentor, Leadership Council on Legal Diversity
  • Member, North Carolina State Bar Association Privacy & Data Security Committee
  • Advised national pharmacy client on responding Office for Civil Rights (OCR) investigations into HIPAA compliance.
  • Drafted information security and HIPAA policies and procedures for healthcare startup.
  • Counseled AdTech publisher, AdTech service providers, and data brokers on privacy legal compliance and contracting issues.
  • Advised video streaming services, smart TV and IOT software providers, and a national retailer on VPPA issues and associated litigation risk.
  • Advised multiple portfolio companies of private equity firm on EU and U.S. state law compliance.
  • Negotiated privacy, data protection, and information security contracts for major financial institution.
  • Negotiated and advised on privacy and security purchase agreement provisions in acquisition of an international consumer research platform.
  • Counseled national financial institution on multistate data breach response and subsequent regulatory inquiries.
  • Advised educational institution on compliance with General Data Protection Regulation and ePrivacy Directive.
  • Advised mobile health application developers on global privacy compliance and privacy-by-design.
  • Privacy and Information Security Law Specialist, North Carolina State Bar Board of Legal Specialization
  • Certified Information Privacy Professional, U.S. (CIPP/US), International Association of Privacy Professionals (IAPP)

Recent posts from our privacy and data security blog, Practical Privacy.

  • Fortune Cookies: Predicting Privacy Challenges for Targeted Advertising; NCBA 2023 Privacy & Data Security Annual Program; Cary, NC; October 13, 2023
  • If You Give a Regulator a Cookie: Targeted Advertising Challenges in the Current Privacy Legal Landscape; Panelist, Moderator; IAPP Raleigh-Durham KnowledgeNet; Raleigh, NC; December 8, 2022
  • Where Are We Now?: The CCPA 9 (Or So) Months In; Moderator; IAPP Raleigh-Durham KnowledgeNet; Raleigh, NC; September 23, 2020
  • Data Breach Response: Practical Tips for Reducing Litigation Risk; Presenter; Annual Meeting of the North Carolina Association of Defense Attorneys, Hilton Head Island, SC, June 16, 2018
  • The Inside Job: Cybersecurity, Trade Secret Protection, and Departing Employee Data Theft; Panelist; Association of Corporate Counsel-Research Triangle Area Chapter, Cary, NC, May 16, 2018