Colleen Theresa Brown

Practice Areas

COLLEEN THERESA BROWN focuses on privacy, cybersecurity, data protection and emerging technology issues for a diverse group of companies, including those in the financial, life sciences, telecommunications, media, retail and manufacturing sectors. Over the past decade, she has focused her practice on global data protection compliance, litigation and regulatory enforcement actions, and data breach response, crisis management and internal investigations. Colleen is a recommended lawyer by Legal 500 USA for Cyber Law, and Legal 500 notes, “Colleen Brown demonstrates ‘confidence in making judgment calls on complex issues.’” Global Data Review named Colleen to its “Women in Data” list in 2022, The Lawyer Network recognized Colleen as Cybersecurity Lawyer of the Year in Washington, D.C. in 2021, and Washingtonian magazine named Colleen among its “Top Lawyers” for Cybersecurity in 2019.

Her counseling experience includes cyber risk and data breach management, corporate data protection and privacy compliance programs, international data protection and cross-border transfer, Big Data, Internet of Things, electronic surveillance, trade secrets, social media, cloud computing and online brand protection. She also has significant experience in counseling and strategy under CAN-SPAM, CCPA, CFAA, COPPA, ECPA, ESIGN, FCRA, FOIA, GDPR, GLBA, HIPAA, the Privacy Act, TCPA, Unfair and Deceptive Trade Practices, state privacy and common law claims including defamation and privacy torts, privacy regulations and enforcement in federal agencies including the Federal Trade Commission and the Federal Communications Commission, and industry self-regulation on privacy matters, including those related to online advertising and PCI DSS compliance. She also serves on the firm’s COVID-19 Task Force. Colleen is a Certified Information Privacy Professional/United States through the International Association of Privacy Professionals (IAPP).

In addition to counseling and litigation related to data protection, her work also includes counseling and negotiation of data-driven agreements, as well as privacy and cybersecurity diligence and integration planning for mergers and acquisitions.