Martin T. Tully

Practice Areas

Martin T. Tully, Partner at Redgrave LLP, is a nationally recognized attorney whose extensive focus on eDiscovery, information governance, and data privacy and cybersecurity have established him as a force in the information law space. With over three decades of experience representing companies and individuals in complex and high-stakes commercial litigation, he is skilled at navigating the space between law and technology and strategically leverages this knowledge to achieve his clients’ goals.

Prior to joining Redgrave LLP, Martin was a founding partner at Actuate Law LLC. His previous experience also includes roles at Akerman LLP, where he served as the co-chair of the Data Law Practice; Katten Muchin Rosenman LLP; and Kirkland & Ellis LLP.

Professional Memberships

• Chair, Steering Committee of the Sedona Conference Working Group on Electronic Document Retention and Production (WG1)

• Member, Sedona Conference Working Group on Data Security and Privacy Liability (WG11)

• Member, ABA Section of Litigation, Privacy, and Data Security Committee

• Member, International Association of Privacy Professionals (IAPP)

• Member, EDRM Global Advisory Council

• Former Director-at-Large, Association of Certified E-Discovery Professionals (ACEDS), Chicago Chapter

• Former Member, 7th Circuit Council on E-Discovery and Digital Data

Publications

Exemplar Publications

• “It’s 10 P.M. Do You Know How Secure Your Data Is?” (Redgrave LLP) (March 2023) (with Chuck Ragan)

• “Data Minimization Meets Defensible Disposition: Just Say No to ROT And Over-Retention of Personal Information” (Cybersecurity Law & Strategy and Law.com) (December 2022) (with Nick Snavely)

• “The Sedona Conference Primer on Managing Electronic Discovery in Small Cases” (

• “White House Adds Its Voice to Growing Consensus on AI Ethical Requirements” (Redgrave LLP) (October 2022) (with Eliza Davis)

• “Data Minimization and Avoiding the Over-Retention of Personal Information” (Thomson Reuters Practical Law Litigation and Practical Law The Journal) (October 2022)

• “How to Lose a Privilege In 10 Steps (Or Fewer): Recent Case Clarifies Scope of FRE 502(d) and Marital Privilege” (Legaltech News) (July 28, 2022) (with Tara Emory and Nick Snavely)

• “The CPRA Will Soon Amend and Supplement the CCPA, Adding New Requirements Applicable to Covered Businesses with California Employees. Is Your Organization Prepared?” (Redgrave LLP) (June 2022) (with Eliza Davis)

• “Facial Recognition Proliferation: Litigation and Legal Implications of Biometric Technologies” (1 JOURNAL OF EMERGING ISSUES IN LITIGATION 31) (Winter 2021) (with Debbie Reynolds)

• “Cheap Tricks: Challenging Fabricated Evidence” (ABA 14th Annual National Institute on E-Discovery Symposium Paper) (April 2020) (co-author)

• “Chapter 10: Electronic Discovery in Civil Litigation” (American Bar Association Guide for In-House Counsel: Practical Resource to Cutting Edge Issues) (2019) (co-author)

• “Employee Data Gets Promoted: What are the GDPR’s Impacts on Employee Data, and What Should US Employers Do?” ABA 13th Annual National Institute on E-Discovery Symposium Paper (April 2019) (co-author)

Recent Speaking Engagements

• Moderator, “Have Traditional Documents Gone the Way of the Dinosaur? What it Means for the Conduct of eDiscovery,” 12th Annual EDI Leadership Summit (October 2022)

• Panelist, “Privacy Soup: CCPA, CPA, ADPPA, GDPR, etc. — Where Do U and I Fit In?” ASU-Arkfeld eDiscovery, Law, and Technology Conference (October 2022)

• Panelist, “Cybersecurity 360 – Addressing the Threat Landscape with Key Players, including Regulators, Insurers, Customers and Remote Workers,” ASU-Arkfeld eDiscovery, Law, and Technology Conference (October 2022)

• Panelist, “Addressing the Cybersecurity Threat Landscape in the Legal Services Industry,” U.S. Legal Support Webinar (June 2022)

• Panelist, “Rule 45 Subpoenas to Non-Parties: You Can’t Always Get What You Want. (But If You Try, Sometimes, You Just Might Find, That You Get What You Need),” National eDiscovery Leadership Institute (June 2022)

• Panelist, “When Data is Held Hostage: A Tripartite Workshop on Best Practices for Preventing, Responding to, and Recovering from a Ransomware Attack,” MER Conference 2022 (May 2022)

• Presenter, “When Privacy Goes Public: The Latest in the New Wave of U.S. Data Privacy Laws,” MER Conference 2022 (May 2022)

• Panelist, “Attack of the Collaboration Apps,” ABA 16th Annual National Institute on E-Discovery (May 2022)

• Panelist, “Search 2.0: Integrating AI with Keywords to Revolutionize Document Search,” Legalweek 2022 (March 2022)

• Presenter, “Today’s Cybersecurity Modern Warfare Defensive Strategy,” Guidepoint Security Webinar (March 2022)

• Panelist, “Discovery Scoping and Proportionality Analysis Just Got Easier,” Association of Certified E-Discovery Specialists (ACEDS) (February 2022)

• Moderator, “Migration, Integration, Disposition, OH MY!” 2021 Georgetown Law Advanced eDiscovery Institute (November 2021)

• Moderator, “Privacy and Data Security Legislative and Regulatory Update,” The Sedona Conference Working Group 11 on Data Security and Privacy Liability (WG11) Midyear Meeting (October 2021)

• Panelist, “Unconventional Advice on ESI Protocol Negotiation: Beware What You (Blindly) Ask For Or Agree To,” 6th Annual Conference of the National eDiscovery Leadership Institute (NeLI) (August 2021)

• Panelist, “Better Together? E-discovery with Teams and Other Collaboration Platforms,” ILTACON 2021 (August 2021)

• Presenter, “Protecting Your Information Infrastructure: Everything Municipalities Should Know About Cybersecurity But Were Afraid To Ask,” DuPage Mayors & Managers Conference Workshop Meeting (August 2021)

Career

Some of Martin’s recent work experience in the information law space includes:

• Advising clients regarding the applicability of, compliance with, and best practices regarding requirements of data privacy and security laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act of 2018 (CCPA), the NYDFS Cybersecurity Regulation, and related privacy regulations

• Representing clients in investigating, responding to, and remediating various data breach and data security incidents

• Managing corporate vulnerability assessments and developing updates and enhancements to data security policies and procedures, including implementing new policies surrounding data classification

• Advising clients on the drafting and negotiation of data processing addenda, standard contractual clauses, and data transfer agreements

Education