Emerging Companies and Startups

Big Data


  • Counsel emerging companies on general privacy laws and regulations as well as sector-specific obligations governing the collection, use and sharing of highly regulated data such as precise location, financial information, health data, oral and electronic communications, biometric and genetic data, children's information, credit and background data, and many other types of sensitive data.
  • Assist startups in obtaining intellectual property rights over datasets and data lakes, algorithmic processes, and the outputs of such processing.
  • Draft and negotiate technology transactions and licensing agreements that involve access to and processing of vast amounts of data.
  • Advocate for and defend emerging companies that have been targeted for enforcement actions and regulatory inquiries by the Federal Trade Commission, state attorneys general, Congress, and foreign regulators and data protection authorities due to the novelty of their products and business models and concerns about consumer protection and data use.
  • Assisted startup clients in the FinTech industry in filing patents for methods and apparatus for preventing fraudulent use of stolen payment card data for online or remote transactions.
  • Negotiated licensing and joint development agreements for a software startup with a large original equipment manufacturer to develop software for facial recognition patterns.
  • Advise companies in the computer vision and predictive analytics industries on intellectual property issues around the sources of data that they want to use for machine learning and natural language processing.
  • Advise health and biomedical startups on privacy, security and breach notification compliance under specialized laws like the Health Insurance Portability and Accountability Act (HIPAA). We also develop procedures for ensuring that sensitive information is secured and de-identified in accordance with HIPAA standards.
  • Counsel startups on the contractual, intellectual property and regulatory considerations involved in conducting data aggregation, de-identifying user information and reusing consumer information to monetize the data.
  • Represented startups in protecting intellectual property for systems and methods for linking devices to user accounts, and for securely loading, storing and transmitting data from certain devices to systems.
  • Negotiate analytics services agreements for use by startups in retail, video, healthcare, political campaigns and financial services.
  • Draft and revise data security policies and procedures as appropriate for early-stage companies, including ensuring that such policies comply with the bare minimum required by such laws as the Massachusetts data security regulations, the US Gramm-Leach-Bliley Act, and the EU General Data Protection Regulation.