About the IAPP

Elizabeth Johnson leads the Privacy and Data Security Practice Group at Wyrick Robbins. Her practice addresses all aspects of privacy and data security law, including compliance initiatives to address major legal requirements such as HIPAA, Gramm-Leach-Bliley Act, the FCRA, the Telephone Consumer Protection Act, CAN-SPAM, data security breach notification, GDPR, Privacy Shield and other international data transfer mechanisms, and others. Elizabeth has assisted clients with a wide variety of implementation projects including cloud computing, health information exchanges, patient portals, bring-your-own-device, mobile applications, location tracking, online behavioral advertising, direct marketing, and complex customer insights initiatives. She also helps clients with government agency inquiries pertaining to privacy and data security, such as HIPAA compliance reviews conducted by the U.S. Department of Health and Human Services.