Aaron advises clients on a broad range of complex privacy and cyber-security matters, including state, federal and international privacy and data security requirements as well as the remediation of large-scale data security incidents. He helps clients identify, evaluate and manage risks associated with their collection and use of information.
Aaron’s work has been recognised by Chambers and Partners, New York Super Lawyers, Computerworld and The Legal 500. Aaron was named as a leading lawyer by The Legal 500 United States in cyber law (2016), and as a recommended lawyer in data protection and privacy (2009-2016); selected as a “Super Lawyer”, New York Super Lawyers (2015); selected as a “Leader in the Field”, nationwide, privacy and data security, up and coming, Chambers USA (2013); selected as a “Rising Star,” New York Super Lawyers (2011-2014); named among the “Best Privacy Advisers”, Computerworld magazine (2008).
He is a sought-after media resource on privacy issues and has been quoted in publications such as Bloomberg Businessweek Magazine, Corporate Secretary, DataGuidance and TIME Magazine. Aaron regularly speaks to industry groups, legal organisations, government agencies and educational institutions. He has written numerous articles, book chapters and handbooks on privacy and information security issues.
Aaron advises clients with respect to US and international privacy and information security requirements, including GLB, HIPAA, CAN-SPAM, COPPA, state information security laws, the PCI data security standard, and EU directives governing general data protection, e-commerce and data retention in addition to the US-EU privacy shield and emerging requirements under the EU’s general data protection regulation. He advises clients on all legal issues associated with information security breach events pursuant to requirements imposed by US state law, the HITECH Act, interagency guidance and international law.
Aaron is a member, board of editors, Pratt’s Privacy & Cybersecurity Law Report; member, section of antitrust law - privacy and information security committee, American Bar Association; member, Association of the Bar of the City of New York; former member, information technology law committee of the Bar of the City of New York.
Recent news articles Aaron has written or been quoted in include: “5 Keys For Financial Firms in EU Data Protection Overhaul”, Law 360 (18 October 2016); “Aaron Simpson Discusses Digital Fraud in the UK”, The Register (25 July 2016); “Corporate Secretary Discusses Global Workplace Privacy Rights with Aaron Simpson”, Corporate Secretary (17 February 2016); “Aaron Simpson Comments on Clarity of EU-US Privacy Shield”, Corporate Counsel, (2 February 2016). Aaron has also written a number of alerts on the Privacy and Information Security Law Blog and Hunton Retail Law Resource.
In terms of recent publications: Aaron was co-author of “The Privacy Shield Gets the Green Light from the European Union”, Bloomberg BNA World Data Protection Report (15 August 2016); author, “European Commission Presents EU-US Privacy Shield”, Pratt’s Privacy & Cybersecurity Law Report (May 2016); co-author, USA, The International Comparative Legal Guide to: Data Protection 2016 (3rd edition, April 2016); co-author, “Best Practices for Data Privacy and Security in the HR Space”, Practical Law Practice Note (30 December 2015); co-author, “Dealmakers Ignore Cyber Risks at Their Own Peril”, Pratt’s Privacy & Cybersecurity Law Report (October 2015).
Aaron’s recent event appearances include: cpeaker, “To Shield or Not to Shield? That Is the Question”, IAPP Europe Data Protection Congress (10 November 2016); speaker, “Data Transfers: Devising a Practical Framework for Global Data Flows”, PDP Conferences (14 October 2016); speaker, “Cyber Security and Data Breach: Preparing for Mandatory Breach Reporting”, PDP Conferences (14 October 2016); speaker, “Brexit: What Will the Impact Be? “Impact of Brexit from a Data Privacy and Security Law Perspective’”, City of London Corporation and TORI Global, (27 September 2016); speaker, “Privacy and Cyber Security Issues in Vendor Management”, Retail Industry Leaders Association; speaker, “PLI EU-US Privacy Shield: A How-To Guide”, (12 April 2016).
Aaron gained his JD at the University of Virginia School of Law (2002), and is admitted to the Bar in New York.
WWL says: Aaron Simpson is recognised for his "strong expertise" in the data privacy and cybersecurity fields.
This biography is an extract from Who's Who Legal: Telecommunications Media & Technology which can be purchased from our Shop.