Joseph J. Lazzarotti is a principal in the Berkeley Heights, New Jersey, office of Jackson Lewis P.C. He founded and currently co-leads the firm's Privacy, Data and Cybersecurity practice group, edits the firm’s Privacy Blog, and is a Certified Information Privacy Professional (CIPP) with the International Association of Privacy Professionals. Trained as an employee benefits lawyer, focused on compliance, Joe also is a member of the firm’s Employee Benefits practice group.
In short, his practice focuses on the matrix of laws governing the privacy, security, and management of data, as well as the impact and regulation of social media. He also counsels companies on compliance, fiduciary, taxation, and administrative matters with respect to employee benefit plans.
Privacy and cybersecurity experience - Joe counsels multinational, national and regional companies in all industries on the broad array of laws, regulations, best practices, and preventive safeguards. The following are examples of areas of focus in his practice:
-
Advising health care providers, business associates, and group health plan sponsors concerning HIPAA/HITECH compliance, including risk assessments, policies and procedures, incident response plan development, vendor assessment and management programs, and training.
-
Coached hundreds of companies through the investigation, remediation, notification, and overall response to data breaches of all kinds – PHI, PII, payment card, etc.
-
Helping organizations address questions about the application, implementation, and overall compliance with European Union’s General Data Protection Regulation (GDPR) and, in particular, its implications in the U.S., together with preparing for the California Consumer Privacy Act.
-
Working with organizations to develop and implement video, audio, and data-driven monitoring and surveillance programs. For instance, in the transportation and related industries, Joe has worked with numerous clients on fleet management programs involving the use of telematics, dash-cams, event data recorders (EDR), and related technologies. He also has advised many clients in the use of biometrics including with regard to consent, data security, and retention issues under BIPA and other laws.
Benefits counseling experience - Joe's work in the benefits counseling area covers many areas of employee benefits law. Below are some examples of that work:
-
As part of the Firm's Health Care Reform Team, he advises employers and plan sponsors regarding the establishment, administration and operation of fully insured and self-funded health and welfare plans to comply with ERISA, IRC, ACA/PPACA, HIPAA, COBRA, ADA, GINA, and other related laws.
-
Guiding clients through the selection of plan service providers, along with negotiating service agreements with vendors to address plan compliance and operations, while leveraging data security experience to ensure plan data is safeguarded.
More Legal and Business Bylines From Joseph J. Lazzarotti
- More EEOC COVID-19 Guidance: Testing, Screening, Managers, Confidentiality, and Telework - (Posted On Wednesday, September 09, 2020)
- HIPAA Covered Entities and Business Associates Need an IT Asset Inventory List, OCR Recommends - (Posted On Friday, September 04, 2020)
- NSA Releases Helpful Guidance for Limiting Location Data Exposure - (Posted On Thursday, August 20, 2020)
- National Biometric Information Privacy Act, Proposed by Sens. Jeff Merkley and Bernie Sanders - (Posted On Wednesday, August 05, 2020)
- Will the Public Health Emergency Privacy Act Make it into the Next Stimulus Package? - (Posted On Monday, August 03, 2020)
- Transferring Employee Data after EU-U.S. Privacy Shield Invalidated - (Posted On Tuesday, July 28, 2020)
- OCR Warns HIPAA Covered Entities: When You Learn About HIPAA Violations, Fix Them - (Posted On Friday, July 24, 2020)
- EU-U.S. Privacy Shield Program for Transfer of Personal Data to U.S. Found Invalid - (Posted On Wednesday, July 22, 2020)
- California Attorney General Issues CCPA FAQs - (Posted On Tuesday, July 14, 2020)
- Is Personal Information of Retirement Plan Participants an ERISA Plan Asset? - (Posted On Friday, July 10, 2020)
Joseph J. Lazarotti is a Privacy, e-Communication and Data Security Principal with Jackson Lewis who has been named a 2019 National Law Review Go-To Thought Leader for his writing on data privacy and cybersecurity concerns. His coverage includes the ongoing saga of the California Consumer Privacy Act (CCPA), along with major court decisions affecting privacy and legislation nationwide and globally–corporate and otherwise–impacting the landscape of employer privacy. His writing is exhaustive and thorough, and National Law Review readers can count themselves well informed in cybersecurity by following Mr. Lazarotti’s thought leadership.