• |

Nov. 19, 2025

Tips From a Regulator, In-House and Outside Counsel on Navigating Regulatory Inquiries and Investigations

  • Vincent Pitaro
    Cybersecurity Law Report
A CPO has just received a letter from the local data protection authority asking for information about the company’s privacy policy and data deletion practices. Now what? To assist organizations in navigating such requests, this article synthesizes key takeaways from an IAPP Privacy.Security.Risk. 2025 conference panel on which speakers from the California Privacy Protection Agency, RingCentral, Hintze Law and the Future of Privacy Forum took a deep dive into the regulatory investigation process. It discusses how regulators identify potential targets, addressing initial communications, interactions with outside counsel, the meet and confer process, confidentiality concerns, document production and interviews, and the settlement process. See “State Privacy Regulators Share Enforcement Agenda and How to Ensure a Smoother Investigation” (May 14, 2025).

To read the full article

Continue reading your article with a CSLR subscription.

Most-Read Articles

Women to Watch: Contributions, Achievements and Observations of Outstanding Female Professionals

To mark International Women’s Day, women editors and reporters at ION Analytics interviewed outstanding women in the industries and jurisdictions we cover. In this part, Law Report Group editors Jill Abitbol, Robin L. Barton and Megan Zwiebel profile notable women in data privacy, cybersecurity, private funds and anti-corruption law, including Anne-Gabrielle Haie, Jessica Lee, Micaela McMurrough, Laura Perkins, Amanda Raad, Madelyn Calabrese, Ranah Esmaili and Genna Garver. Enjoy reading their inspiring remarks here.

Celebrating Data Privacy Day 2025

Read the full brief here.

Cybersecurity Awareness Month

Read the full brief here.