James Shreve

Jim Shreve serves as a trusted adviser to clients facing complex cybersecurity and privacy issues — particularly those in the country's most highly regulated industries.

Jim advises all types of companies on the myriad legal concerns surrounding confidential information and how such information is stored and transmitted. Applying the law to rapidly changing technology and software capabilities, Jim provides clients with a profile of their potential risk, then works closely with executive leadership, legal, IT and compliance information security teams to develop a comprehensive and practical plan for risk avoidance and responding to cyber and data-related issues.

In a security breach, Jim draws on his years of experience handling thousands of incidents to counsel clients through every step of cyber and information security incidents, including notification, reporting and all associated state, federal and global regulatory requirements.

Jim helps clients develop robust and responsive security and privacy policies and governance documents, meet applicable data safeguarding requirements and implement compliance programs.

Jim has presented on a variety of in-the-news cybersecurity topics for industry organizations and associations, including the RSA Conference, International Association of Privacy Professionals, ABA and Mortgage Bankers Association.

He is a Fellow of Information Privacy and holds CIPP/US and CIPT certifications from the International Association of Privacy Professionals.

Jim's experience inclues:

Data Breach Response

• Has assisted clients through thousands of data security incidents, including interactions with federal, state and foreign agencies, forensic investigations, consumer notifications and remedial following any incident

Regulatory Advice

• Guides client responses to regulatory inquiries, investigations and enforcement actions relating to privacy, information security or cybersecurity issues
• Coordinates with a broad range of financial institutions, including banks, Securities and Exchange Commission (SEC)-regulated entities, mortgage lenders or servicers, or service providers to financial institutions in meeting bank-level security expectations of regulators or business partners. Jim also counsels entities working with financial institutions and who must meet the more stringent security requirements of the financial industry
• Works with higher education institutions to comply with legal and regulatory requirements for privacy and cybersecurity

Fintech Experience

• Advises new and expanding fintech companies regarding the application of privacy and security requirements to new technologies and business models as well as related financial services requirements, such as payments standards, anti-money laundering compliance and licensing

Artificial Intelligence

• Works with clients in assessing risks from and complying with existing and new legal guardrails in the development and use of artificial intelligence platforms