Michelle A. Reed


speaker Michelle A. Reed

Convenience and security are inversely related. The more secure [a cybersecurity system] is, the more inconvenient it is.

Michelle Reed is a partner at Akin Gump Strauss Hauer & Feld LLP. She is co-leader of the firm’s cybersecurity, privacy and data protection practice. Her practice focuses on complex civil litigation, with an emphasis on securities and consumer class actions, as well as internal investigations. As a Certified Information Privacy Professional (CIPP/US, International Association of Privacy Professionals), Reed counsels corporations in data breach investigations and notifications, Securities and Exchange Commission (SEC) cybersecurity compliance and regulatory issues, privacy and data protection compliance, and cloud computing advice. Reed was recognized as Texas Trailblazer by Texas Lawyer in 2019 and listed in The Legal 500 Cyber Law practice from 2017 to 2019.

Talks by Michelle A. Reed


related talk After the Data Breach
After the Data Breach

In the digital era, the specter of data breaches looms large, presenting a complex challenge that intertwines cybersecurity with an intricate web of legal obligations. As businesses grapple with the dual threats of sophisticated cyber-attacks and the labyrinthine regulations governing data protection, Michelle Reed, a cybersecurity law expert (Akin Gump) provides a timely exploration of this landscape. Reed walks through some of the challenges raised by overlapping cybersecurity laws and reporting obligations, a task that has become as crucial as it is can be daunting.

Reed takes us through a number of the common challenges that companies face after a data breach and then explores some of the obligations under various data privacy laws.  From the European Union's General Data Protection Regulation (GDPR), known for its consent requirements and fines, to the United States' sector-specific Graham-Leach-Bliley Act (GLBA) and the burgeoning state laws like the California Consumer Privacy Act (CCPA), the legal requirements of a company operating across jurisdictions can be complex. This regulatory mosaic not only challenges organizations to maintain robust data protection practices but also to remain agile in their legal strategies when breaches occur. Reed underscores the significance of understanding these diverse legal landscapes, pointing out that the cost of non-compliance can extend beyond financial penalties to include reputational damage, contractual defaults, and consumer distrust.

Yet, amidst this complexity, Reed offers guidance. She emphasizes the importance of proactive preparation, including the development of comprehensive incident response plans and the strategic implementation of data retention policies that align with legal standards. At a time when AI is threatening a new wave of cyberattacks and governments around the world intensify their focus on data protection, Reed's insights can prove an indispensable resource for legal professionals and business leaders alike.