Photo of Kathryn Rattigan

Kathryn Rattigan is a member of the Business Litigation Group and the Data Privacy and Security Team. She concentrates her practice on privacy and security compliance under both state and federal regulations and advising clients on website and mobile app privacy and security compliance. Kathryn helps clients review, revise and implement necessary policies and procedures under the Health Insurance Portability and Accountability Act (HIPAA). She also provides clients with the information needed to effectively and efficiently handle potential and confirmed data breaches while providing insight into federal regulations and requirements for notification and an assessment under state breach notification laws. Prior to joining the firm, Kathryn was an associate at Nixon Peabody. She earned her J.D., cum laude, from Roger Williams University School of Law and her B.A., magna cum laude, from Stonehill College. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.

After the attacks on JBS and Colonial Pipeline, the U.S. Treasury Department will likely consider increasing its enforcement of anti-money-laundering laws and adopt new reporting requirements for cryptocurrency transactions.

In ransomware attacks, hackers demand payments after locking victims out of their computer networks; de-anonymizing payments could create a disincentive for these hackers to continue pushing

Last week, Diabetes, Endocrinology & Lipidology Center Inc. (DELC) of West Virginia reached a $5,000 settlement with the Office for Civil Rights (OCR) over  allegations that it failed to provide timely access to a patient’s health records.   The OCR alleged that DELC waited more than two years to send a minor’s medical records to their

Last week, the Eleventh Circuit held that an invasion-of-privacy exclusion in an insured’s policy barred coverage and that Liberty Insurance Underwriters Inc.  did not have to cover the $60.4 million settlement of  a class action against the insured, iCan Benefit Group LLC (iCan), for sending robotexts in alleged violation of the Telephone Consumer Protection Act.

This week, the Federal Aviation Administration (FAA)  announced its Unmanned Aircraft Systems (UAS) Support Center Case Management System (CMS), designed to streamline how industry stakeholders’ questions are answered and provide responses in a more timely manner. This new process will use a Contact Customer Support form that allows the public as well as stakeholders to

The Defense Innovation Unit, the Silicon Valley outpost of the Department of Defense (DOD), is seeking commercial algorithms to help build an automated network of military drones to accomplish complex tasks using artificial intelligence (AI). The Unit is requesting algorithms specific to networking and decision-making (rather than computer vision or autopilot systems) to help the

Lifespace Communities Inc. (Lifespace), a retirement community chain with more than 15 communities in eight states, recently settled a class action for $987,850 for its alleged violation of the Illinois Biometric Information Privacy Act (BIPA).

The class action was filed in June 2020 in the U.S. District Court for the Northern District of Illinois by

Many U.S. employers offer their employees financial wellness programs to complement retirement planning and investment advice. This may include emergency savings plans and household budgeting tips, for example. Many of these employers utilize their retirement plan service providers for those trainings. Not only do those companies have the knowledge and expertise in this area, but

Governor Kevin Stitt signed a law in Oklahoma this week allowing small autonomous vehicles to operate on sidewalks and crosswalks (and on roadways in certain cases – maybe a pedestrian is in its path or there’s a hazard on the sidewalk). This law is aimed at encouraging autonomous vehicle delivery service companies to set up

In Gates v. Eagle Family Foods in the Northern District of Illinois, Gregory Gates, a former sanitation and assembly line employee, alleges that Eagle Foods collected and retained his handprints without consent as part of his timekeeping requirements while he worked at the Waukegan facility in 2016 and 2018.

Eagle Family Foods (Eagle Foods) says

Calling all Thin Mints fans! Girl Scout Thin Mints cookies can now be delivered right to your doorstep – by drone… IF you live in Christiansburg, Virginia. The town has been a testing arena for commercial drone delivery by Wing (a subsidiary of Alphabet, Google’s parent company). Before Girl Scout Thin Mints, starting in 2019,