Photo of Kathryn Rattigan

Kathryn Rattigan is a member of the Business Litigation Group and the Data Privacy and Security Team. She concentrates her practice on privacy and security compliance under both state and federal regulations and advising clients on website and mobile app privacy and security compliance. Kathryn helps clients review, revise and implement necessary policies and procedures under the Health Insurance Portability and Accountability Act (HIPAA). She also provides clients with the information needed to effectively and efficiently handle potential and confirmed data breaches while providing insight into federal regulations and requirements for notification and an assessment under state breach notification laws. Prior to joining the firm, Kathryn was an associate at Nixon Peabody. She earned her J.D., cum laude, from Roger Williams University School of Law and her B.A., magna cum laude, from Stonehill College. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.

This week, Soaring Eagle Technologies, a drone data collection company that provides services for critical infrastructure in the U.S., received one of the first beyond-visual-line-of-sight (BVLOS) waivers from the Federal Aviation Administration (FAA) to fly unmanned aerial systems (UAS or drones) for commercial inspection missions under operational guidelines as opposed to specific operations in a

Cathy Lanier, the Chief Security Officer for the National Football League (NFL), is concerned about unauthorized drones flying above stadiums during games and the potential for accidents or even a mass attack on the crowd below. Last season, the NFL encountered some 1,400 drones over stadiums, even though there were no-fly-zone orders in place.

Pursuant

The Association for Uncrewed Vehicle Systems International (AUVSI), the world’s leading trade association for drones and other autonomous vehicles, announced a collaboration with the Department of Defense’s (DOD) Defense Innovation Unit (DIU) to further commercial cyber methodologies to design a shared standard. AUVSI’s effort is meant to expand the number of vetted drones that meet

California Governor Gavin Newsom signed the California Age-Appropriate Design Code Act (the Act) into law last week. This new law will require those online service providers likely to be accessed by children under 18 years old to comply with heightened privacy requirements, including incorporating privacy-by-default and privacy-by-design into their products. The 18-year age threshold for

Last year, the New York City Council passed Local Law Int. No. 1894-A, which amended the City’s administrative code to afford new protections to employees during the hiring and promotion processes. The law protects those individuals from unlawful bias by the employer when automated employment decision tools are used. Employers must conduct AI tool audits to

A new class action lawsuit was filed in federal court in California against Oracle America, Inc., alleging that it A new class action lawsuit was filed in federal court in California against Oracle America, Inc., alleging that it has been invading consumers’ privacy by using tracking technologies to build “digital dossiers” on individual internet users

In the first of its kind under the California Consumer Privacy Act (CCPA), Sephora settled an enforcement action with the California Attorney General for violation of the CCPA. Sephora must pay $1.2 million in penalties and implement a CCPA compliance program. The enforcement action alleged that Sephora permitted third parties to create customer profiles that

The Virginia Tech Mid-Atlantic Aviation Partnership (MAAP) was selected to lead one of the teams participating in the Federal Aviation Administration’s (FAA) unmanned aircraft systems (UAS) traffic management (UTM) Field Test. The UTM Field Test is a research project designed to evaluate the technology and standards being developed to help safely coordinate and prioritize drone