Rachel Ehlers

As a former in-house counsel with multinational experience, Rachel's practice focuses on technology transactions, evolving technologies including generative artificial intelligence, data privacy, and cybersecurity. She has extensive product counseling experience, and regularly advises clients on the adoption of new technologies. Rachel also regularly advises clients related to data incidents and breach response, cross-border data transfers, and privacy and cybersecurity issues related to mergers and acquisitions and similar transactions. Rachel also represents clients in the development of data privacy and security programs for compliance with the California Consumer Privacy Act (CCPA) and other US state laws, the EU General Data Protection Regulation (GDPR), the Health Insurance Portability and Accountability Act of 1996 (HIPAA), the National Institute of Standards and Technology, the International Organization for Standardization, and sector-specific regulations. Among her specialty areas is working with clients in the critical infrastructure sector.

• Represented clients and led data security and incident response in hundreds of incidents, with companies ranging from Fortune 100 companies to start-ups.

• Represented multiple large technology clients in the acquisition of new products and technologies, including in the AI and IoT space.

• Developed HIPAA compliance programs for multiple covered entities and business associates.

• Developed and helped clients manage global privacy and security programs to meet a variety of legal requirements.

• Advised on governance issues related to the set-up of new technologies and platforms, many of which heavily involved the use of AI or machine learning.

• Advised on all types of technology and tech transactions agreements and licenses.

• Conducted table-top exercises and training related to global privacy and security scenarios.

• Advised on data subject and consumer data requests, helping build customized solutions to address data rights.

• Counseled boards and senior leadership on strategic business risks within cyber, privacy, and technology infrastructure.

• American Bar Association - Member
• Social of Corporate Compliance and Ethics - Member
• International Association of Privacy Professionals (IAPP) - Member
• Texas State Bar Association, Computer Technology, International, and Employment Sections - Member
• Montgomery County United Way - Board Member
• Salvation Army of Montgomery County - Board Member
• Texas A&M University International Board - Member