Emily A. Dorner | People | Arnold & Porter

Emily Dorner has experience in privacy, cybersecurity, and information governance. This background provides her with a unique perspective regarding how data is managed within organizations, making her well-positioned to advise clients regarding the handling, management, and maintenance of personal and company information.

Emily focuses a large part of her practice on data protection issues. She has experience assessing her clients' lines of business to determine applicability of global, regional, and industry-specific privacy laws including enacted and upcoming U.S. state privacy laws, as well as international privacy laws such as GDPR and PIPEDA. Emily has worked to develop and implement internal privacy processes and procedures to ensure her clients are prepared to respond to data subject access requests, abide by the principles of storage limitation and data minimization, and provide appropriate notice of processing of personal information.

Emily also assists clients in navigating differing state and federal breach response laws. She has addressed security incidents involving thousands of impacted individuals across all fifty states, analyzed notification and reporting requirements under state and federal law, and handled state Attorney General inquiries regarding the same.

Emily also has significant experience in records and information management. She understands the essential record types that most companies maintain, and has extensive experience building compliant records and information management programs in the pharmaceutical, hospitality, insurance, manufacturing, and food service industries, as well as many others. Emily has advised clients both small and large, ranging from single states to all fifty states, and various countries internationally. She draws on this and her eDiscovery experience to ensure that her clients are managing and handling their data in a compliant manner, providing proactive risk mitigation tactics in line with privacy principles and information governance best practices.

Focus Areas

Experience

Manufacturing company in the development of U.S. legal retention recommendations for human resources, legal & compliance, and finance records.
Venture capital firm in developing a full records retention schedule with tailored record descriptions and legal periods reflecting a 50-state survey of applicable U.S. laws spanning tax, accounting, and finance, human resources, marketing, IT, portfolio management, investments, and venture capital business.
Hospitality company in the development of a records retention schedule and policy spanning all business functions and 50 states.*
Food services company in the review of its current records retention schedule and policy, advice relating to recommended legal retention periods, and ongoing advice relating to records retention and information governance.*
International fast food chain as a member of its external information governance counsel advising on records, email retention, legal holds, and secure destruction of company data.*

International pharmaceutical company in the development of its global records retention schedule and policy, spanning all business functions, and over 30 jurisdictions.*
International pharmaceutical company as a member of its external information governance and eDiscovery counsel advising on records retention, data maintenance, and eDiscovery risk. *

*Reflects experience at previous employer.