We are pleased to announce that Heidi Salow has joined the Washington D.C. office of Potomac Law as a Partner in the firm’s Privacy and Cybersecurity practice. Ms. Salow has two decades of experience advising entities of all sizes, including start-ups, Fortune 500 companies and non-profit organizations, in matters involving cybersecurity, data governance, data ethics, data privacy and data protection, employment-related privacy, healthcare privacy and security, insider threat management, mobile technologies, corporate risk management and social media.
Ms. Salow has served as a strategic advisor to entities seeking to develop and implement legally compliant U.S. and global data protection programs in the information technology, media, telecommunications, retail, financial, healthcare and legal services industries. She established the first Global Privacy Office function for a $13B corporation and has counseled clients in the aftermath of 75-plus data breaches and data security incidents.
Ms. Salow provides virtual/fractional Chief Privacy Officer (CPO) services. She also routinely advises clients on a wide range of issues involving the Australian Privacy Act and Australian Privacy Principles (APPs), California Consumer Protection Act (CCPA)/California Consumer Rights Act (CPRA), Canadian Anti-Spam Law (CASL), European Union (EU) General Data Protection Regulation (GDPR), UK Data Protection Act 2018, U.S. CAN SPAM Act, U.S. Fair Credit Reporting Act (FCRA), U.S. Health Information Technology for Economic and Clinical Health (HITECH) Act, U.S. Health Insurance Portability and Accountability Act (HIPAA), U.S. Telephone Consumer Protection Act (TCPA) and Telemarketing Sales Rule (TSR), NIST Privacy Framework, NIST 800-53, as well as other U.S. and global data privacy, direct marketing and consumer protection laws.
A frequent author and lecturer in the areas of data privacy, data protection and cybersecurity, Ms. Salow holds the following certifications: Certified Information Privacy Professional/ U.S. (CIPP/US); Certified Information Privacy Manager (CIPM) and Certified Information Privacy Professional /Europe (CIPP/E). She has participated in legislative and regulatory proceedings on a multitude of privacy, data security, advertising, marketing, and IP issues. She has worked with staff members of U.S. federal agencies, as well as the U.S. Congress, Scottish Parliament and Scottish government.
Prior to joining Potomac Law, Ms. Salow was the Chief Privacy Officer for Leidos, a U.S. federal government contractor with 400 locations in 30 countries. Before joining Leidos, she served as Vice President & Senior Privacy Officer at Thomson Reuters, a Canadian multinational information and media conglomerate which then operated in 94 countries. Ms. Salow received her J.D. from the University of Baltimore Law School and her B.A. from McGill University. In addition, she has completed an LL.M program (all but thesis) at George Washington University with a specialization in Intellectual Property.