With experience spanning three continents, Ieuan Jolly has received international recognition in the legal directories and industry publications as one of the foremost experts providing data solutions across the globe. In the U.S., The National Law Journal recognized him as one of the nations “Regulatory & Compliance Trailblazers”, noting that “if there is a pioneering deal involving data assets, Jolly is usually involved, or has blazed a trail for it to happen.” In Europe, The Legal 500 recognizes his “international expertise, impressive knowledge and commercial approach”; and he has been singled out in Chambers Global, The World’s Leading Lawyers for Business. Most recently he was honored in the prestigious 40 Under 40 list by Crain's New York Business, which described Jolly as “part of a small cadre of people shaping global privacy law.”
Mr Jolly works at the intersection of data and technology-enabled transactions and leads the firm’s Privacy, Security & Data Optimization Practice. He provides both domestic and international regulatory expertise to a wide range of U.S., E.U. and multi-national clients. This multi-jurisdictional practice focuses on three interrelated disciplines, which are intrinsically and sequentially linked: (i) data optimization; (ii) privacy counseling; and (iii) data security protocols, incidents and response. His approach is particularly effective because it starts with a deep understanding of the data assets and optimization strategy within an organization and knowledge of the data life-cycle – i.e., how data is captured, stored, utilized, and shared. This focus lays the foundation for effective privacy counseling on domestic and global regulatory compliance, and developing customized information security policies and procedures. This approach gives him an edge when preparing effective incident response programs, since he will have already gained a deep knowledge of a client’s business; and understands the data assets, data-flows, security protocols, optimization strategies and ultimately what regulations apply so that he can act swiftly and effectively in the event of a breach. His combined experience — mastering the intricacies of compliance with a maze of federal, state and international laws, counseling on security breaches and guiding the data and privacy aspects of corporate mergers, acquisitions and alliances — enables him to take a strategic commercial approach to providing a comprehensive set of data solutions.
Mr Jolly is at the forefront of the explosion of “Big Data” and the convergence of media, technology and data, counseling many of the world’s most recognized brands on the cutting-edge privacy and cybersecurity implications of new communication strategies and optimization of data assets. He has experience providing data solutions to Fortune 100 clients across all verticals deploying pioneering data uses, from using data in connected cars, engaging in social data targeting or addressable advertising on mobile, desktop and smart TVs, to cross-device tracking, and deploying beacons, sensors, geolocation capabilities and facial recognition technologies. At the heart of his data optimization work is a heightened understanding of the data-driven ecosystem in which brands, agencies, data aggregators, media buying companies, ad networks, DMP, DSPs, and analytics companies operate. On a daily basis, Mr Jolly analyzes the issues associated with creation of custom audiences, clusters, segments and profiles; conducting look-alike analytics, insights, predictive modeling; data-matching; audience augmentation; targeting and retargeting. He is also regularly involved in corporate transactions assessing the valuation and vulnerabilities of data-rich companies in the context of potential acquisitions, mergers, joint-ventures and IPOs.
In the area of data security, Mr. Jolly regularly works with senior executives on corporate risk management, assessment of data security practices and the development and implementation of effective information security programs and breach response. His cybersecurity work includes advising on: (i) Incident Readiness Programs, including development of information security policies, including critical infrastructure protection, network protection, supply-chain efforts, procurement of data center hosting, cloud and SaaS solutions; vulnerability assessments; and development of incident response procedures; as well as (ii) Incident Management Programs, which provide comprehensive assistance with significant data security breaches, including network intrusion investigations, customer notifications, state, federal and international regulatory negotiations, and public relations, call center and investor relations communications and training.
Internationally, Mr. Jolly spearheads a global compliance program for the firm’s clients with operations outside of the U.S., enabling the seamless international data transfer among clients’ affiliates and business partners worldwide. He has provided training and advice on global privacy compliance to multi-national companies and he performs multi-jurisdictional audits. He provides clients with bespoke “Compliance Kits” covering internal and customer-facing privacy and direct marketing policies, cross-border data privacy compliance protocols including inter-group and third-party transfer agreements, employee surveillance, website terms and conditions, and other information security protocols. He conducts privacy assessments of clients’ online and offline information collection, use, and disclosure practices, including analysis of data flows, privacy notices, and vendor contracts. He is a member of the Asia-Pacific Economic Cooperation (APEC) Data Privacy Subgroup – a private sector adviser to the United States Delegation.
Mr. Jolly combines international privacy expertise with extensive experience in the complementary areas of technology and communications law, outsourcing and interactive media. He counsels clients on a wide range of complex technology transactions and sourcing arrangements, systems integration, telecommunications procurement, and the global distribution, licensing and exploitation of content across interactive media platforms. He has completed numerous BPO and ITO transactions, including outsourcings related to applications development and maintenance, call center, hosting, co-location, claims processing, infrastructure (including data center, desktop, help-desk, telecommunications and networks), human resources, finance and accounting and facilities management. He advises clients on all aspects of contracting online, supply and distribution agreements, IT procurement and social media integration and strategy.