Kay Pauley is a policy analyst in Morrison & Foerster's Washington, D.C. office, and is a member of the firm's Privacy and Data Security Practice. With more than 20 years' experience working on privacy and related policy issues, she advises clients on compliance with international data protection laws and regulations. She has assisted with questions regarding cross-border transfers of personal data, data security requirements, data retention obligations, and risk management.
In addition, she works on domestic financial privacy issues relating to the Fair Credit Reporting Act, Fair and Accurate Credit Transactions Act, Gramm-Leach-Bliley Act, and state and federal laws prohibiting unfair and deceptive trade practices.
Previously, Ms. Pauley spent many years working on federal, state, and international privacy, Internet, and e-commerce legislative and regulatory issues at a prominent international law firm. This included the CAN-SPAM Act, USA PATRIOT Act, Electronic Signatures in Global and National Commerce Act, financial privacy provisions of the Gramm-Leach-Bliley Act, Digital Millennium Copyright Act, Children's Online Privacy Protection Act, Electronic Freedom of Information Act, privacy provisions of the Telecommunications Act of 1996, Communications Decency Act, Communications Assistance for Law Enforcement Act, Driver's Privacy Protection Act, Telephone Consumer Protection Act, and Telemarketing Sales Rule. In addition, she helped draft comments during development of the EU Data Protection Directive and subsequent Safe Harbor negotiations. She also helped develop several sets of industry self-regulatory guidelines.