Christine E. Lyon

Christine E. Lyon


University of Iowa (B.A., 1996)
Stanford Law School (J.D., 1999)

Bar Admissions


Christine Lyon advises organizations on cutting-edge issues related to the collection, use, sharing, and safeguarding of data, including personal information of customers and employees. She serves as a trusted advisor, working with clients to develop global strategies to comply with U.S. and international privacy and data protection laws.

Christine’s practice spans a variety of industry sectors, from information technology services to consumer products, and covers clients ranging from start-ups to large multinationals. She advises technology companies on building privacy protections into their offerings, including connected products and services (Internet of Things), cloud-based and mobile services, and social media initiatives, as well as on managing the related “Big Data” implications. She also assists clients in evaluating and managing privacy risks, including in strategic transactions such as IT outsourcing, and mergers and acquisitions.

Christine began her career as an employment lawyer and continues to counsel companies about employment practices, with a particular focus on employee privacy (such as employee monitoring, investigations, and background checks), compliance with federal and state employment laws, and managing key aspects of employment relationships. She brings a collaborative, practical approach to helping companies manage their data and their workforces.

Legal 500 US recognized Ms. Lyon as a “rising star” in the area of privacy and data protection and recommended her for cyber law, and she received The Burton Award for Distinguished Legal Writing. She frequently writes and speaks on the topics of global data protection laws, workplace privacy issues, and data security laws. She is a co-editor of Global Employee Privacy and Data Security Law (BNA Books) and a member of the editorial board of the World Data Protection Report.

Global Privacy Compliance Program for Major Cloud-Based Service Provider
Assisted a cloud services provider operating in over 50 countries in developing a global privacy compliance program, including privacy-related terms for customer and vendor agreements, internal and external privacy and data protection policies, and intercompany international data transfer agreements.

Outsourcing of Global HR Data to Third-Party Cloud Services
Advised a financial services company operating in over 30 countries in moving its global HR data to a third-party cloud software-as–a-service (SaaS) provider, including negotiating privacy and data security terms with the third-party provider.

Privacy Program for Connected Consumer Products
Assisted a consumer products company in developing privacy policies and procedures for its new line of connected household products and related service offerings.

Email Disclaimer

Unsolicited e-mails and information sent to Morrison & Foerster will not be considered confidential, may be disclosed to others pursuant to our Privacy Policy, may not receive a response, and do not create an attorney-client relationship with Morrison & Foerster. If you are not already a client of Morrison & Foerster, do not include any confidential information in this message. Also, please note that our attorneys do not seek to practice law in any jurisdiction in which they are not properly authorized to do so.

©1996-2019 Morrison & Foerster LLP. All rights reserved.