Paul Lanois > Fieldfisher > Palo Alto, United States > Lawyer Profile

Paul Lanois

+1 (650) 313 2361 Paul.Lanois@fieldfisher.com View profile

Work Department

Technology and Data

Position

Director

Career

Paul’s practice focuses on advising companies on data privacy and cybersecurity matters drawing on his extensive international experience, having lived and worked in the United Kingdom, France, Luxembourg, Switzerland, Hong Kong and the United States. He advises clients on complying with evolving global privacy and data protection laws, such as the General Data Protection Regulation (GDPR), the ePrivacy Directive, as well as the California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA) and recent state data privacy laws.

In 2018, he was selected for inclusion on the list of arbitrators developed by the U.S. Department of Commerce, the EU Commission and the Swiss Federal Administration as part of the Privacy Shield Framework Binding Arbitration Program. Before joining Fieldfisher, Paul was Vice President and senior legal counsel at a leading international bank, Credit Suisse, at its headquarters in Switzerland as well as its Hong Kong office. He also worked on technology transactions at large international law firms in London (UK) and Luxembourg and was an Associate Professor at the University of Cergy-Pontoise Law School in France.

He has written extensively on current developments in relation to cybersecurity, as well as American and European privacy law. For example, he was one of the lead authors of the Cloud Security Alliance’s guidance “Observations and Recommendations on Connected Vehicle Security” published in 2017 which covered vehicle security connectivity, possible attack vectors of concern, and recommendations for securing the connected vehicle environment. He was also one of the lead authors of the Cloud Security Alliance’s guide on “Future-proofing the Connected World: 13 Steps to Developing Secure IoT Products” published in 2016 and which provides a comprehensive guidance for product designers and developers.

Paul regularly teaches courses on data privacy, such as at the University of California (UC) College of the Law San Francisco (‘UC Law SF’, formerly known as ‘UC Hastings Law School’) and the Law Society of Ireland’s Certificate in Data Protection Practice program.

He is a Systems Security Certified Practitioner (SSCP) from (ISC)², the world’s largest non-profit association of cybersecurity professionals, and a Payment Card Industry Professional (PCIP). In addition, he is a Fellow of Information Privacy (FIP) of the International Association of Privacy Professionals (IAPP) and a Certified Information Privacy Professional, with concentrations in Asian law (CIPP/A), US law (CIPP/US), European law (CIPP/E) and Canadian law (CIPP/C). He is also a Certified Information Privacy Manager (CIPM) and a Certified Information Privacy Technologist (CIPT). He also holds the Certified Data Privacy Solutions Engineer (CDPSE) certification from ISACA.

Languages

English, French, German

Memberships

Paul is a member of the California Lawyers Association’s Privacy Law Section Executive Committee. He is also a member of the International Association of Privacy Professionals (IAPP), as well as the American Bar Association, (ISC)2 and ISACA.