David Navetta

Partner, Cooley LLP

David Navetta, is a prominent leader in privacy, information security and technology law. He has extensive experience counseling clients on novel and cutting-edge data protection issues, including data breach response, cybersecurity risk management, consumer and employee privacy, incident response planning and preparedness, technology transactions, vendor management, board of director advice and consultation, regulatory investigations, litigation and due diligence in corporate transactions. David serves as a "breach coach" on an approved panel for numerous cyber insurance carriers and companies, and he has helped some of the world’s leading corporations to effectively respond to complex data security breaches and protect their enterprise. David’s clients range from startups to large Fortune 500 multinationals across a range of industries, including ecommerce, consumer products, name-brand traditional brick-and-mortar, hotels and hospitality, social media, technology, professional services, healthcare, financial institutions and energy.

David has served as a leader and integral member of a Chambers USA-ranked law firm he co-founded. He is known for his leadership and extensive experience in privacy and data protection law, and is recognized by Chambers USA as a leading lawyer for privacy & data security from 2020 – 2023, by Legal 500 USA as a leading lawyer for international litigation and data protection & privacy from 2016 – 2020, as well as by WWL:Data in the area of Information Technology and Data Privacy & Protection. He is also a Certified Information Privacy Professional (CIPP/US) through the International Association of Privacy Professionals.

David’s diverse legal experiences over his career have provided him with a unique perspective and pragmatic approach to enterprise security, including serving as the former US co-chair of Norton Rose Fulbright’s data protection, privacy and cybersecurity practice group; his own entrepreneurial endeavor co-founding InfoLawGroup LLP; former assistant general counsel for AIG’s eBusiness Risk Solutions Group in New York for over three years; former co-chair of the American Bar Association's Information Security Committee and former chairman of the organization’s Contracting & Risk Management Working Group; and former co-chair of PCI’s Legal Risk and Liability Working Group.

David speaks and writes frequently concerning technology, privacy and data security legal issues, and is frequently cited as an expert in the press and otherwise. Select publications and speaking engagements include: