Melissa Krasnow is recognized by Chambers in Global Privacy & Data Security and USA – Nationwide Privacy & Data Security: Cybersecurity, USA – Nationwide Privacy & Data Security: Privacy, and USA – Nationwide Technology in 2024 and in USA-Nationwide Privacy & Data Security and USA-Nationwide Technology in 2022 and 2023 for having “an impressively well-rounded privacy practice,” “handling data breach incidents,” as well as for being “a highly regarded attorney whose broad practice exhibits strength across a number of technology-related issues” and routinely advising “on M&A, data security issues and related regulatory matters.”
She counsels companies on HIPAA, FERPA, financial services regulatory laws, state laws (including the California Privacy Rights Act (CPRA)), and the European Union (EU) General Data Protection Regulation (GDPR).
Melissa advises companies on privacy, data security, technology matters, and cyber governance, including data breaches/incidents/other events (ransomware, account takeover, business email compromise, phishing, and vulnerabilities), preparing written information security programs (organizational and employee), devising incident response plans, and facilitating and participating in tabletop exercises. She counsels boards of directors and officers on privacy, data security, and technology risk oversight and developments, and reviews cyber liability insurance policies.
Melissa advises companies on regulatory inquiries and complying with state, federal, and international privacy and data security, advertising and marketing, governance and compliance, and regulated industry laws. She prepares website and mobile application privacy policies and terms (including regarding the GDPR, CPRA and other state privacy laws, geolocation, big data, and artificial intelligence/chatbots), and technology policies.
Melissa works with companies on negotiating (and renegotiating in the wake of data breaches/incidents/other events) and documenting technology and commercial transactions, including master services agreements (MSAs), non-disclosure agreements (NDAs), data security addenda (DSAs), business associate agreements (BAAs), data license agreements (DLAs), GDPR and other data processing agreements (DPAs), and CPRA and other state privacy law agreements.
In mergers and acquisitions, she counsels companies on privacy, data security, and technology matters and on foreign investment filing obligations.
Education
- J.D., Northwestern University School of Law, 1992
- A.B., Wellesley College, 1989, magna cum laude, Phi Beta Kappa and Durant Scholar
- University of British Columbia, visiting student, 1987-1988, Class 1 Standing
Honors & Awards
- Chambers recognition in Global Privacy & Data Security and USA – Nationwide Privacy & Data Security: Cybersecurity, USA – Nationwide Privacy & Data Security: Privacy, and USA – Nationwide Technology in 2024 and USA – Nationwide Privacy & Data Security and USA – Nationwide Technology – 2022 and 2023
- Who’s Who in America, Women in Law – Minnesota, 2021 – present
- Minnesota State Bar Association North Star Lawyer, Pro Bono Service, 2014 – 2023
- VLP is a BTI Cybersecurity Standout 2020 – Leading Cybersecurity & Data Privacy Law Firm
- VLP Partner Melissa Krasnow Authors Three Articles on IRMI.com: “Minnesota Consumer Data Privacy Act: Application, Definitions, Consumer Rights, and Notices,” “Minnesota Consumer Data Privacy Act: Controllers, Processors, and Enforcement” and “Minnesota Consumer Data Privacy Act: Exceptions”
(May 14, 2025) - VLP Partner Melissa Krasnow Authors Four Articles on IRMI.com: “Colorado Artificial Intelligence Law: Deployer and Developer Definitions,” “Colorado Artificial Intelligence Law: Deployer Disclosure Requirements,” “Colorado Artificial Intelligence Law: Developer Disclosure Requirements,” and “Colorado Artificial Intelligence Law: Enforcement and Exceptions”
(Jun 21, 2024) - VLP Partner Melissa Krasnow Quoted in Wall Street Journal Pro Cybersecurity article “Federal Authorities Say UnitedHealth Can Notify Victims of Massive Data Breach”
(Jun 17, 2024) - VLP Partner Melissa Krasnow Authors Three Articles on IRMI.com: “New Jersey Privacy Law: Application, Definitions, and Consumer Rights,” “New Jersey Privacy Law: Notices, Controllers and Processors, and Enforcement” and “New Jersey Privacy Law: Exceptions”
(Jun 3, 2024) - VLP Partner Melissa Krasnow Quoted in Wall Street Journal Pro Cybersecurity article “Kenvue Revamps Cyber Tools After Spinoff From J&J”
(Apr 18, 2024) - Webinar: Cyber Resilience in Action: Incident Response Plans for Modern Organizations
(Mar 12, 2024) - Webinar: Overview of State Privacy Laws, including California Privacy Rights Act
(Mar 8, 2024) - VLP Partner Melissa Krasnow Quoted in the Bloomberg Law Article “Taxing Digital Sales Raises Concerns About ZIP Codes, Privacy”
(Nov 17, 2023) - VLP Partner Melissa Krasnow Quoted in the Bloomberg Law Article “Federal Cyber Breach Reporting Rules Reach an Uneasy Balance”
(Nov 15, 2023) - VLP Partner Melissa Krasnow Quoted in the Bloomberg Law Article “X Plans for AI on Collision Course With Latest US Privacy Laws”
(Sep 5, 2023) - VLP Partner Melissa Krasnow Authors Two Articles on IRMI.com: “Washington My Health My Data Act: Definitions” and “Washington My Health My Data Act: Requirements and Exceptions”
(Aug 31, 2023) - VLP Partner Melissa Krasnow Authors Three Articles on IRMI.com: “Texas Data Privacy Act: Application, Definitions, Rights, and Notice,” “Texas Data Privacy Act: Controllers, Assessments, Data, Enforcement” and “Texas Data Privacy Act: Exceptions”
(Jul 26, 2023) - VLP Partner Melissa Krasnow Quoted in the Bloomberg Law Article “Amazon, Microsoft Deals on Kids’ Data Enforce FTC’s Privacy Vow”
(Jun 9, 2023) - VLP Partner Melissa Krasnow Authors Two Articles on IRMI.com: “California Age-Appropriate Design Code Act: Application, Assessments” and “California Age-Appropriate Design Code Act: Other Requirements”
(Jan 30, 2023) - VLP Partner Melissa Krasnow Quoted in the Wall Street Journal Pro Cybersecurity Research “Biden, Trump Document News Highlights Corporate Risks””
(Jan 25, 2023) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Nov 18, 2022) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Nation-Backed Cyberattacks Escalate Push to Bolster Data Shields”
(Sep 29, 2022) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “New York Proposes Bigger Cyber Role for Bank, Insurer Boards”
(Aug 22, 2022) - VLP Partner Melissa Krasnow Quoted in The Record by Recorded Future Article “T-Mobile reaches historic $350 million settlement in 2021 data breach”
(Jul 28, 2022) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Top Privacy Developments Of 2022: Midyear Report”
(Jul 26, 2022) - VLP Partner Melissa Krasnow Authors International Risk Management Articles “Connecticut Data Privacy Act: Application and Definitions,” “Connecticut Data Privacy Act: Controllers and Processors, Assessments, De-identified Data, and Enforcement,” and “Connecticut Data Privacy Act: Exceptions.”
(Jun 15, 2022) - VLP Partner Melissa Krasnow Authors International Risk Management Articles “UCPA: Application, Definitions, Consumer Rights, and Obligations” and “UCPA: Deidentified Data, Enforcement, and Exceptions”
(May 11, 2022) - VLP Partner Melissa Krasnow Authors “The FTC Safeguards Rule: Information Security Program Elements” for CPI TechREG Chronicle (April 2022)
(Apr 29, 2022) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “California Businesses Gain Clarity on Consumer Data Requests”
(Mar 22, 2022) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Mar 3, 2022) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Meta’s Facial Recognition Lawsuit Underscores Enforcement Risk”
(Feb 16, 2022) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Indiana Senate Passes Consumer Privacy Bill Lacking Right to Sue”
(Feb 4, 2022) - VLP Partner Melissa Krasnow Quoted in The Record by Recorded Future Article “Merck wins cyber-insurance lawsuit related to NotPetya attack”
(Jan 24, 2022) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Dec 21, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Soltani Brings Technical, Regulatory Expertise to Privacy Agency”
(Oct 7, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “As Labor Day Nears, Security Teams Watch for Holiday-Timed Hacks”
(Sep 14, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Article “Colorado Privacy Act: Exceptions”
(Aug 20, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Articles “Colorado Privacy Act: Application, Definitions, Rights, and Notices” and “Colorado Privacy Act: Controllers, Assessments, Data, and Enforcement”
(Jul 30, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Kaseya Hack Pushes Companies to Deepen Attorney, IT Relationship”
(Jul 9, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Pending Cyber-Risk Reporting Rules Signal Stricter Enforcement”
(Jun 30, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Massive Ransomware Hits Likely to Hasten Cloud Security Shift”
(Jun 4, 2021) - VLP Partner Melissa Krasnow Quoted in the Bloomberg Law Article “Insurance, Regulatory Ripples Likely After Colonial Pipeline Hack”
(May 13, 2021) - VLP Partner Melissa Krasnow Quoted in The Wall Street Journal Pro Cybersecurity Article “The Hack of a Small Tech Vendor Casts a Wide Net”
(May 6, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Facebook Data Dump Likely to Bring Regulatory Scrutiny, Lawsuits”
(Apr 14, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Article “VCDPA: Assessments, De-identified Data, Enforcement, and Exceptions”
(Mar 23, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Surveillance Camera Hack Raises Legal Risk of Digital Device Use”
(Mar 18, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Article “VCDPA: Applications, Definitions, Consumer Rights, and Obligations”
(Mar 15, 2021) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Mar 3, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Florida Governor Backs Data Privacy Bill Akin to California Laws”
(Feb 18, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Article “California Privacy Rights Act: Exceptions”
(Feb 3, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “N.Y. Privacy Bill Carries Litigation, Enforcement Hike Potential”
(Jan 12, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Article “California Privacy Rights Act: Consumer Rights, Enforcement and Security”
(Jan 7, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Litigation Specter Looms for SolarWinds Following Cyberattack”
(Dec 21, 2020) - VLP Partner Melissa Krasnow Authors International Risk Management Article “California Privacy Rights Act: Background, Application and Definitions”
(Dec 15, 2020) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Becerra Would Depart California as State Ups Privacy Policing”
(Dec 8, 2020) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Home Depot Agrees to Pay $17.5 Million in Breach Settlement (2)”
(Nov 25, 2020) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law “Data Mining in Exchange for Insurance Carries Breach, ID Risks”
(Oct 8, 2020) - VLP Partner Melissa Krasnow Authors International Risk Management Article “California Consumer Privacy Act Regulations: Privacy Policy and Notice”
(Sep 3, 2020) - VLP Partner Melissa Krasnow Authors Bloomberg Insights Article “Cyber-Risk Oversight Practices of Public, Private Boards”
(Jul 2, 2020) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “The New York SHIELD Act Reasonable Security Requirement”
(Jun 9, 2020) - VLP Partner Melissa Krasnow Quoted in ScienceMag.org on Cellphone Tracking and Coronavirus
(Mar 25, 2020) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Feb 25, 2020) - VLP Partner Melissa Krasnow International Risk Management Article “Changes in Other California Privacy and Data Security Laws”
(Jan 28, 2020) - VLP Partner Melissa Krasnow Quoted in Private Company Director on Cybersecurity Oversight
(Jan 24, 2020) - VLP Partner Melissa Krasnow co-authored “What Directors Need to Know about the California Consumer Privacy Act” for the National Association of Corporate Directors Blog
(Jan 15, 2020) - VLP Partner Melissa Krasnow Quoted in Law360 on New York Data Security Law
(Nov 21, 2019) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “The California Consumer Privacy Act, as Amended”
(Oct 23, 2019) - VLP Partner Melissa Krasnow Was a Contributor to the Canadian and International Regulatory Update in Aon Canada’s State of the Market – Cyber and Privacy Liability
(Oct 22, 2019) - VLP Partner Melissa Krasnow Quoted in The Wall Street Journal Pro Artificial Intelligence
(Oct 11, 2019) - VLP Partner Melissa Krasnow Featured in Financial Executives International Daily Article “Cyber Security: What You Need to Know to Face the Inevitable”
(Aug 23, 2019) - VLP Partner Melissa Krasnow Authors Bloomberg Law Insights Article “Cyber−Risk Oversight Practices of Public and Private Company Boards of Directors”
(Jul 31, 2019) - VLP Partner Melissa Krasnow Quoted in The Wall Street Journal Pro Cyber News Article “Hackers Defraud Homeowners Out of Hundreds of Thousands of Dollars”
(Jul 23, 2019) - VLP Partner Melissa Krasnow Quoted in Wall Street Journal Pro Cybersecurity Newsletter Article “Companies Gird for Class-Action Suits After Data Breaches”
(Jul 9, 2019) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “Summary of Amendment to Nevada Privacy Law”
(Jun 26, 2019) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “Breach Notification Laws—State Attorney General or Regulator Notice”
(Feb 28, 2019) - VLP Partner Melissa Krasnow Quoted in The Corporate Counsel.net Blog Post About D&O Lawsuits
(Feb 21, 2019) - VLP Partner Melissa Krasnow Was a Contributor to the Canadian and International Regulatory Update in Aon Canada’s State of the Market – Cyber and Privacy Liability
(Feb 12, 2019) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Securities Fraud Claims Get Boost from EU Data Privacy Rules”
(Feb 4, 2019) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Equifax Ruling Shows How Cyber Boasts Can Bring Legal Pain”
(Feb 4, 2019) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “Massachusetts Amends Breach Notification Law”
(Jan 25, 2019) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Jan 14, 2019) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Privacy & Cybersecurity Cases to Watch in 2019”
(Jan 7, 2019) - VLP Partner Melissa Krasnow Contributes to Bloomberg Law Domestic Privacy Profile: Minnesota
(Jan 4, 2019) - VLP Partner Melissa Krasnow Is the Contributor to Bloomberg Law Domestic Privacy Profile: Minnesota
(Dec 6, 2018) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Ohio’s Data Security Law to Test Incentive-Driven Strategy”
(Nov 26, 2018) - Melissa Krasnow Authors Bloomberg Law Resource – “Practical Guidance Overview: State Laws Requiring Data Security Practices”
(Nov 6, 2018) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Canadian Privacy Chief Offers Guidance on New Breach Rule”
(Oct 30, 2018) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Canada Privacy Office Issues Data Breach Reporting Guidance”
(Oct 29, 2018) - VLP Partner Melissa Krasnow Quoted in Wall Street Journal Pro Cybersecurity Newsletter Article “Google Exposed User Data, Feared Repercussions of Disclosing to Public”
(Oct 10, 2018) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “A Summary of the California Consumer Privacy Act of 2018”
(Oct 1, 2018) - VLP Partner Melissa Krasnow Quoted in Law360 Article “States Stake Claim to Privacy Role With Uber Breach Pact”
(Sep 28, 2018) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Canada Privacy Watchdog Seeks Input on Breach Reporting Guidance”
(Sep 20, 2018) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Breach Reporting Landscape Becoming Global Minefield”
(Sep 4, 2018) - VLP Partner Melissa Krasnow Was a Contributor to Bloomberg Law Domestic Privacy Profile: Minnesota
(Aug 29, 2018) - VLP Partner Melissa Krasnow Was a Contributor to the U.S Regulatory Update in Aon Canada’s State of the Market – Cyber and Privacy Liability
(Jul 18, 2018) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Yahoo’s $80M Data Breach Settlement Gets Preliminary OK (1)”
(May 17, 2018) - VLP Partner Melissa Krasnow Selected to be a Contributing Practitioner for Bloomberg Law Domestic Privacy Profiles
(May 11, 2018) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “Nevada Passes New Privacy Notice Law”
(Apr 6, 2018) - VLP Partner Melissa Krasnow Authors “A Primer on Personal Data Breach Reporting Under the European Union’s General Data Protection Regulation” for Bloomberg Law
(Mar 26, 2018) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “Application of EU’s General Data Protection Regulation”
(Mar 9, 2018) - VLP Partner Melissa Krasnow Quoted in Law360 Article “SEC Solidifies Liability Risks with Cybersecurity Guidance”
(Mar 6, 2018) - VLP Partner Melissa Krasnow Quoted in Directors & Boards Article “Director Liability: Boards are on the Hot Seat over Data Breaches, Illegal Sales Practices and More”
(Feb 22, 2018) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “More Companies Face Securities Fraud Suits After Data Breaches”
(Feb 15, 2018) - Melissa Krasnow Was a Contributor to the U.S Regulatory Update in Aon Canada’s State of the Market – Cyber and Privacy Liability, in January 2018.
(Feb 2, 2018) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “State Breach Notification Laws: Personal Information Definition”
(Feb 1, 2018) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Intel, AMD Chip Flaw Backlash Exposes New Liability Risks”
(Jan 29, 2018) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Jan 22, 2018) - VLP Partner Melissa Krasnow Quoted in Law360 Article “FTC Sharpens Data Security, Privacy Arrows with VTech Pact”
(Jan 16, 2018) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Cybersecurity & Privacy Predictions for 2018”
(Jan 3, 2018) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “Changes in State Breach Notification and Security Procedures Laws”
(Dec 6, 2017) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Appleby Data Breach Highlights Law Firms’ Unique Risks”
(Nov 13, 2017) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “Business Associate Agreement Requirements and Negotiated Provisions”
(Sep 20, 2017) - VLP Partner Melissa Krasnow Quoted in Bloomberg BNA Article “Equifax Data Breach May Prompt Shareholder Derivative Suit”
(Sep 13, 2017) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Equifax’s Massive Data Breach To Spur Uncharted Legal Woes”
(Sep 8, 2017) - VLP Partner Melissa Krasnow Quoted in Wall Street Journal Article “What Companies Can Learn From Uber’s Privacy Mistakes”
(Aug 22, 2017) - VLP Partner Melissa Krasnow Quoted in Bloomberg BNA Article “Uber Settles FTC Customer Data Security, Privacy Enforcement Action”
(Aug 16, 2017) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Privacy Law Developments that Have Flown Under the Radar”
(Aug 9, 2017) - VLP Partner Melissa Krasnow Quoted in American Lawyer Article “The Guide to Handling Breach Notifications Across Jurisdictions”
(Aug 7, 2017) - VLP Partner Melissa Krasnow is a Contributor to the Online Trust Alliance 2017 Online Trust Audit and Honor Roll
(Jun 21, 2017) - VLP Partner Melissa Krasnow Featured in Financial Executives International Daily Article “5 Steps to Prepare for the Inevitable Cyber Security Attack”
(Jun 19, 2017) - VLP Partner Melissa Krasnow Quoted in Twin Cities Business Article “Trump’s Legal Shadow”
(Jun 1, 2017) - VLP Partner Melissa Krasnow’s Bloomberg BNA article, “Director Cybersecurity Risk Oversight and Actions,” Quoted in Berkeley Law Draft White Paper – Current Trends in Cybersecurity: Board Liability & Best Practices
(May 22, 2017) - VLP Partner Melissa Krasnow Quoted in Bloomberg BNA Article “Home Depot Builds a Data Breach Settlement Blueprint”
(May 3, 2017) - VLP Partners Melissa Krasnow and Michael Whitener Co-Author Bloomberg Law Article “A Brief Overview of Privacy and Data Security Developments to Watch”
(Mar 21, 2017) - VLP Partner Melissa Krasnow Quoted in Law360 Article “FTC’s Smart-TV Privacy Settlement Unlikely to See an Encore”
(Feb 7, 2017) - VLP Partner Melissa Krasnow Quoted in San Francisco Chronicle Article “FamilyTreeNow Shreds Privacy, But Founder Remains Elusive”
(Feb 6, 2017) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “Cyber-Security Event Recovery Plans”
(Feb 1, 2017) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Jan 25, 2017) - VLP Partner Melissa Krasnow Authors Bloomberg BNA Article “Developments in Director Oversight of Cybersecurity Risk”
(Jan 9, 2017) - VLP Partners Melissa Krasnow and David Goldenberg Featured in Minnesota Lawyer Article “Firm Has No Offices But a Big Platform”
(Jan 5, 2017) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “Guidance on Ransomware”
(Jan 4, 2017) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Privacy Legislation and Regulation to Watch in 2017”
(Jan 2, 2017)
- Understanding Privacy and Data Security Laws and Requirements in Agreements, Minnesota CLE 2025 Midwest Legal Conference on Data Privacy and Cybersecurity Webinar (March 2025)
- Safeguarding Minors Online and on Mobile Apps: Evolving Privacy Laws to Protect Teens and Pre-Teens, Minnesota CLE 2025 Midwest Legal Conference on Data Privacy and Cybersecurity, Minneapolis, MN (February 2025)
- Colorado’s First-of-Its-Kind Artificial Intelligence Law, Women in AI and Data Science (WiADS) Conference, University of Minnesota Data Science Initiative (DSI) in collaboration with MinneAnalytics (November 2024)
- Overview of State Privacy Laws, including California Privacy Rights Act, VLP Webinar (March 2024)
- Cyber Resilience in Action: Incident Response Plans for Modern Organizations, Heroic Technologies and VLP Webinar (March 2024)
- Canadian Data Privacy & Security Law: New Developments & Comparison with U.S. Laws, Minnesota CLE 2024 Midwest Legal Conference on Data Privacy and Cybersecurity (February 2024)
- 2023 State Law Requirements on Data Privacy and Security – What’s New and What to Do, 2023 Minnesota CLE Midwest Legal Conference on Data Privacy and Cybersecurity (February 2023)
- Director Cyber Governance/Cyber-Risk Communication, Cyber Security Summit, Minneapolis, MN (October 2022)
- Vendor Management Practices for Mitigating Data Privacy & Security Risks, Privacy and Data Security for the Non-Specialist, Minnesota CLE, Minneapolis, MN (September 2022)
- A Practical Guide in Drafting Data Privacy and Security Agreements: Mitigating Data Security Breaches, the Knowledge Group webinar (August 2022)
- Litigating Online Defamation, Cyber Law, & Data Privacy in 2022 CLE, Rossdale CLE, nationwide webinar (June 2022)
- Structuring an Effective Third-Party Risk Management Program: Best Practices for Financial Institutions, the Knowledge Group webinar (March 2022)
- The Third-Party Data Breach Problem: Best Defenses to Safeguard Your Data, the Knowledge Group webinar (March 2022)
- Big Data Use and Licensing Agreements, Strafford Nationwide Webinar (February 2022)
- North of the Border: Canadian Privacy Update, Minnesota CLE 2022 Midwest Legal Conference on Privacy and Data Security (February 2022)
- Privacy & Data Security: Recent Approaches to Contract Drafting, Bloomberg Law webinar (September 2021)
- Preventing Ransomware Attacks: A Practical Guide to Enhancing IT Security and Resiliency, the Knowledge Group webinar (September 2021)
- Preparing for New State Privacy Laws, OneTrust PrivacyConnect Minneapolis Chapter (September 2021)
- Phishing and Ransomware: Risk Mitigation and Response, 15th Annual Door County IP Academy webcast, Intellectual Property & Technology Law Section, Wisconsin State Bar (September 2021)
- Phishing, Business Email Compromise and Ransomware, Professional Services Webinar (September 2021)
- Impact of Incidents on Cyber Insurance and Data Security, Marco Technologies (August 2021)
- Cyber, Data & Social: Getting in Front of Governance, TheCorporateCounsel.net webcast (June 2021)
- Cybersecurity Management: Best Practices in a Remote Environment, the Knowledge Group webinar (April 2021)
- When Do Data Processing Agreements and CCPA and CPRA Agreements Apply and What Should Those Agreements Say?, Minnesota CLE 2021 Midwest Legal Conference on Privacy and Data Security (February 2021)
- Ransomware Prevention and Crackdown: Long-Term Solution and Defense Tactics, the Knowledge Group webinar (November 2020)
- The Wall Street Journal Pro Cyber Webinar – Privacy in the New Work Environment (October 2020)
-
Association of Corporate Counsel Annual Meeting, Contract Workshop: Reviewing Allocations of Liability for Data Breach (October 2020)
- Big Data / AI and Privacy and Data Security Regulation, MinneWiADS: Women in Analytics & Data Science Conference, MinneAnalytics, Minneapolis, MN (October 2020)
- Privacy Leaders Circle for B2B, Truyo Virtual Event (September 2020)
- Privacy and Cross Border Data Flow, Privacy Across Borders Webcast, Ontario Bar Association (September 2020)
- From the Perspective of a Business Lawyer: the California Consumer Privacy Act & Other State Privacy/Data Security Developments, Minnesota CLE Business Law Institute, Minneapolis, MN (September 2020)
- Understanding Privacy and Data Security Laws and Requirements in Agreements, Minnesota CLE Webcast (May 2020)
- Force Majeure/COVID-19/Privacy and Security Provisions in Contracts, ACA International Daily Huddle, Minneapolis, MN (April 2020)
- Understanding Privacy and Data Security Laws and Requirements in Agreements, Minnesota CLE 2020 Midwest Legal Conference on Privacy & Data Security (February 2020)
- Drafting Big Data Licensing Agreements: Key Provisions, Anonymization, Due Diligence, and Salting the Database, Strafford nationwide webinar (February 2020)
- State Privacy Law Developments, Including the California Consumer Privacy Act, Minnesota State Bar Association Communications Law Section, Minneapolis, MN (January 2020)
- Ransomware: Best Defense Strategies Against Attacks, the Knowledge Group webinar (December 2019)
- CCPA Coming in 2020 – What You Need to Know Now for Complying with New Privacy Laws, Crowe LLP nationwide webinar (November 2019)
- GDPR, Association of Statisticians of American Religious Bodies 85th Annual Meeting (October 2019)
- Private Company Leadership Symposium: Privacy and Data Governance, Global Board Leaders’ Summit, National Association of Corporate Directors, Washington, DC (September 2019)
- Financial Executives International Technology for Finance Leaders Conference, Minneapolis, MN (June 2019)
- Mastering E-Commerce and Data Law, Rossdale CLE, nationwide webinar (June 2019)
- Advising the Board of Directors on Privacy, Data Security and Emerging Technologies and State Data Privacy Law Developments, 2019 Minnesota CLE Business Law Institute, Minneapolis, MN (May 2019)
- A Brief Overview of US and European Union Privacy and Data Security Laws, The University of St. Thomas School of Law Journal of Law & Public Policy Spring Symposium: Consumer Privacy Law, Minneapolis, MN (March 2019)
- Tech Series: GDPR Update , Minnesota CLE Webcast (March 2019)
- 2019: Developments in EU, US and Global Privacy, International Association of Privacy Professionals Minneapolis/St. Paul KnowledgeNet, St. Paul, MN (February 2019)
- Minnesota CLE 2019 Midwest Legal Conference on Privacy & Data Security (January 2019)
- MinneFRAMA: Financial, Retail and Marketing Analytics Conference, MinneAnalytics, St. Paul, MN (December 2018)
- Vendor Agreements: Understanding the Latest Privacy and Data Security Requirements, ePlace Solutions webinar (November 2018)
- Vendor Risk Management: Maintaining Relationships While Limiting Liability, International Association of Privacy Professionals Privacy. Security. Risk. 2018, Austin, Texas (October 2018)
- Big Data Use and Licensing Agreements: Key Contractual Provisions, Strafford webinar (July 2018)
- Data Security: How to Stay Compliant with Changing Global Privacy and Data Security Laws, Minnesota CLE Webcast (July 2018)
- Geolocation Information, International Association of Privacy Professionals Minneapolis/St. Paul KnowledgeNet on Mobile and Social Media Privacy, Minneapolis, MN (June 2018)
- SMART for Business: Cybersecurity, Minneapolis Regional Chamber of Commerce, Minneapolis, MN (June 2018)
- Navigating the Requirements for Email and Text Messages in Healthcare, Minnesota CLE 2018 Health Law Institute (June 2018)
- Mitigating Risk and Liability of a Data Breach, Minnesota State Bar Association Communications Law Section, Minneapolis, MN (April 2018)
- Real-life Cyber Events: A Roadmap for Privately Held Businesses, Cobb Strecker Dunphy & Zimmermann Webinar, Minneapolis, MN (March 2018)
- Mastering Online Surveillance, GDPR, & Cyber Security Law, Rossdale CLE, nationwide webinar (March 2018)
- Staying Out of the News: How to Address Today’s Security Addenda and the GDPR, VLP Webinar, (January 2018)
- Advising the Board of Directors on Privacy and Data Security, Minnesota CLE 2018 Midwest Legal Conference on Privacy & Data Security, Minneapolis, MN (January 2018)
- Cybersecurity, Executive Women’s Council, Minneapolis Regional Chamber of Commerce, Minneapolis, MN (January 2018)
- Cybersecurity Threats and Trends: Best Practices for Small Businesses, LegalCORPS and America’s Small Business Development Center (SBDC)/Minnesota, University of St. Thomas, Minneapolis, MN (December 2017)
- Presentation on Cyber Governance, Financial Executives International Committee on Governance, Risk & Compliance (CGRC) (October 2017)
- Regulating Privacy, Global Board Leaders’ Summit, National Association of Corporate Directors, National Harbor, MD (October 2017)
- The Increasing Risks of Ransomware: What Your Business Needs to Know and Do, the Knowledge Group webinar (October 2017)
- Algorithms, Transparency and Ethics – Now and in the Future, Financial and Retail Conference on Analytics, MinneAnalytics, University of Minnesota, Minneapolis, MN (August 2017)
- Ransomware: Protecting your Money and Assets, the Knowledge Group webinar (June 2017)
- Technology Conference: Implementing Tomorrow’s Technologies Today, Minneapolis, MN (June 2017)
- 5 Key Topics in Data Security for Business Lawyers, 2017 Business Law Institute, Minnesota CLE (May 2017)
- Breach Notifications: How to Handle Breaches Across Jurisdictions, LegalTech News/Epiq Systems webcast (February 2017)
- Business Law Series: Advising the Board of Directors on Privacy and Data Security (February 2017)
- What Do CISOs Want Lawyers to Understand about Cybersecurity?, Minnesota CLE Privacy & Data Security Legal Conference, Minneapolis, MN (January 2017)
- Canadian Privacy Law, PricewaterhouseCoopers LLP Midwest Privacy Retreat (November 2016)
- VLP Partner Melissa Krasnow Authors Three Articles on IRMI.com: “Minnesota Consumer Data Privacy Act: Application, Definitions, Consumer Rights, and Notices,” “Minnesota Consumer Data Privacy Act: Controllers, Processors, and Enforcement” and “Minnesota Consumer Data Privacy Act: Exceptions”
(May 14, 2025) - VLP Partner Melissa Krasnow Authors Four Articles on IRMI.com: “Colorado Artificial Intelligence Law: Deployer and Developer Definitions,” “Colorado Artificial Intelligence Law: Deployer Disclosure Requirements,” “Colorado Artificial Intelligence Law: Developer Disclosure Requirements,” and “Colorado Artificial Intelligence Law: Enforcement and Exceptions”
(Jun 21, 2024) - VLP Partner Melissa Krasnow Quoted in Wall Street Journal Pro Cybersecurity article “Federal Authorities Say UnitedHealth Can Notify Victims of Massive Data Breach”
(Jun 17, 2024) - VLP Partner Melissa Krasnow Authors Three Articles on IRMI.com: “New Jersey Privacy Law: Application, Definitions, and Consumer Rights,” “New Jersey Privacy Law: Notices, Controllers and Processors, and Enforcement” and “New Jersey Privacy Law: Exceptions”
(Jun 3, 2024) - VLP Partner Melissa Krasnow Quoted in Wall Street Journal Pro Cybersecurity article “Kenvue Revamps Cyber Tools After Spinoff From J&J”
(Apr 18, 2024) - Webinar: Cyber Resilience in Action: Incident Response Plans for Modern Organizations
(Mar 12, 2024) - Webinar: Overview of State Privacy Laws, including California Privacy Rights Act
(Mar 8, 2024) - VLP Partner Melissa Krasnow Quoted in the Bloomberg Law Article “Taxing Digital Sales Raises Concerns About ZIP Codes, Privacy”
(Nov 17, 2023) - VLP Partner Melissa Krasnow Quoted in the Bloomberg Law Article “Federal Cyber Breach Reporting Rules Reach an Uneasy Balance”
(Nov 15, 2023) - VLP Partner Melissa Krasnow Quoted in the Bloomberg Law Article “X Plans for AI on Collision Course With Latest US Privacy Laws”
(Sep 5, 2023) - VLP Partner Melissa Krasnow Authors Two Articles on IRMI.com: “Washington My Health My Data Act: Definitions” and “Washington My Health My Data Act: Requirements and Exceptions”
(Aug 31, 2023) - VLP Partner Melissa Krasnow Authors Three Articles on IRMI.com: “Texas Data Privacy Act: Application, Definitions, Rights, and Notice,” “Texas Data Privacy Act: Controllers, Assessments, Data, Enforcement” and “Texas Data Privacy Act: Exceptions”
(Jul 26, 2023) - VLP Partner Melissa Krasnow Quoted in the Bloomberg Law Article “Amazon, Microsoft Deals on Kids’ Data Enforce FTC’s Privacy Vow”
(Jun 9, 2023) - VLP Partner Melissa Krasnow Authors Two Articles on IRMI.com: “California Age-Appropriate Design Code Act: Application, Assessments” and “California Age-Appropriate Design Code Act: Other Requirements”
(Jan 30, 2023) - VLP Partner Melissa Krasnow Quoted in the Wall Street Journal Pro Cybersecurity Research “Biden, Trump Document News Highlights Corporate Risks””
(Jan 25, 2023) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Nov 18, 2022) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Nation-Backed Cyberattacks Escalate Push to Bolster Data Shields”
(Sep 29, 2022) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “New York Proposes Bigger Cyber Role for Bank, Insurer Boards”
(Aug 22, 2022) - VLP Partner Melissa Krasnow Quoted in The Record by Recorded Future Article “T-Mobile reaches historic $350 million settlement in 2021 data breach”
(Jul 28, 2022) - VLP Partner Melissa Krasnow Quoted in Law360 Article “Top Privacy Developments Of 2022: Midyear Report”
(Jul 26, 2022) - VLP Partner Melissa Krasnow Authors International Risk Management Articles “Connecticut Data Privacy Act: Application and Definitions,” “Connecticut Data Privacy Act: Controllers and Processors, Assessments, De-identified Data, and Enforcement,” and “Connecticut Data Privacy Act: Exceptions.”
(Jun 15, 2022) - VLP Partner Melissa Krasnow Authors International Risk Management Articles “UCPA: Application, Definitions, Consumer Rights, and Obligations” and “UCPA: Deidentified Data, Enforcement, and Exceptions”
(May 11, 2022) - VLP Partner Melissa Krasnow Authors “The FTC Safeguards Rule: Information Security Program Elements” for CPI TechREG Chronicle (April 2022)
(Apr 29, 2022) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “California Businesses Gain Clarity on Consumer Data Requests”
(Mar 22, 2022) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Mar 3, 2022) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Meta’s Facial Recognition Lawsuit Underscores Enforcement Risk”
(Feb 16, 2022) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Indiana Senate Passes Consumer Privacy Bill Lacking Right to Sue”
(Feb 4, 2022) - VLP Partner Melissa Krasnow Quoted in The Record by Recorded Future Article “Merck wins cyber-insurance lawsuit related to NotPetya attack”
(Jan 24, 2022) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Dec 21, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Soltani Brings Technical, Regulatory Expertise to Privacy Agency”
(Oct 7, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “As Labor Day Nears, Security Teams Watch for Holiday-Timed Hacks”
(Sep 14, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Article “Colorado Privacy Act: Exceptions”
(Aug 20, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Articles “Colorado Privacy Act: Application, Definitions, Rights, and Notices” and “Colorado Privacy Act: Controllers, Assessments, Data, and Enforcement”
(Jul 30, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Kaseya Hack Pushes Companies to Deepen Attorney, IT Relationship”
(Jul 9, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Pending Cyber-Risk Reporting Rules Signal Stricter Enforcement”
(Jun 30, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Massive Ransomware Hits Likely to Hasten Cloud Security Shift”
(Jun 4, 2021) - VLP Partner Melissa Krasnow Quoted in the Bloomberg Law Article “Insurance, Regulatory Ripples Likely After Colonial Pipeline Hack”
(May 13, 2021) - VLP Partner Melissa Krasnow Quoted in The Wall Street Journal Pro Cybersecurity Article “The Hack of a Small Tech Vendor Casts a Wide Net”
(May 6, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Facebook Data Dump Likely to Bring Regulatory Scrutiny, Lawsuits”
(Apr 14, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Article “VCDPA: Assessments, De-identified Data, Enforcement, and Exceptions”
(Mar 23, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Surveillance Camera Hack Raises Legal Risk of Digital Device Use”
(Mar 18, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Article “VCDPA: Applications, Definitions, Consumer Rights, and Obligations”
(Mar 15, 2021) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Mar 3, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Florida Governor Backs Data Privacy Bill Akin to California Laws”
(Feb 18, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Article “California Privacy Rights Act: Exceptions”
(Feb 3, 2021) - New Law Mandates Improved Cybersecurity for Government Internet of Things (IoT) Devices
(Jan 28, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “N.Y. Privacy Bill Carries Litigation, Enforcement Hike Potential”
(Jan 12, 2021) - VLP Partner Melissa Krasnow Authors International Risk Management Article “California Privacy Rights Act: Consumer Rights, Enforcement and Security”
(Jan 7, 2021) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Litigation Specter Looms for SolarWinds Following Cyberattack”
(Dec 21, 2020) - VLP Partner Melissa Krasnow Authors International Risk Management Article “California Privacy Rights Act: Background, Application and Definitions”
(Dec 15, 2020) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Becerra Would Depart California as State Ups Privacy Policing”
(Dec 8, 2020) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law Article “Home Depot Agrees to Pay $17.5 Million in Breach Settlement (2)”
(Nov 25, 2020) - VLP Partner Melissa Krasnow Quoted in Bloomberg Law “Data Mining in Exchange for Insurance Carries Breach, ID Risks”
(Oct 8, 2020) - VLP Partner Melissa Krasnow Authors International Risk Management Article “California Consumer Privacy Act Regulations: Privacy Policy and Notice”
(Sep 3, 2020) - VLP Partner Melissa Krasnow Authors Bloomberg Insights Article “Cyber-Risk Oversight Practices of Public, Private Boards”
(Jul 2, 2020) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “The New York SHIELD Act Reasonable Security Requirement”
(Jun 9, 2020) - VLP Partner Melissa Krasnow Quoted in ScienceMag.org on Cellphone Tracking and Coronavirus
(Mar 25, 2020) - VLP Partner Melissa Krasnow Co-Authors Two Resources for Thomson Reuters Practical Law: “Written Information Security Programs: Compliance with the Massachusetts Data Security Regulation” and “Written Information Security Program (WISP)”
(Feb 25, 2020) - VLP Partner Melissa Krasnow International Risk Management Article “Changes in Other California Privacy and Data Security Laws”
(Jan 28, 2020) - VLP Partner Melissa Krasnow Quoted in Private Company Director on Cybersecurity Oversight
(Jan 24, 2020) - VLP Partner Melissa Krasnow co-authored “What Directors Need to Know about the California Consumer Privacy Act” for the National Association of Corporate Directors Blog
(Jan 15, 2020) - VLP Partner Melissa Krasnow Quoted in Law360 on New York Data Security Law
(Nov 21, 2019) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “The California Consumer Privacy Act, as Amended”
(Oct 23, 2019) - VLP Partner Melissa Krasnow Was a Contributor to the Canadian and International Regulatory Update in Aon Canada’s State of the Market – Cyber and Privacy Liability
(Oct 22, 2019) - VLP Partner Melissa Krasnow Quoted in The Wall Street Journal Pro Artificial Intelligence
(Oct 11, 2019) - VLP Partner Melissa Krasnow Featured in Financial Executives International Daily Article “Cyber Security: What You Need to Know to Face the Inevitable”
(Aug 23, 2019) - VLP Partner Melissa Krasnow Authors Bloomberg Law Insights Article “Cyber−Risk Oversight Practices of Public and Private Company Boards of Directors”
(Jul 31, 2019) - VLP Partner Melissa Krasnow Quoted in The Wall Street Journal Pro Cyber News Article “Hackers Defraud Homeowners Out of Hundreds of Thousands of Dollars”
(Jul 23, 2019) - VLP Partner Melissa Krasnow Quoted in Wall Street Journal Pro Cybersecurity Newsletter Article “Companies Gird for Class-Action Suits After Data Breaches”
(Jul 9, 2019) - VLP Partner Melissa Krasnow Authors International Risk Management Institute Article “Summary of Amendment to Nevada Privacy Law”
(Jun 26, 2019) - A Brief Overview of the California Consumer Privacy Act of 2018
(Jul 19, 2018) - Developments Generating Demand for Privacy and Data Security Legal Practice
(Mar 1, 2017)