Melissa Krasnow is a Partner and practices in the areas of domestic and cross-border (Canada and Europe) privacy and data security, technology transactions, and mergers and acquisitions. Melissa is a prominent national and international speaker and author, and is mentioned in media. Click here for a one-page list of privacy and data security resources. VLP is a BTI Cybersecurity Standout 2020 – Leading Cybersecurity & Data Privacy Law Firm.

Melissa counsels companies on HIPAA, FERPA, financial services regulatory laws, state laws (including the California Consumer Privacy Act (CCPA)/California Privacy Rights Act (CPRA) and Colorado, Utah and Virginia privacy laws), the European Union (EU) General Data Protection Regulation (GDPR), PCI DSS, NIST, the CAN SPAM Act, and the TCPA.

Melissa advises companies on privacy, data security, technology matters, and cyber governance, including data breaches/incidents, preparing written information security programs (organizational and employee), devising U.S., Canada and GDPR incident response plans, and facilitating and participating in tabletop exercises (including ransomware). She counsels boards of directors and officers on privacy, data security and technology risk oversight and developments. and reviews cyber liability insurance policies.

Melissa advises companies on regulatory inquiries and complying with state, federal, and international privacy and data security, advertising and marketing, governance and compliance, and regulated industry laws. She prepares website and mobile application privacy policies and terms (including regarding the GDPR, CCPA/CPRA, and other state privacy laws, geolocation, big data, and artificial intelligence/chatbots), and technology policies.

Melissa works with companies on negotiating (and renegotiating in the wake of data breaches/incidents) and documenting technology and commercial transactions, including master services agreements (MSAs), non-disclosure agreements (NDAs), data security addenda (DSAs), business associate agreements (BAAs), data license agreements (DLAs), GDPR and other data processing agreements (DPAs) and CCPA/CPRA and other state privacy law agreements, and assists companies with coronavirus (COVID-19) legal and contractual issues.

In mergers and acquisitions, Melissa counsels companies on privacy, data security, and technology matters and on foreign investment filing obligations.


  • J.D., Northwestern University School of Law, 1992
  • A.B., Wellesley College, 1989, magna cum laude, Phi Beta Kappa and Durant Scholar
  • University of British Columbia, visiting student, 1987-1988, Class 1 Standing

Honors & Awards

  • Minnesota State Bar Association North Star Lawyer, Pro Bono Service, 2014 – 2021
  • VLP is a BTI Cybersecurity Standout 2020 – Leading Cybersecurity & Data Privacy Law Firm.
  • Who’s Who in America, Women in Law – Minnesota, 2021