CLAYTON G. NORTHOUSE is a partner in Sidley’s Privacy and Cybersecurity practice. Clay counsels technology, telecommunications, healthcare, and other companies on cybersecurity, incident response, consumer privacy, surveillance and information sharing, and regulatory compliance in domestic and international contexts.
Clay has experience representing companies that have suffered cybersecurity attacks and consumer privacy incidents and has developed defenses to litigation, congressional inquiries, and regulatory investigations. He has experience in the use of cybersecurity forensics and the investigation of sophisticated international cyber and privacy incidents.
Clay’s practice involves litigation and regulatory counseling regarding data protection and consumer privacy issues. He has co-authored briefs and motions in the U.S. Supreme Court, the U.S. Courts of Appeals, and U.S. District Courts. He also regularly advises clients in transactional matters and conducts privacy and cybersecurity diligence to assess potential liability and compliance issues.
Reflecting the breadth of his practice, Clay’s recent experience includes:
- Advising a major technology company regarding privacy and cybersecurity issues with respect to all of its contemplated mergers and acquisitions.
- Representing companies in state attorneys general, Federal Communications Commission, Federal Trade Commission and congressional investigations regarding privacy and cybersecurity issues.
- Providing guidance on insider threat programs for financial institutions and on behalf of SIFMA in the development of its Insider Threat Best Practices Guide (2018).
- Successfully defending companies against allegations of negligence, contract violations, unjust enrichment and other claims regarding data security incidents.
- Addressing CCPA and CPRA compliance challenges for a major telecommunications company.
- Advising U.S. companies on EU cross-border data transfer and cloud computing issues.
- Reviewing TCPA compliance issues and developing governance policies and procedures for telecommunications, financial and healthcare companies.
- Assisting clients regarding CPNI regulatory compliance.
- Counseling U.S. and global companies on CCPA and GDPR issues.
Clay’s litigation experience includes:
- Hall v. MyHeritage, Ltd. (D. Utah 2018) – represented defendants in a purported class action involving allegations arising out of a data breach. Sidley obtained a complete dismissal prior to discovery.
- In re: Office of Personnel Management Data Security Breach Litigation (D.C. Cir. 2018) – represented U.S. Chamber of Commerce as amicus in support of OPM and KeyPoint Government Solutions to uphold dismissal of data breach litigation on grounds of lack of standing and government contractor immunity.
- Levandowski, et al. v. Gannett Satellite Information Network, Inc. (E.D. Mich. 2016) – represented the defendant in a proposed class action alleging violations of the Michigan Video Rental Privacy Act. Sidley obtained a dismissal of all claims prior to discovery.
- CTIA v. City of New York (Sup. Ct. NY 2014) – represented a CTIA member wireless carrier to protect access to customer data.
Clay has performed significant pro bono work and regularly advises nonprofit organizations regarding their privacy programs.
Prior to joining the firm, Clay served as a law clerk to the Honorable D. Michael Fisher of the U.S. Court of Appeals for the Third Circuit. He completed a Pro Bono fellowship with the Barbara McDowell Appellate Advocacy Project at the Legal Aid Society of the District of Columbia.
Clay earned his law degree, magna cum laude, at the Georgetown University Law Center, where he was the Senior Articles Editor of The Georgetown Law Journal.
Selected Publications
- "Five Key Responsibilities of Boards in Managing Cybersecurity Risk," Corporate Board Member magazine (2017) (with Edward McNicholas)
- "Federal Trade Commission Enforcement of Privacy and Data Security," 500 Privacy & Data Security Practice Series (Bloomberg BNA 2014, 2018, 2020) (with Edward McNicholas, Andrew Strenio, and Dean Forbes)
- "Protecting What Matters: Technology, Liberty and Security Since 9/11," (Brookings Institution Press 2006)
- Ramon C. Barquin and Clayton G. Northouse, “Data Collection and Analysis: Balancing Individual Rights and Societal Benefits,” (National Academy of Sciences 2003)