Marissa Boynton advises US and global clients across all market sectors on cybersecurity and data privacy, data breach response, and consumer protection.
Ms. Boynton provides comprehensive advice on regulatory compliance, investigations, and litigation related to:
- Privacy and data security-related regulatory enforcement
- Privacy and data security compliance and program management
- Complex data breach incidents, including forensic investigations
- Computer fraud and cybercrime
- Advertising and marketing practices, as well as other consumer protection issues
Ms. Boynton represents a broad range of clients from emerging companies to global market leaders. She has particular knowledge of the technology, healthcare, retail, and professional services sectors.
Ms. Boynton advises clients on various laws governing data privacy and consumer protection, including those under the California Consumer Privacy Act (CCPA), Health Insurance Portability and Accountability Act (HIPAA), Gramm Leach Bliley, Children’s Online Privacy Protection Act (COPPA), Federal Trade Commission Act, CAN-SPAM, and telemarketing laws, as well as self-regulatory and online behavioral advertising guidelines.
Ms. Boynton frequently represents clients before the Federal Trade Commission (FTC), state attorneys general, and other government agencies and bodies. Ms. Boynton has also represented clients in high stakes litigation matters in state and federal courts.
Ms. Boynton maintains an active pro bono practice. She has represented inmates suffering from mental illness in a class action lawsuit against the Bureau of Prisons as well as individuals in immigration proceedings, and has advised nonprofit organizations on data privacy and cybersecurity matters.
Prior to joining the firm, Ms. Boynton clerked for United States District Judge Liam O’Grady in Alexandria, Virginia.
Ms. Boynton’s experience includes representing:
- A significant social media company in matters before the FTC, state attorneys general, and international regulatory bodies on issues related to privacy and security, including in connection with a data breach affecting tens of millions of users
- A global enterprise following state-sponsored advanced persistent threat (APT) cyberattacks targeting internal corporate data
- A data analytics company in an investigation into its privacy and security practices