McDermott Will & Emery LLP

Outsourcing/Privacy & Cybersecurity

Partner Todd S. McClelland advises companies on complex, international legal issues associated with cybersecurity breaches and compliance, data privacy compliance, and data, technology, cloud and outsourcing transactions. Todd counsels clients in many industries, including payment processors, cybersecurity product providers, retailers, petro companies, financial institutions and traditional brick-and-mortar companies.

Todd handles some of the largest and most well-known (and unknown) cybersecurity incidents, as well as pre-breach cyber activities, such as cyber tabletops, incident response plan design, leading client and vendor penetration testing, designing cyber risk management programs, and advising corporate boards on cybersecurity issues. He also has extensive experience with PCI/payment system compliance and incidents.

In his outsourcing and technology practice, Todd is highly skilled in data licensing, cloud (e.g., SaaS, IaaS, PaaS), large scale systems integration projects (e.g., Microsoft Dynamics 365), traditional outsourcing (e.g., ITO, HRO, ADM, BPO), and new technology partnering initiatives (e.g., AI/ML, and Quantum).

Prior to his legal career, Todd was an engineer designing and programming industrial control, robotics and automation systems. This background gives him unique perspective and understanding of the technology underlying the cybersecurity and privacy issues he addresses.

Georgia Tech’s Institute for Information Security & Privacy, advisory board State Bar of Georgia, IP Section, past chair International Association of Privacy Professionals, member CISO Executive Network, member and host