Mandy L. Stanton

Mandy Stanton combines her years of experience as in-house counsel for an international information technology and data marketing firm with her expertise in state and federal privacy and data security requirements to help clients evaluate and manage information security and privacy matters. She counsels clients on incident readiness and response, structuring and implementing information privacy policies and programs, data breach notification laws, information governance issues and vendor management. She also assists businesses with drafting and negotiating complex commercial contracts to ensure responsible access, transfer and use of data and associated intellectual property. Mandy is a Certified Information Privacy Professional/Europe (CIPP/E) and Certified Information Privacy Professional/US (CIPP/US), credentials earned from the International Association of Privacy Professionals.   

Experience

• Reviews client data privacy and security practices and policies for compliance with GDPR, CCPA and state insurance data security laws.
• Assists clients in creating and implementing privacy policies and programs.
• Assists clients in developing vendor management procedures.
• Assists clients in evaluating and managing risks associated with privacy and data security practices, including incident readiness and response.
• Assists clients in responding to security incidents, including conducting fact investigations and drafting legally-compliant notifications.
• Advises on privacy and data security due diligence in connection with corporate transactions (e.g., M&A transactions).

Education

• International Association of Privacy Professionals - Certified Information Privacy Professional/Europe (CIPP/E) (2020)
• International Association of Privacy Professionals - Certified Information Privacy Professional/US (CIPP/US) (2015)
• University of Arkansas School of Law J.D. (2004)
• University of Arkansas B.A. in Journalism (2001)

Involvement

• Member, International Association of Privacy Professionals 
• Member, American Bar Association
• Member, Arkansas Bar Association
• Member, Arkansas Women Lawyers Association
• Board of Directors, Ozark Mission Project
• Chair, Mitchell Williams Attorney-Staff Committee
• Volunteer, Quapaw Quarter Association
• Former Adjunct Professor, University of Central Arkansas

News & Articles

Firm News

• Mitchell Williams Attorneys Mandy Stanton and Anton Janik Earn CIPP/E - Earned the Certified Information Privacy Professional/Europe (CIPP/E) Credential Through the International Association of Privacy Professionals (IAPP)
• Mitchell Williams Attorney Mandy Stanton Presented During the TALHI Regulatory Round Table Webinar Series - Discussing Third-Party Oversight Under the Insurance Data Security Model Law
• Mitchell Williams Attorneys Michele Allgood, John Bryant and Mandy Stanton Presented at the Arkansas Municipal League Municipal Finance Training - Discussing Financing Capital Improvements and Ransomeware Attacks
• Mitchell Williams Attorneys Anton Janik and Mandy Stanton Presented at the Arkansas Better Business Bureau Cybersecurity Summit
• Mitchell Williams Attorney Mandy Stanton Presented at National Alliance of Life Companies (NALC) 2019 Fall Conference - Discussed Recent International, Federal and State Government Regulations on Privacy and Protection of Personal Information
• Mitchell Williams Attorneys Anton Janik and Mandy Stanton Presented at the Arkansas Governmental Finance Officers Association's Annual Conference - Discussed privacy and data protection
• Mitchell Williams Attorneys Anton Janik and Mandy Stanton Presented Webinar during the Arkansas Bar Association's Best of CLE - Reviewed the World's Greatest Public and Private Data Breaches, the Cost and How They Could Have Been Avoided
• Mitchell Williams Attorneys Clay Stone, Ben Jackson and Mandy Stanton Presented at the 85th Annual Arkansas Municipal League Convention - Discussed the Arkansas Freedom of Information Act (FOIA); The Latest on Cybersecurity Best Practices for Municipalities
• Mitchell Williams Attorney Mandy Stanton Presents at Rotary Club 99 in Little Rock - Discusses Data Privacy and Cybersecurity Issues Facing Businesses
• Mitchell Williams Attorneys Mandy Stanton and Anton Janik Presented at Arkansas Better Business Bureau Cybersecurity Summit - Discussed Legal Obligations To Keep Data Safe
• Mitchell Williams Attorneys Anton Janik and Mandy Stanton Presented at the Arkansas Bar Association's 2019 Cyberintelligence Summit - Reviewed the World's Greatest Public and Private Data Breaches, the Cost and How They Could Have Been Avoided
• Mitchell Williams Attorneys Anton Janik and Mandy Stanton Presented at the Little Rock WordPress Meetup - Discussed General Data Privacy Regulation and What Privacy Means for Websites
• Mitchell Williams Attorney Mandy Stanton Discusses Necessary Elements in Vendor/Partner Contracts at the Arkansas Bankers Association Mega Conference
• Mitchell Williams Attorney Mandy Stanton Presents on GDPR - Discusses GDPR Compliance at Arkansas Bar Association Media, Privacy and Intellectual Property Law Seminar
• Mitchell Williams Elects Nine New Members - Brenner, Browning, Bryant, Conklin, Johnson, Johnston, MacLennan, Provencher and Stanton Now Firm Members

Articles

• Back to Basics: Valuable Reminders from Capital One's Data Breach
• Data Security Threats to Consider While Employees are Working Remotely
• Cybersecurity Enforcement Deadlines in the Wake of COVID-19
• So What's All This About Zoom?
• Location, Location, Location: What Will Your Personal Data Reveal Besides Whether or Not You #StayHome?
• Cybersecurity in the Time of COVID-19
• Fueling the Fire: How Extortion Has Changed the Face of Data Breaches
• Municipalities vs. Ransomware Attacks - Who's Winning?
• Did 2018 Set In Motion Privacy Regulation in the U.S. Landscape? Let's Review
• The Rise of Wire Fraud: Cybercrimes Targeting Money Wired in Real Estate Transactions Increasing
• Hospitals In The Crosshairs: Managing Cybersecurity Risk (2)
• Hospitals In The Crosshairs: Managing Cybersecurity Risk (Part 1 )
• ARE YOU READY FOR GDPR?
• Don't Ignore Privacy and Data Security: Pre-Deal and Negotiation Considerations for Buyers in Merger and Acquisition Transactions

Publications