Andy Roth is the legacy co-chair of Dentons' global Privacy and Security group.
Andy has deep experience enabling new technologies such as social, mobile, cloud and big data, with a specialization in large-scale systems that leverage proprietary and third-party data to drive actionable insights and organizational transformation. Andy's unique background in law and technology helps him design client-focused strategies for accelerating new products and services to market with strict respect for personal privacy. Prior to joining Dentons Andy was the Chief Privacy Officer globally for American Express.
Andy is also a prominent thought leader on digital payments, virtual currencies and cybersecurity, providing insight into the unique regulatory challenges surrounding next generation financial services. A frequent commentator on the legal implications of Bitcoin, he recently negotiated a US$1 million settlement on behalf of a gaming client with a state attorney general regarding Bitcoin mining, a matter which was covered by Wired and Forbes magazines. Andy also serves as pro bono counsel to the Bitcoin Foundation in its mission to promote and standardize the use of Bitcoin.
Andy regularly advises clients on a range of issues, including but not limited to:
- Data breach, crisis management and business continuity planning
- Privacy notices, online privacy statements and privacy choices
- Data lifecycle management and data leakage prevention
- Compliance and operational risk management
- Privacy and security contractual requirements
- Privacy and security policies and training
- E-Commerce and online transactions
- Privacy audits and risk assessments
- Privacy and security litigation
- Cross-border data transfers
- Secure data architecture
Andy maintains close relationships with thought leaders in Silicon Valley, Washington, DC, and around the world, and he has gained a reputation as both a privacy advocate and a technology evangelist.
Activities and Affiliations
- "Critical employment issues facing multi-national employers," Privacy Panel for Dentons global Employment and Labor program, New York, NY, December 10, 2014
- "Dailydooh Media Conference," New York, NY, October 22, 2014
- "DC Office CLE Data Breach and Crisis Management," Washington DC, October 10, 2014
- "Bitcoin CLE with Marco Santorini NYSBA," October 2, 2014
- "Privacy Breakout Sessions," 2014 Media Law Conference, Reston, Virginia, September 17-19, 2014
- Advisory Board member, The Center on Law and Information
- Former Advisory Board member, The Responsible Information
- Former Advisory Board member, The Centre for Information Policy
- Former Advisory Board member, The Future of Privacy Forum
Prior and Present Employment
Prior to joining the firm, Andy was chief privacy officer at American Express Company. Under his leadership, American Express was ranked "The #1 Most Trusted Company for Privacy" four years in a row by the Ponemon Institute, while launching bold new digital partnerships and initiatives.
During his time with American Express, Andy was responsible for ensuring the privacy of more than 100 million customers and 60,000 employees worldwide. He built a progressive global program based on the principles of Privacy by Design, where policies, capabilities and stakeholders were fully integrated within the risk management framework of the bank. Andy has extensive experience dealing with regulators at all levels, including the Federal Reserve Bank and the Federal Trade Commission in the United States as well as European and Asian data protection authorities abroad.
Before joining American Express, Andy was an attorney with Weil, Gotshal & Manges LLP, where his diverse practice included patent and intellectual property law, mergers and acquisitions, litigation, financial services, antitrust and competition, advertising, media, entertainment and professional sports.