Steve Britt is an experienced corporate and technology lawyer with deep knowledge in cybersecurity, data privacy, and artificial intelligence (AI). He holds three IAPP certifications — the Artificial Intelligence Governance Professional (AIGP), Certified Information Privacy Professional/Europe (CIPP/E), and Certified Information Privacy Manager (CIPM) — which are the international gold standards for data privacy and AI for privacy professionals.
Steve counsels global and U.S. companies on the full range of data protection and AI laws and regulations, including the European Union's General Data Protection Regulation (GDPR), the EU Artificial Intelligence Act, the more than 20 state data privacy laws, the Colorado and Utah AI laws, and related consumer protection, data breach, and consumer privacy laws and regulations.
He also counsels government contractors on FARs and DFARs issues, including cybersecurity, FedRAMP, CMMC, and the wave of new federal regulations resulting from the White House’s October 2023 executive order on responsible development of AI.
He is a frequent speaker and writer on cybersecurity and data privacy.
Steve drafts data protection and AI fundamental rights assessments, data transfer agreements, data subject access requests, privacy policies, written information security programs, and state data protection assessments. He also provides employee training and data protection due diligence advice to investors.
In addition, Steve has extensive experience in all related software licensing issues, including managed services, software as a service (SaaS), cloud, data hosting, and software development agreements. He has represented international clients from the United Kingdom, France, Germany, and the Netherlands. His deep understanding of technology licensing underpins his cybersecurity and data privacy practice.