ABOUT
DANIEL B. ROSENZWEIG
Founder & Principal Attorney
Daniel B. Rosenzweig is a Data Privacy, AI, and Cybersecurity attorney. He advises clients on legal and technical compliance with data privacy and AI laws, including the CCPA/CPRA, CO AI Act, and other state privacy and AI laws, CAN-SPAM Act, COPPA, ePrivacy Directive, GDPR, EU AI Act, FTC Act, GLBA, HIPAA, TCPA, and VPPA. He also counsels clients on industry mobile app store requirements, AdTech, and privacy-enhancing technologies (PETs).
Daniel’s legal practice is unique in that he develops technical solutions to enhance his legal services, often serving as a bridge between legal, marketing, and technical teams. He excels at helping legal, development, and product teams put the law into action by translating complex legal requirements into actionable technical implementations. For example, he developed a technical solution that evaluates consumer-facing websites and mobile apps, generating reports on data collected and disclosed to help companies assess privacy risks and implement appropriate mitigations. He also developed tools to detect and validate the effectiveness of consumer preference signals (e.g., opt-outs and consent flows), identify and mitigate VPPA and wiretap (e.g., session replay) exposure, and leverage AI to conduct legal research across various state data privacy laws and regulations.
Daniel assists clients across many different sectors, including, among others: media, retail, telecommunications, healthcare, sports, financial services, hospitality, and tech. With Daniel's legal and technical knowledge, he translates complex legal and technical concepts into digestible action items for an organization’s legal, development, and marketing teams.
READ MORE
Daniel advises clients on the building and implementing legal and technical data privacy and AI compliance programs across all stages of the development lifecycle, including:
- drafting applicable disclosures, privacy policies, operational controls, consent flows, opt-outs, data privacy portals/webforms, and contracts;
- performing technical testing and validation of data protection/privacy preference signals (e.g., GPC) and controls across websites, mobile apps, and IoT devices;
- advising on Data Subject Requests ("DSRs") and Verifiable Consumer Requests;
- conducting data mapping exercises and risk assessments, including Privacy Impact Assessments (PIAs) and Data Protection Impact Assessments (DPIAs); and
- assisting clients with onboarding vendors and new technologies, including AI, Large Language Models (LLMs), and more.
Daniel also focuses on matters related to advertising, marketing, autonomous and connected vehicles, and regulatory investigations.
Before establishing DBR Tech Law, Daniel carved his reputation as a seasoned attorney at an international AM Law 20 law firm. While attending the Georgetown University Law Center, he served as a law clerk at the United States Senate Committee on Homeland Security and Governmental Affairs, where he worked on homeland security and cybersecurity issues. He was also a Legal Intern in FTC Commissioner Julie Brill’s office, focusing on online privacy, data security, and consumer protection law. He’s regularly invited to speak at professional conferences, contribute to industry articles, and appear on relevant podcasts.
Beyond his legal commitments, Daniel devotes time to Big Brothers Big Sisters, where he mentors as a committed “Big Brother.”
Education
- JD, Georgetown University Law Center
- BA, University of Delaware
Admissions
- New York
- District of Columbia
Speaking Engagements
- beeler.tech Navigator NYC, Compliance Is a Balancing Act, May 6, 2025
- IAPP Global Privacy Summit, Tracking Innovation: Staying Compliant in the Shifting Adtech Landscape, April 24, 2025
- The Palo Alto Networks Unit 42 Threat Vector Podcast, Privacy and Data Protection in the Age of Big Data, April 24, 2025
- IAB Public Policy & Legal Summit, How Policy Makers Can Support Consumer Privacy By Encouraging The Development Of Trusted Execution Environments, April 22, 2025
- IAB Tech Lab, Signal Shift: Addressability in the Privacy Era, March 20, 2025
- Masters of Privacy, February 16, 2025
- She Said Privacy/He Said Security, How to Stay Privacy-Conscious in the Evolving AdTech World, October 3, 2024
- AdExchanger Programmatic I/O, Data Privacy Fundamentals: Navigating Consent & Opt-Out Strategies, September 25, 2024
- Careers in Data Privacy, Daniel Rosenzweig: Founder & Principal Attorney at DBR Data Privacy Solutions, July 19, 2024
- Privacy Exchange Community, Show & Tell, June 20, 2024
- The Palo Alto Networks Unit 42 Threat Vector Podcast, Beyond Compliance: Using Technology to Empower Privacy and Security with Daniel Rosenzweig, June 6, 2024
- AdExchanger Talks, Why Privacy Lawyers Also Need To Be Technologists, June 21, 2023
- AdExchanger Programmatic I/O, Privacy Essentials: Privacy law is becoming more technically sophisticated. So Should You, May 17, 2023
- International Association of Privacy Professionals (IAPP) Little Big Stage Online, Empowering You to Manage Digital Privacy Risk at Every Level, June 3, 2021
Media
- AdExchanger, To Put It Plainly, Don’t Become A Target For Plaintiffs’ Attorneys, April 14, 2025
- Privacy Daily, Lawyer Shares Tips for Mitigating CIPA, VPPA Litigation Risk, March 20, 2025
- AdExchanger, Are PETs Enough To Mitigate The Privacy Risks Of Device Fingerprinting?, January 16, 2025
- AdExchanger, Does Google’s U-Turn On Fingerprinting ‘Open New Opportunities’ Or Is It ‘Irresponsible’?, January 13, 2025
- EMARKETER, US Privacy Trends 2024, December 12, 2024
- IAB Tech Lab, IAB Tech Lab Unveils New Privacy Taxonomy for Public Comment, September 5, 2024
- AdExchanger, Ad Tech Companies Should Heed The FTC’s Warning About Hashing, August 12, 2024
- AdExchanger, There’s No Reason Why Marketers And Privacy Lawyers Can’t Speak The Same Language, March 25, 2024
- AdExchanger, What Is a Data Broker, March 5, 2024
- AdExchanger, The Government Is Tracking Your Tracking Pixels (And You Should Be, Too), April 10, 2023
Memberships
- American Bar Association
- New York State Bar Association
- IAPP
Giving Back
- Big Brother, Big Brothers Big Sisters mentorship program
CONTACT DAN
NICOLE SAKIN MCNEILL
Counsel
Nicole Sakin McNeill is a Data Protection, Privacy, and Cybersecurity attorney. Nicole advises clients on compliance with data protection and privacy laws, including state privacy laws in California, Virginia, Colorado, Connecticut, and Utah, as well as federal privacy laws such as COPPA, GLBA, HIPAA, TCPA, and the VPPA. Nicole emphasizes not just the letter of the law, but the operational impact on clients.
Nicole has experience with drafting applicable disclosures, privacy policies, and operational controls, as well as advising clients on building and implementing their data privacy compliance programs across all stages of the development lifecycle. She also assists clients with drafting and interpreting technology-related contracts, including insertion orders, service provider addendums, and data protection agreements/addendums.
Prior to joining the firm, Nicole was an attorney with an international AM Law 20's Privacy and Cybersecurity team and was an International Association of Privacy Professionals (IAPP) Westin Research Fellow. In her spare time, Nicole enjoys spending time with her family and friends, reading, and knitting.
Education
- JD, Cum Laude, University of Maryland, Baltimore
- Notes & Comments Editor, Journal of Business and Technology Law
- Research Assistant
- Writing Fellow
- BA, Multiplatform Journalism, University of Maryland, College Park
- BA, French Language and Literature, University of Maryland, College Park
Admissions
- District of Columbia
- Maryland
Speaking Engagements
- Careers in Data Privacy, Nicole Sakin McNeill: Counsel at DBR Data Privacy Solutions, August 16, 2024
- International Association of Privacy Professionals (IAPP) Global Privacy Summit, Mapping a Path to Career Success in Privacy: Former IAPP Westin Fellow's Insight, April 13, 2022.
Memberships
- IAPP
CONTACT NICOLE
(443) 300-8834
MILES LIGHT
Associate
Miles Light is a Data Privacy, AI, and Children’s Online Safety attorney. Miles advises clients on legal and technical compliance with state consumer privacy laws in California, Virginia, Colorado, Connecticut, Oregon, and Texas, as well as child online privacy and safety laws including the federal Children’s Online Privacy Protection Act (COPPA), New York’s Child Data Protection Act, and Maryland’s Age-Appropriate Design Code Act. Miles also advises companies on statutory and contract requirements under state and federal student privacy laws including FERPA, SOPPA, SOPIPA, and New York Education Law 2-D.
With a keen eye towards how differing technical implementations can affect a company’s compliance posture, Miles helps clients evaluate apps and websites to identify legal and technical risks. He also advises clients on technology-driven solutions to enhance compliance efforts.
Before joining DBR Tech Law, Miles worked as the primary technologist for self-regulatory programs under the Children’s Advertising Review Unit (CARU), the Digital Advertising Accountability Program (DAAP), and the Global Privacy Division (GPD) at BBB National Programs. Prior to that, he worked at the Future of Privacy Forum as the coordinator for the organization’s Smart Cities portfolio and a member of the Youth & Education workstream. He was also a 2023-2025 Internet Law & Policy Foundry Fellow.
Before becoming an attorney, Miles was a librarian. He is still happiest when talking about books.
Education
- JD, Cum Laude, University of Maryland, Baltimore
- MPP, University of Maryland, College Park
- BA, History, University of Maryland Baltimore County
Admissions
Maryland