Tandy Mathis brings more than a decade of significant experience in information management issues across a diverse array of matters. She is adept at providing practical advice so her clients can resolve the data management aspects of a matter more efficiently and focus on overall strategy moving forward.

Overview

Tandy is counsel in the Litigation, Discovery, and Privacy & Data Security groups. She specializes in information management issues, including privacy and data security. Tandy uses her experience to help clients understand their obligations to protect data and advises them on how they can lawfully collect, use, and share personal information. 

In her privacy and data security practice, Tandy’s matters range from complex multi-jurisdiction matters requiring cross-border data sharing to single jurisdiction litigation matters. She has assisted with the development and implementation of comprehensive information security programs and has drafted privacy notices and data security provisions in vendor agreements. Tandy routinely advises multinational clients on data breach response and notification responsibilities and counsels clients on state, federal, and international privacy requirements, including CCPA, GLBA, GDPR, ePrivacy Directive, and state breach notification laws. She advises both public and private companies in a variety of transactions and regularly assists with information governance and privacy and data protection compliance.

Tandy also has significant experience in discovery and litigation data analytics. She regularly assists clients in preparation for regulatory investigations and civil litigation by conducting exposure and merits assessments based on advanced data processing techniques. Tandy’s knowledge regarding discovery issues allows her to develop efficient and cost-effective strategies for collection, review, and production. She also has experience developing litigation readiness protocols to provide defensible, repeatable processes used by clients for the entire life cycle of the data management process from data archiving to collection and production and ultimately to data disposition.

Notable

Notable

  • Certified Information Privacy Professional/US (CIPP/US), International Association of Privacy Professionals

News

Blogs and Resources

Blog Posts

Affiliations

Affiliations

  • Certified Information Privacy Professional/US (CIPP/US), International Association of Privacy Professionals
  • Co-Chair of the Communications Committee, Litigation Section of the North Carolina Bar Association, 2017-2018 and 2019-2021
  • Council Member, Litigation Section of the North Carolina Bar Association, 2020-2021
  • Young Privacy Professional, International Association of Privacy Professionals, 2020

Education

B.A., North Carolina State University, 2003, magna cum laude

J.D., Florida State University School of Law, 2007, cum laude

Admissions

  • Florida, 2007
  • Georgia, 2009
  • North Carolina, 2015
  • U.S. District Court, Western District of North Carolina
  • U.S. District Court, Middle District of North Carolina
  • U.S. District Court, Eastern District of North Carolina
Jump to Page

Certified Information Privacy Professional/US (CIPP/US), International Association of Privacy Professionals

By using this site, you agree to our updated Privacy Policy and our Terms of Use.