Kelly DeMarchis Bastide advises and represents clients on issues related to consumer data privacy and security, e-commerce, advertising, consumer protection, and online gaming. Kelly’s priority is providing actionable, business-friendly legal guidance to clients who process personal data, and she enjoys working with clients whose operations span data protection regimes in multiple jurisdictions. She has represented dozens of clients in regulatory and government investigations and takes pride in understanding their practices to better advocate on their behalf.
In addition to deep knowledge of U.S. laws and regulations, Kelly has extensive experience with European Union data protection, including the General Data Protection Regulation (GDPR), the United Kingdom GDPR, and the ePrivacy Directive.
Kelly advises clients on privacy and security laws and regulations that include federal and state unfair and deceptive trade practices laws; the California Consumer Privacy Act (CCPA) and the California Consumer Privacy Rights Act (CPRA); the Virginia Consumer Data Protection Act (VCDPA), the Colorado Privacy Act (CPA), and state privacy bills; the Children's Online Privacy Protection Act (COPPA); the Health Insurance Portability and Accountability Act (HIPAA); the Fair Credit Reporting Act (FCRA); the Family Educational Rights and Privacy Act (FERPA); the financial Privacy Provisions of the Gramm-Leach-Bliley Act (GLBA); and state breach notification and security laws. Kelly also counsels on laws regarding advertising and e-commerce.
Her experience further incorporates navigating the laws governing remote gaming and gambling and advising on disclosures in relation to endorsements and testimonials.
Kelly’s practice includes:
Kelly has worked with clients in various industry sectors, including nonprofit organizations, EdTech, advertising and marketing, entertainment, and consumer products.