Kathleen A. Scott, Esq.
Kathleen A. Scott is a senior counsel in the New York office of Norton Rose Fulbright, representing some of the world's largest international financial institutions concentrating on a broad range of financial services regulatory, anti-money laundering and privacy matters. Kathleen represents financial institution clients with respect to the bank regulatory aspects of mergers and acquisitions, establishment of new banking organizations and nonbanking affiliates, and other transactions.
Kathleen advises foreign and domestic banks and other financial institutions on a broad range of federal and state regulatory issues affecting all their operations and interacts routinely with federal and state banking regulators. She has expertise regarding U.S. federal and various other state banking laws and regulations regarding banks as well as nonbank financial companies that might require licensing at the state level.
Kathleen counsels financial institutions facing enforcement or other supervisory actions or investigations by state and federal regulators on their compliance with federal consumer, privacy and anti-money laundering legislation and regulations. More specifically, she handles compliance with the Gramm-Leach-Bliley Act for banks and other financial institutions and related financial privacy and information security matters. She also advises financial institutions on a broad range of anti-money laundering compliance and enforcement issues. Kathleen is also part of the firm's FinTech practice, and frequently speaks and writes on virtual currency, blockchain, and smart contract issues.
Kathleen began her career as an attorney for the United States Department of Treasury and also served as an assistant counsel for the New York State Banking Department before going into private practice at two other major law firms in New York before joining Norton Rose Fulbright. Since 2005, she has written a bi-monthly column on International Banking for the New York Law Journal. In addition, she routinely contributes to the Financial Services: Regulation Tomorrow blog, which provides insight and commentary on the global financial regulatory environment.
Susan Linda Ross, Esq.
Sue Ross is based in Norton Rose Fulbright's New York Office with a practice focused on technology and US privacy matters.
Sue's extensive experience with technology and technology contracts includes negotiating, drafting, and interpreting over 10,000 computer hardware and software, consulting, outsourcing, Internet, electronic signatures, web hosting, application service providers and non-disclosure agreements, many of which were for a federal government contractor. She is also experienced with preparing website terms and conditions and privacy policies. Sue is part of the firm's FinTech team, frequently speaking and writing on cryptocurrency, blockchain, and smart contract issues.
Sue also handles US privacy matters, including security breach laws, as well as assisting clients with their questions and compliance efforts relating to Red Flag Rule, Health Insurance Portability and Accountability Act ("HIPAA") Privacy and Security Rules, Gramm-Leach-Bliley, Telephone Consumer Protection Act, CAN-SPAM, and Fair and Accurate Credit Transactions Act ("FACTA"). Sue has assisted clients with privacy and information security questions relating to the Payment Card Industry standards, provided counseling on a wide variety of labor and employment matters that raised privacy issues, and created privacy policies (including Binding Corporate Rules) for corporations, as well as for web sites. Sue has experience counseling clients on advertising and contests and sweepstakes matters.
Sue's data breach experience has ranged from assisting clients in determining whether a breach, in fact, occurred; to working with third-party forensic investigators; to preparing the consumer and law enforcement notifications; to drafting the 8-K or similar public announcement. She has also participated in mock data breach exercises and assisted with "lessons learned" to help clients fill any gaps identified during those exercises.