Joseph A. Dickinson, CHPC

    Of Counsel • Co-Chair of Data Privacy and Security
    Office: Raleigh
    Admissions: North Carolina, Ohio


    Joe is Of Counsel in our Raleigh office where his practice focuses on information governance, data use, privacy, and cybersecurity. With more than 30 years of practice in the industry, his background in technology and cybersecurity is marked by numerous achievements, having successfully advised and guided clients around the country through the intricate landscape of data protection regulations and risk mitigation strategies. A recognized thought leader on data privacy, cybersecurity, and healthcare topics, Joe is Certified in Healthcare Privacy Compliance (CHPC®) and is Co-Chair of the Data Privacy and Security team.

    He advises and defends clients faced with state, federal, and foreign governmental agency enforcement and compliance investigations, leads data breach response and data privacy/security risk assessments, information security compliance audits, and cyber investigations, including managing third-party forensic investigations. Joe also has led diligence efforts on all levels of business transactions that have identified and managed data-related issues having 7-figure potential impacts for buyers, sellers, investors, and insurers.

    Joe’s experience covers multiple privacy and security issues facing entities in the private and public sectors. He has worked with clients in the development of data privacy and cybersecurity programs, global data breach response, cross-border data transfers, HIPAA, GDPR, GLB, security breach notification law compliance, and the cybersecurity and privacy issues related to government contracting. He regularly drafts and reviews technology licenses and transfer agreements, contracts involving data sharing, data flows, and management of the related legal risks and obligations, intellectual property and information technology, governmental privacy-related investigations, and corporate internal investigations. Joe also advises clients on the legal issues related to IoT risks, cloud services, AI, and big data analytics. He evaluates the software development process, privacy by design, and counsels clients on responding to software audit requests.

    Joe has spent more than 15 years in general counsel and in-house roles and is known for understanding the issues clients face and working closely with each client to build tailored programs, policies and procedures appropriate for real-world problem solving for various businesses and industries regardless of their current stage of development.

    Representative Matters

    • Advised a private equity fund and its healthcare solutions portfolio company in the acquisition of a consulting, and data management company
    • Has lead the privacy and cyber security diligence efforts on multiple multi-million dollar transactions
    • Managed a global data breach involving 27 countries and more than 500 data servers
    • Lead the response teams for hundreds of national and international data incidents and breaches
    • Leads engagements for breach analysis, notification obligations, incident investigations, and regulatory compliance
    • Coordinates forensic investigations
    • Leads post-breach privacy and security gap remediation
    • Oversees the buy-side and sell-side privacy/cybersecurity due diligence efforts for multi-million-dollar transactions
    • Leads incident response preparations and tabletop exercises
    • Develops and leads privileged forensic investigations, vulnerability assessments, and compliance reviews

    Recognition & Honors

    • Certified in Health Care Privacy Compliance (CHPC®)


    • North Carolina Technology Association; Board of Advisors
    • Duke Law Center for Judicial Studies – North Carolina Thought Leadership Committee; Member
    • International Association of Privacy Professionals; Member
    • Health Care Compliance Association; Member
    • University HealthSystem Consortium; Data Privacy and Security Committee
    • Center for Cybersecurity and Privacy Protection; National Advisory Board
    • Center for Health Law & Policy; Advisory Council
    • The Sedona Conference®; Member, Working Group Series Program, Data Security and Privacy Liability – Working Group 11; Member
    • American Health Lawyers Association
    • Association of Corporate Counsel, Northeast Ohio Chapter
    • North Carolina Bar Association, Privacy & Data Security Section
    • Cleveland Metropolitan Bar Association, Healthcare Practice Group
    • Ohio State Bar Association
    • American Bar Association
    • National Asian Pacific American Bar Association American Bar Association


    • North Carolina
    • Ohio
    • United States District Court, Ohio


    • Malone University; B.A., 1989
    • Cleveland State University Cleveland-Marshall College of Law; J.D., cum laude, 1993