Robert E. Cattanach

Robert E. Cattanach




His problem solving skills, technical background, and business savvy enable him to help clients meet the challenges of today’s cyber world and evolving privacy regulations.  Bob works collaboratively with his clients to determine their regulatory obligations, evaluate risk tolerances, and find optimal solutions in the ever-evolving world of data collection, use and sharing; when the inevitable security incident occurs, Bob is there to help guide them through the crises.

Recognized by his peers as a thought leader in the areas of data security and privacy litigation, Bob spearheaded the Sedona Conference’s publication of the highly acclaimed Incident Response Guide, and continues to serve as an integral part of Sedona’s International Programmes, leading the discussion on subjects ranging from incident responses, extra-territorial enforcement of the European Union General Data Protection Regulation (GDPR), and the intricacies of California’s Consumer Privacy Act (CCPA).

He counsels both the C-Suite and corporate Boards of Directors and Audit Committees on matters of cybersecurity, privacy and information governance.  Bob’s active trial docket in courts around the country has provided him with the skill set necessary to help his clients develop the vision and culture to ensure compliance, but even the best compliance practices can occasionally fall victim to skilled hackers.  Bob’s trial-honed ability to craft a compelling narrative that explains the client’s commitment and compliance efforts can mean the difference between constructive regulatory dialogue versus crippling enforcement sanctions.

Bob is also a much-sought-after speaker, commentator and contributor to professional and journalistic coverage of cybersecurity issues, ranging from the New York Times, Wall Street Journal, USA Today and numerous electronic media to various professional publications and blogs. To view my News and Resources, please click here.

Education & Admissions

United States Naval Academy (B.S., Engineering), with Distinction

University of Wisconsin Law School (J.D.), with Honors; Articles Editor, Wisconsin Law Review


  • Minnesota
  • Wisconsin
  • U.S. Supreme Court
  • U.S. Court of Appeals for the Eighth Circuit
  • U.S. Court of Federal Claims
  • Minnesota Supreme Court
  • Wisconsin Supreme Court
  • Minnesota Federal District Court
  • Wisconsin Federal District Court

News & Resources


“No Concrete Harm, No Standing” – Supreme Court’s TransUnion v. Ramirez Decision Clarifies Federal Court Standing Requirements for CCPA and BIPA Class Actions
New York Department of Financial Services Signals Aggressive Enforcement Stance
CCPA Class Actions and Standing Requirements
The Sedona Conference Commentary on the Enforceability in U.S. Courts of Orders and Judgments Entered under GDPR
Is Data the Next Frontier in ERISA Litigation?
Contact Tracing: Strategies and Issues for Balancing Public Health Demands and Privacy Concerns
Contact Tracing: Privacy Implications and Practical Considerations
The Coming Wave of California Consumer Privacy Act Lawsuits
The Sedona Conference Incident Response Guide
Developments from California: AG Estimates Costs of CCPA Compliance as CCPA Authors Contemplate Round II
California Attorney General Issues Draft Regulations for CCPA
Work in Progress - Potential CCPA Amendments Advance to Senate Appropriations Committee
New York Expands Data Privacy Protections
Google Fine Signals GDPR Enforcement Priorities and Complexities
Cyber Vulnerability Tips For Private Companies During Govt Shutdown
Updated Alert: Governor Brown Signs Amendments to the California Consumer Privacy Act of 2018
CalCPA Evolves – US Chamber Supports Federal Standard
Sued for Misjudging the Impact of GDPR and Other Changes to the Consumer Data Privacy Landscape – Yes that Just Happened
Claimed Failure to Disclose GDPR’s Collateral Impact Leads to Class Action Against Nielsen Holdings
California Unanimously Enacts Comprehensive Digital Privacy Law
FTC’s Data Security Authority Curbed by 11th Circuit
Unexpected Impacts of Europe’s GDPR on US Companies Over and Under-Stated
Dorsey Partner Robert Cattanach is Editor-in-Chief of Latest Guide to Data Breach Compliance
U.S. v. Microsoft: Supreme Court to Review Scope of Search Warrant Compliance in a Digital Age

News & Press Mentions

Bob Cattanach Comments on Equifax FTC Settlement
Bob Cattanach Comments on Kaseya Software Hack
Bob Cattanach Makes Cyberattack Recommendations for Businesses
Bob Cattanach Remarks on SCOTUS Ruling on Privacy Lawsuits
Dorsey Partner Bob Cattanach Comments on Six Flags Lawsuit Settled
Dorsey Partner Bob Cattanach Discusses SCOTUS Ruling on Hacking Law
Dorsey Partner Bob Cattanach Comments on Recent Infrastructure Attacks
Dorsey Partner Bob Cattanach Discusses TSA's Pipeline Cybersecurity Directive
Dorsey Partner Bob Cattanach Comments on Cybersecurity EO
Dorsey Partner Bob Cattanach Discusses Vaccine Passports
Dorsey Partner Bob Cattanach Comments on Cyberattack of Colonial Pipeline
Dorsey Partner Bob Cattanach Comments on Amazon's Fleet Surveillance
Dorsey Partner Bob Cattanach Comments on SolarWinds Sanctions
Insurer Can Challenge Deal In Dickstein Malpractice Row
Dorsey Partner Bob Cattanach Discusses SolarWinds Breach
Dorsey Partner Bob Cattanach Discusses COVIDaware MN App
Dorsey Partner Bob Cattanach Discusses CCPA Compliance--July 1 Deadline
Dorsey Partner Bob Cattanach Discusses US-China Cybersecurity War's Impact on IP
Dorsey Partner Bob Cattanach Comments on Changes to US Data Privacy
Dorsey Partner Bob Cattanach Comments on Portland Facial Recognition Ban
Dorsey Partner Bob Cattanach Discusses COVID Contact Tracing
Dorsey Partner Bob Cattanach Remarks on CCPA Now in Effect
Dorsey Partner Bob Cattanach Comments on CCPA the First of Many State-level Privacy Laws
Dorsey Partner Bob Cattanach Remarks on Cybersecurity Big Fines
Dorsey Partner Bob Cattanach Shares 2020 Privacy Predictions

Events & Speaking Engagements

Webinar Playback: Bank Counsel Roundtable: LIBOR Update; CCPA Class Actions and Standing Requirements
2021 Midwest Legal Conference on Privacy & Data Security
Brand Activation Legal Committee Meeting
Privacy Titans: Enter the CCPA
Seminar Playback: Privacy Titans: Enter the CCPA
The Sedona Conference Annual Meeting: Developments in California’s Consumer Privacy Act
The Sedona Conference Annual Meeting: Enforcement of GDPR Sanctions in US Courts (Steering Committee Liason)
Seminar Playback: SEC Guidance on Cybersecurity Disclosure and Policies
MER 18 – Data Breaches: Ready, Set . . . Respond!
Law Firms and Data Security: Complying with Attorney Ethical Obligations (Webinar)

Industries & Practices

Cybersecurity, Privacy & Social Media
California Consumer Privacy Act (CCPA)
Government Enforcement & Corporate Investigations
  • Banking & Financial Institutions
  • Blockchain & Digital Assets
  • California Consumer Privacy Act (CCPA)
  • Closely Held Businesses
  • Cybersecurity, Privacy & Social Media
  • Electric Power
  • Energy & Natural Resources
  • Environmental
  • Food, Beverage & Agribusiness
  • Government Enforcement & Corporate Investigations
  • Healthcare
  • Insurance Law
  • Mining
  • Public-Private Partnerships
  • Technology
  • Telecommunications

Professional & Civic

Professional Achievements

  • The Sedona Conference Working Group on Data Security and Privacy Liability, Working Group 11 – Steering Committee 
  • Previous Co-Chair, International Association of Privacy Professionals KnowledgeNet Chapter, Minneapolis-St. Paul
  • Past President, numerous Bar Association Committees and Divisions 

Community Involvement

  • Chairman of the Board, Ordway Center for the Performing Arts 
  • Minnesota State Cycling Champion – Road Race 
  • Minnesota State Cycling Champion – Criterium 



  • Listed in Best Lawyers in America©, 2008-2022
  • Named a Best Lawyers® Lawyer of the Year, Litigation – Environmental, 2022
  • Listed as a Minnesota Super Lawyer, 2011-2019

North Star Lawyer logo

  • MSBA North Star Lawyer, 2016
Robert E. Cattanach