Robert E. Cattanach

Robert E. Cattanach




His problem solving skills, technical background, and business savvy enable him to help clients meet the challenges of today’s cyber world and evolving privacy regulations. Bob works collaboratively with his clients to determine their regulatory obligations, evaluate risk tolerances, and find optimal solutions in the ever-evolving world of data collection, use and sharing; when the inevitable security incident occurs, Bob is there to help guide them through the crises.

Recognized by his peers as a thought leader in the areas of data security and privacy litigation, Bob spearheaded the Sedona Conference’s publication of the highly acclaimed Incident Response Guide, and continues to serve as an integral part of Sedona’s International Programmes, leading the discussion on subjects ranging from incident responses, extra-territorial enforcement of the European Union General Data Protection Regulation (GDPR), and the intricacies of California’s Consumer Privacy Act (CCPA).

He counsels both the C-Suite and corporate Boards of Directors and Audit Committees on matters of cybersecurity, privacy and information governance. But even the best compliance practices can occasionally fall victim to skilled hackers. Bob’s trial-honed ability to craft a compelling narrative that explains the client’s commitment and compliance efforts can mean the difference between constructive regulatory dialogue versus crippling enforcement sanctions.

Bob is also a much-sought-after speaker, commentator and contributor to professional and journalistic coverage of cybersecurity issues, ranging from the New York Times, Wall Street Journal, USA Today and numerous electronic media to various professional publications and blogs.

Education & Admissions

United States Naval Academy (B.S., Engineering), with Distinction

University of Wisconsin Law School (J.D.), with Honors; Articles Editor, Wisconsin Law Review


  • Minnesota
  • Wisconsin
  • U.S. Supreme Court
  • U.S. Court of Appeals for the Eighth Circuit
  • U.S. Court of Federal Claims
  • Minnesota Supreme Court
  • Wisconsin Supreme Court
  • Minnesota Federal District Court
  • Wisconsin Federal District Court

News & Resources


New SEC Cybersecurity Rules Require Mandatory Disclosure
Utah’s New Privacy Law: Will This New Balance Become the Norm?
New Year’s Resolution? Experts Say For Cyber Criminals, It’s More Widespread Attacks
“No Concrete Harm, No Standing” – Supreme Court’s TransUnion v. Ramirez Decision Clarifies Federal Court Standing Requirements for CCPA and BIPA Class Actions
New York Department of Financial Services Signals Aggressive Enforcement Stance
CCPA Class Actions and Standing Requirements
The Sedona Conference Commentary on the Enforceability in U.S. Courts of Orders and Judgments Entered under GDPR
Is Data the Next Frontier in ERISA Litigation?
Contact Tracing: Strategies and Issues for Balancing Public Health Demands and Privacy Concerns
Contact Tracing: Privacy Implications and Practical Considerations
The Sedona Conference Incident Response Guide
Developments from California: AG Estimates Costs of CCPA Compliance as CCPA Authors Contemplate Round II
California Attorney General Issues Draft Regulations for CCPA
Work in Progress - Potential CCPA Amendments Advance to Senate Appropriations Committee
New York Expands Data Privacy Protections
Google Fine Signals GDPR Enforcement Priorities and Complexities
Cyber Vulnerability Tips For Private Companies During Govt Shutdown
Updated Alert: Governor Brown Signs Amendments to the California Consumer Privacy Act of 2018
CalCPA Evolves – US Chamber Supports Federal Standard
Sued for Misjudging the Impact of GDPR and Other Changes to the Consumer Data Privacy Landscape – Yes that Just Happened
Claimed Failure to Disclose GDPR’s Collateral Impact Leads to Class Action Against Nielsen Holdings
California Unanimously Enacts Comprehensive Digital Privacy Law
FTC’s Data Security Authority Curbed by 11th Circuit
Unexpected Impacts of Europe’s GDPR on US Companies Over and Under-Stated
Dorsey Partner Robert Cattanach is Editor-in-Chief of Latest Guide to Data Breach Compliance

News & Press Mentions

200 Dorsey Lawyers Selected for Inclusion in 2024 Best Lawyers in America, Lawyers of the Year, and Ones to Watch
Dorsey Partner Bob Cattanach Comments on US Federal Government Cyberattacks
Dorsey Partner Bob Cattanach Discusses Ransomware Attacks Hitting Schools, Businesses and Government Agencies
Cattanach Comments on Google Location Privacy Lawsuit
Bob Cattanach Discusses Preventing Cyber Risks: The Insuring Cyber Podcast
Bob Cattanach Comments on CISA Directive
Bob Cattanach Comments on Corporations Focusing More on Cybersecurity
Bob Cattanach Comments on Hacking the Hackers
Bob Cattanach on Lessons Learned from Sinclair Broadcast Ransomware Incident
Bob Cattanach Comments on Equifax FTC Settlement
Bob Cattanach Comments on Kaseya Software Hack
Bob Cattanach Makes Cyberattack Recommendations for Businesses
Bob Cattanach Remarks on SCOTUS Ruling on Privacy Lawsuits
Dorsey Partner Bob Cattanach Comments on Six Flags Lawsuit Settled
Dorsey Partner Bob Cattanach Discusses SCOTUS Ruling on Hacking Law
Dorsey Partner Bob Cattanach Comments on Recent Infrastructure Attacks
Dorsey Partner Bob Cattanach Discusses TSA's Pipeline Cybersecurity Directive
Dorsey Partner Bob Cattanach Comments on Cybersecurity EO
Dorsey Partner Bob Cattanach Comments on Cyberattack of Colonial Pipeline
Dorsey Partner Bob Cattanach Discusses Vaccine Passports
Dorsey Partner Bob Cattanach Comments on Amazon's Fleet Surveillance
Dorsey Partner Bob Cattanach Comments on SolarWinds Sanctions
Insurer Can Challenge Deal In Dickstein Malpractice Row
Dorsey Partner Bob Cattanach Discusses SolarWinds Breach
Dorsey Partner Bob Cattanach Discusses COVIDaware MN App

Events & Speaking Engagements

Webinar Playback: Your Company's Secrets at Risk: What Every Company Should Know
MCLE Program - 2023 Midwest Legal Conference on Data Privacy & Cybersecurity
Sedona International Program - 2023 Annual Meeting of Working Group 6 on International Electronic Information Management, Discovery, and Disclosure (WG6)
Dorsey’s Annual Corporate Counsel Symposium - The Fine Line Between Fast and Too Fast: Impacts of Updated Regulatory Guidance on Cyber Incident Reporting in the Financial and Critical Infrastructure Sectors
Sedona Conference Working Group 11 Midyear Meeting 2022
MCLE - Privacy & Data Security for the Non-Specialist
Sedona - 2022 Annual Meeting of Working Group 11
Banking Law Institute - Third-Party Vendor Management: Best Practices for Assessing, Managing, and Responding to Data Risk in the Financial Services Sector
Webinar Playback: Privacy Titans and Tardigrades
10th Annual BCLT Privacy Law Forum
2022 Midwest Legal Conference on Privacy and Data Security
Webinar Playback: Bank Counsel Roundtable: LIBOR Update; CCPA Class Actions and Standing Requirements
2021 Midwest Legal Conference on Privacy & Data Security
Brand Activation Legal Committee Meeting
Privacy Titans: Enter the CCPA
Seminar Playback: Privacy Titans: Enter the CCPA
The Sedona Conference Annual Meeting: Developments in California’s Consumer Privacy Act
The Sedona Conference Annual Meeting: Enforcement of GDPR Sanctions in US Courts (Steering Committee Liason)
Seminar Playback: SEC Guidance on Cybersecurity Disclosure and Policies
MER 18 – Data Breaches: Ready, Set . . . Respond!
Law Firms and Data Security: Complying with Attorney Ethical Obligations (Webinar)
Society for Corporate Governance: Data Breach Disclosure Challenges
U.S. Department of Commerce Presentation of GDPR
"Managing Breach Incident Response – Lessons Learned from Stories of Success and of Fallout," Dorsey, FBI Minneapolis, US Attorney’s Office – District of MN, US Department of Justice, - Put on by MN CLE

Industries & Practices

Cybersecurity, Privacy & Social Media
California Consumer Privacy Act (CCPA)
Government Solutions & Investigations
  • Banking & Financial Institutions
  • California Consumer Privacy Act (CCPA)
  • Closely Held Businesses
  • Cybersecurity, Privacy & Social Media
  • Electric Power
  • Energy & Natural Resources
  • Environmental
  • Food, Beverage & Agribusiness
  • Government Solutions & Investigations
  • Healthcare & Life Sciences
  • Insurance Law
  • Mining
  • Public-Private Partnerships
  • Technology
  • Telecommunications

Professional & Civic

Professional Achievements

  • The Sedona Conference Working Group on Data Security and Privacy Liability, Working Group 11 – Steering Committee 
  • Previous Co-Chair, International Association of Privacy Professionals KnowledgeNet Chapter, Minneapolis-St. Paul
  • Past President, numerous Bar Association Committees and Divisions 

Community Involvement

  • Chairman of the Board, Ordway Center for the Performing Arts 
  • Minnesota State Cycling Champion – Road Race 
  • Minnesota State Cycling Champion – Criterium 


    Pro Bono 100 Hours 2022  Contributed 50+ Pro Bono Hours in 2021

  • Contributed more than 100 Challenge pro bono hours, 2022
  • Contributed more than 50 Challenge pro bono hours, 2021
  • Listed in Best Lawyers in America©, 2008-2023
  • Named a Best Lawyers® Lawyer of the Year, Litigation – Environmental, 2022
  • Listed as a Minnesota Super Lawyer, 2011-2019

North Star Lawyer logo

  • MSBA North Star Lawyer, 2016
Robert E. Cattanach