GDPR Compliance & Due Diligence for M&A Transactions

(167 Ratings)

Produced on: October 15, 2018

Course Format On Demand Audio

Taught by


Course Description

Time 91 minutes
Difficulty Advanced

With the implementation of the European Union’s General Data Protection Regulation (GDPR) on May 25, thousands of companies doing business in the EU are now confronting onerous new compliance obligations and a heightened awareness of data privacy and security law issues. In the transactional sphere, data protection considerations are taking an increasingly prominent role in M&A deals as counterparties evaluate each other’s compliance posture to assess potential financial and reputational risks. These developments have had a disproportionate impact in the M&A context, where previously data protection concerns have taken a back seat to other legal considerations.

In this presentation, BakerHostetler partner Melinda McLellan and associate Seth Engel will address key privacy and data security law issues that impact M&A transactions, from diligence to closing.

Learning Objectives:

  1. Identify recent trends in M&A practice and the how data protection considerations have changed the game
  2. Analyze the new EU GDPR’s impact on the legal and regulatory landscape
  3. Ask the right questions early in the M&A process to evaluate a target company’s compliance posture
  4. Get practical suggestions and best practices when handling data privacy issues in an M&A transaction


Melinda L. McLellan


Melinda McLellan works with clients to navigate complex privacy, cybersecurity, and data management issues in a rapidly evolving regulatory environment. She counsels companies of all sizes across multiple industry sectors, helping them to identify, evaluate, and manage the myriad compliance obligations associated with corporate privacy and information security practices. Melinda regularly advises on the creation, development, and implementation of global privacy and security policies, standards, procedures, and guidelines, as well as company codes of conduct and employee privacy training programs. Attentive to her clients' business needs, Melinda's proactive approach favors pragmatic, forward-thinking compliance strategies that emphasize prevention and mitigation of privacy and data security risks.

Select Experience:

  • Advises clients on the development and implementation of enterprise-wide privacy and information security programs, including by creating employee privacy training modules and drafting company codes of conduct, policies, standards, procedures and guidelines related to the protection of personal data.
  • Develops compliance strategies for the execution of multi-marketer and multimedia digital and mobile marketing campaigns, regularly advising on online behavioral advertising issues, CAN-SPAM Act requirements, regulations imposed by the Telephone Consumer Protection Act, the FTC's Telemarketing Sales Rule and National Do-Not-Call Registry, and the FCC's regulations applicable to telemarketing calls and text messages.
  • Counsels clients on the legal implications of various data collection and analytics technologies, including facial recognition software, in-store WiFi tracking and web-based tools used for behavioral marketing and geotargeting purposes.

Seth Engel


Seth advises clients on cross border transactions, U.S. securities offerings and international dispute resolution. Having practiced in both France and New York, he works hand in hand with public and private companies in Asia, Europe and the United States to advise on strategic transactions and disputes, including advising boards of directors and special committees. He also represents clients in international arbitrations.

Seth previously taught at the Sorbonne in Paris and acted as Assistant Counsel in multiple pre-trial cases at the International Criminal Court in The Hague. He is admitted to the bar in New York and Paris. He attended Georgetown University Law Center and has a Master’s degree from the Sorbonne and from the Institut de Sciences Politiques de Paris.


Ian M.

I like the two presenter approach especially like this where there is some back and forth. Very good materials were also included.

Andrew H.

Great CLE

Stephen A.

Very good presentation.

Beth C.

Easier to understand GDPR!

Harrison H.

lively presentation. Could have been dry but it popped. Nicely done.

Stuart P.

very well researched and presented

Thomas D.

Topnotch presenters!

Maeve T.


Load More


$ 89 Business, Corporate, & Securities Law and Privacy & Cybersecurity In Stock


Get Unlimited Access to Lawline Courses

Unlimited CLE Subscription gives you access to take almost any course from our catalog and earn as much CLE credit as you need.