Rachel Kurzweil is an Of Counsel in the Data Privacy and Cybersecurity Group, and is based in the firm’s Washington, D.C. office. Rachel is a leading privacy, cyber, and health regulatory attorney with broad ranging experience advising clients in areas of U.S. state, federal, and international privacy regulation and compliance, data breach, cyber and privacy incidents, and regulatory compliance. Rachel has extensive experience operationalizing global privacy and cybersecurity laws and regulations, including the CCPA, VPPA, CAN-SPAM, GLBA, TCPA, DPPA, COPPA, FISA, and other state privacy laws, state wiretapping laws including CIPA and WESCA, GDPR, and other international privacy laws. 

Ms. Kurzweil routinely assists a wide variety of multinational clients across industries with compliance with international, state, and federal privacy, security, and data breach notification laws, including conducting risk assessments and data privacy impact assessments, as well as drafting privacy policies and procedures. She also has deep expertise in advising clients in highly regulated sectors, including financial services and health care, and represents clients in strategic transactions involving personal data and cybersecurity risk. Ms. Kurzweil regularly assists clients with complex health and life sciences matters involving the Health Insurance Portability and Accountability Act of 1996 (HIPAA), the Health Information Technology for Economic and Clinical Health Act of 2009 (HITECH), Section 5 of the Federal Trade Commission Act and myriad state privacy, security, and breach notification laws, as well as adjacent regulatory regimes such as the ONC Information Blocking Rule. She has extensive experience in helping clients navigate the intersection between federal privacy and data protection laws and state regimes such as the California Consumer Privacy Act (CCPA), the Washington My Health My Data Act (MHMDA) and the California Confidentiality of Medical Information Act (CMIA).

Prior to joining the firm, Ms. Kurzweil was a Counsel with an AmLaw50 law firm specializing in privacy and health. She also worked as a Health Litigation Fellow with AARP.

• Washington and Lee University School of Law, J.D., 2015
• Mount Holyoke College, B.A. (cum laude), 2010