Ben Cross

BEN CROSS focuses his practice on data privacy and cybersecurity matters, including data breach response, compliance with evolving privacy and data protection laws, and diligence for transactions related to data security and privacy risks.

Ben advises clients on compliance with a rapidly transforming global patchwork of data protection laws, including the California Consumer Privacy Act (CCPA), Section 5 of the FTC Act, the Health Insurance Portability and Accountability Act (HIPAA), the Illinois Biometric Information Privacy Act (BIPA), and sector-specific cybersecurity rules issues by the SEC, NYDFS, and other regulators. Ben regularly supports incident response and internal investigations, drafts and negotiates data protection agreements and related documentation, and counsels on privacy and cybersecurity risks in complex technology transactions and M&A deals. He also has experience advising on AI risk governance and regulatory trends, including emerging legal frameworks governing automated decision-making and algorithmic accountability.

Ben earned his J.D. from the University of Michigan Law School, where he served as an inaugural editor of the Michigan Journal of Law & Society, the nation’s first legal journal focused on the intersections of law, history, and the social sciences. He also worked as a student attorney with the Michigan Innocence Clinic and as a research assistant for Professor Leah Litman.

• GT Independence, a financial management services company that helps customers select and hire their own caregivers, in connection with its acquisition by H.I.G. Capital.
• BBQGuys, a leading e-commerce retailer of outdoor living products, in its acquisition of Mont Alpi, a premium manufacturer of modular outdoor kitchen islands and grills.
• Canvas Energy Inc., a privately held oil and natural gas company based in Oklahoma City, in its US$550 million strategic transaction with Diversified Energy Company PLC (LSE:DEC; NYSE:DEC) (pending).