Overview Experience Events News Intelligence Aaron K. Tantleff Partner atantleff foley.com Download vCard Aaron K. Tantleff is a partner and intellectual property lawyer with Foley & Lardner LLP. His practice focuses upon providing legal and strategic guidance regarding information technology, outsourcing, licensing, consulting, professional services, e-commerce, manufacturing, supply, and distribution agreements, as well as product acquisitions, strategic alliances, mergers and acquisitions, and private equity investments where technology and intellectual property are of significant importance and value. Mr. Tantleff is a member of the firm’s Technology Transactions & Outsourcing; Privacy, Security & Information Management, and Chemical, Biotechnology & Pharmaceutical Practices, as well as the Health Care, Life Sciences, and Energy Industry Teams. Mr. Tantleff works closely with clients on privacy, security and information management matters as well as state, federal and international restrictions on the use of information. He has extensive experience advising businesses regarding the drafting and negotiation of privacy and security provisions in a wide range of agreements. Mr. Tantleff has also formulated and drafted privacy, security and data use compliance policies and procedures. He is well acquainted with security breach notification laws, EMR/EHR/PHR matters, HIPAA and other medical privacy laws and social media and blogging policies. Mr. Tantleff has conducted investigations of data security breaches and has identified and proposed best practices in light of those breaches. Mr. Tantleff has worked with companies in a wide range of industries, including financial services, consulting, information technology, communications, consumer markets (retail, wholesale and distribution), life sciences, pharmaceuticals, health care and health services, manufacturing, media, technology, software development, automotive, transportation, energy, chemicals and utilities. Mr. Tantleff has experience in government contracts and the sale and licensing of technology to the U.S. and foreign governments. He has practiced before the U.S. Government Accountability Office (GAO). Prior to joining Foley, Mr. Tantleff was an associate at a Chicago based law firm where, as part of his practice, he served as in-house counsel for an international, NYSE-listed management and technology consulting company with revenues in excess of $3 billion. Prior to joining that firm, he served as corporate counsel and director of global intellectual property for a large NASDAQ information technology and software company. Mr. Tantleff is an adjunct professor of law at Loyola University Chicago School of Law, where he teaches a course on transactional intellectual property law that focuses on intellectual property licensing, valuation, acquisitions, divestures and joint ventures and technology development. Awards and Recognition Mr. Tantleff received the U.S. Naval National Science Award from the Office of Naval Research for his work in Puschino, Russia where he conducted biomedical engineering research at the Academy of Sciences Russia, Moscow State University, Institute of Theoretical and Experimental Biophysics. His research focused on the development of a radiation-resistant neuron cell line and a medication to protect cells from radiation damage. Mr. Tantleff was named to the 2012 - 2016 lists of Illinois Super Lawyers–Rising Stars®. The list represents the top 2.5 percent of lawyers under 40 years old in Illinois based upon a survey of his peers. In 2015 and 2016, he was recognized by The Legal 500 for his work in intellectual property - patent licensing and transaction; media, technology and telecoms - technology - data protection and privacy; media, technology and telecoms - technology – outsourcing; and media, technology and telecoms - technology - transactions * Education His educational background includes a B.A. in biological sciences from Northwestern University, where he was the president and founder and is the alumni advisor for the Alpha Epsilon Pi Fraternity. Mr. Tantleff received his J.D. from the Chicago-Kent College of Law. Admissions and Affiliations Mr. Tantleff is a member of the working committee for the Illinois Biotechnology Organization (iBIO), a life sciences industry association dedicated to strengthening the leadership position of Illinois and the Midwest as a globally recognized life sciences center. He is also a member of the American Bar Association and Chicago Bar Association. Mr. Tantleff is admitted to practice in Illinois, the District of Columbia, and before the U.S. Patent and Trademark Office and the U.S. District Court for the Northern District of Illinois. Publications and Presentations Quoted, “The Morning Risk Report: Hope Fading for Privacy Shield Agreement,” Wall Street Journal (June 1, 2016) Quoted, “European Data Protection Supervisor Calls Privacy Shield Ineffective,” SC Magazine (June 1, 2016) Quoted, “The Low Hanging Fruit of HIPAA Compliance: 8 Best Practices,” Becker’s Hospital Review (May 27, 2016) “Staying Secure with Open Source,” CIO Review (May 18, 2016) Quoted, “Top Tips for OCR HIPAA Audit Preparation,” Health IT Security (April 22, 2016 ) Quoted, “US wary of renegotiating data deal with Europe,” The Hill (April 20, 2016) Quoted, “U.S. Reluctant to Change Data Pact After UE Watchdogs’ Concerns,” Reuters (April 20, 2016) Quoted, “Companies await fate of data sharing deal,” The Hill (April 17, 2016) Quoted, “Privacy Shield likely to move forward despite WP29 concerns,” SC Magazine (April 14, 2016) Quoted, “Art. 29 Working Group says Privacy Shield falls short,” SC Magazine (UK) (April 14, 2016) Quoted, “Negative European Review Ratchets Up Looming Data Privacy Fight,” Wall Street Journal (April 14, 2016) Quoted, “U.S. Multinationals Have a Huge Privacy Problem in Europe,” Fortune (April 13, 2016) Quoted, “Privacy Shield: EU Regulators Voice Concerns Over Data Sharing Agreement Leaving US Companies In Limbo,” International Business Times (April 13, 2016) Quoted, “Microsoft endorses EU-US Privacy Shield data sharing pact,” CIO (April 11, 2016) Quoted, “The Morning Risk Report: Privacy Shield Review Can Set Debate Tone,” Wall Street Journal (April 11, 2016) Quoted, “Leak hints that Art.29 WP troubled by Privacy Shield protections, may not approve,” SC Magazine (April 11, 2016) Quoted, “Compliance and Regulatory Heavy Lifting Ahead for Privacy Shield,” Wall Street Journal (March 10, 2016) Quoted, “Mind those emails: Don’t fall victim to a cyberattack,” Investment News (March 2, 2016) “Mobile Device Privacy and Security Compliance for Corporations,” to be presented via Webcast by Stafford (November 2015) “Drafting Technology Services Statements of Work: Avoiding Contracting Pitfalls,” to be presented via Webcast by Clear Law Institute (November 2015) “Cybersecurity for Financial Service Industry,” to be presented via Webcast by Foley & Lardner LLP (October 2015) Panelist, “Security IoT: Meeting the Innovators,” Security of Things Forum, Cambridge, MA (September 2015) Quoted, “IT pros crave a new kind of cloud SLA,” Search Cloud Computing (August 31, 2015) “Cloud Computing SLAs and Legal Issues + Key Concepts in Choosing Cloud Providers,” presented at the Boston Cloud Services – All Things Cloud, SaaS, PaaS, XaaS, Boston, MA (August 2015) “Cybersecurity: An Executive Briefing,” presented at Western Michigan Chief Legal Officer’s Meeting (August 2015) “Plan and Train for Security Incidents Now,” Cybersecurity Update (July 2015) “Privacy and Information Security Monthly Update,” presented via webcast by the ABA Section of Antitrust Law (June 2015) Quoted, “Open source: Big Benefits, big flaws,” CSO Online, CIO Online, Networked World and Computerworld Singapore (June 15, 2015) “Drafting Technology Services Statements of Work: Avoiding Contracting Pitfalls,” presented via Webcast by Strafford (June 2015) “Bring Your Own Device in the Workplace: Minimizing Legal Risks of BYOD Programs,” presented via Webcast by Strafford (June 2015) Quoted, “Taxing professional services? Here’s how five other states do it” Crain’s Chicago Business (May 16, 2015) “Is Your Refrigerator Spying on You? Privacy and Security Issues Relating to the Exploding Internet of Things,” presented at the 24th Annual Law of Product Distribution and Franchise Seminar, Milwaukee, WI (May 2015) “Protecting IP Rights in Joint Development Agreements and Strategic Alliances,” presented via Webcast by Strafford (May 2015) “PDNYC #11: The Ethics of Personal Data - From Privacy to Practicality,” presented at Personal Data NYC, New York, NY (April 2015) “Cybersecurity,” presented at the Locksource Private Equity Event, NYC, New York (March 2015) “Data Governance in IoT,” presented at Data Policy and Security in IoT, Cambridge, MA (February 2015) "Considerations on Big Data Licensing," Managing IP (February 2015) “How to Address the Privacy, Security, Regulatory, Big Date, ‘That’s Just Creepy,’ and ‘What Ever You Call it, Don’t Call it Outsourcing’ Issues in Outsourcing,” presented at the 2015 Outsourcing World Summit, Phoenix, AZ (February 2015) “Considerations on Big Data Licensing,” Managing Intellectual Property (January 26, 2015) “How Big Data is Reshaping American Manufacturing,” The Manufacturing Leadership Journal (January 2015) “Licensing Big Data,” Big Data, A Business and Legal Guide, CRC Press (2015) “Cybersecurity for the Board Room,” presented at the 2014 FOLEYTech Summit (October 2014) “IT Latest in Healthcare Privacy and Security,” presented with the ACC Health Law Committee, ACC 2014 Annual Meeting, New Orleans, LA (October 2014) “Privacy and Security Considerations: All the Information on How to Care For Your Data and What to Do When it Escapes,” presented at the Milwaukee Bar Association (June 2014) “Mobile Device & Privacy,” presented via Webcast by Strafford (May 2014) “IT Professional Services Agreements and Statements of Work,” presented via Webcast by Strafford (April 2014) “Workplace Privacy Considerations for In-House Counsel: What Can Be Seen and Heard behind Company Walls,” presented via Webcast by Celesq (March 2014) “Drafting Service Level Agreements: Best Practices for Corporate and Technology Counsel,” presented via Webcast by Strafford (March 2014) "Privacy and Security in the Workplace," presented via Webcast by Celesq (March 2014) "Drafting Service Level Agreements: Updated Lessons Learned from State of Indiana v. IBM Corp.," presented via Webcast by Strafford (March 2014) “Protecting IP Rights in Joint Development Agreements and Strategic Alliances,” presented via Webcast by Strafford (February 2014) Guest Lecturer, "Privacy and Technology,” Law, Policy and Ethics, Medill School of Journalism, Media, Integrated Marketing Communications, Northwestern University, Evanston, IL (February 2014) Quoted, “Mobile app? There’s a legal issue for that,” Chicago Daily Law Bulletin (December 5, 2013) "Technology, Data & Privacy: Critical Issues for In-House Counsel," presented at annual CLE luncheon sponsored by the ACC Chicago Chapter and LexisNexis (December 2013) "Reviewing, Drafting and Negotiating Service Level Agreements," presented via Webcast by the National Constitution Center Conferences (November 2013) "Challenges of BYOD (Bring Your Own Device) in Corporate Investigations" presented at the Illinois CPA Society’s 2013 Fraud Conference, Chicago, IL (October 23, 2013) "Frontiers of Marketing and Promotion: Business and IP Risks," panel presentation presented at Foley & Lardner's Annual IP Conference, "IP Issues at the Frontline ― Offensive & Defensive Strategies that Win the Game," New York, NY (October 18, 2013) “Mobile Apps for Companies: Navigating the Legal Landmines,” presented via Webcast by Strafford (October 2013) Judge, Fifth Annual PROPEL Business Plan Competition (October 2013) "Technology Contracting: Strategies for Success - Part II," presented via Webcast by Celesq (September 2013) “Bring Your Own Device in the Workplace: Minimizing Legal Risks of BYOD Programs,” presented via Webcast by Strafford (September 2013) “Information Security and Vendor Contracting: Avoiding Common Pitfalls,” presented via Webcast by Foley & Lardner LLP (September 2013) "Big Data: Evaluating and Minimizing Legal Risks of Collecting and Using Consumer Data - Proactive Strategies for Addressing Liability, Privacy and Security Risks," presented by Strafford (August 2013) Quoted, “Mobile Device Policy: Is Yours Up to Date?” DiagnosticImaging (August 15, 2013) "Technology Contracting: Strategies for Success - Part I," presented via Webcast by Celesq (August 2013) Quoted, “Demystifying the Cloud,” Chicago Lawyer (August 1, 2013) "Legal and Legislative Issues of Big Data," presented at the Big Data Coalition Public Policy Tour, Washington, D.C. (July 24, 2013) "With Big Data comes Big Questions, and Big Problems: What Every Counsel Needs to Know," presented via Webcast by Celesq (July 2013) Quoted, “Bring Your Own Device – A Work Anywhere Ecosystem (Part 3),” Infragistics (June 28, 2013) "A Proactive Approach to Cloud Computing in the Healthcare Industry," American Health Lawyers Association Connections, Vol. 17, Iss. 6 (June 2013) "Mobile Applications: What All Lawyers Must Know to Protect their Clients from the Legal Risks and Pitfalls in Developing and Managing Them," presented via Webcast by Celesq (June 2013) Quoted, “Social media revolution in the workplace challenging risk managers,” Crain Communications, Inc. (June 3, 2013) Quoted, “Beware of risks social media can trigger for employers,” Crain Communications, Inc. (June 3, 2013) Quoted, “Employees' personal mobile devices raise workplace security concerns,” Crain Communications, Inc. (June 3, 2013) Quoted, “Employers should draft social media policies and train workers on avoiding related pitfalls,” Crain Communications, Inc. (June 3, 2013) "Technology Contracts: Strategies for Success," presented at the 2013 State of the Law Conference, The Association of Corporate Counsel – Michigan Chapter (ACC) sponsored by Foley & Lardner and held at the VistaTech Center at Schoolcraft College in Livonia (May 2013) "IP Due Diligence in M&A Transactions for IP and Transactional Counsel," presented via Webcast by Celesq (May 2013) "Lessons Learned in Financing," live panel discussion, Growth Company Event Series presented via Webcast by Foley & Lardner LLP (May 2013) "Don't Let Your Mobile Application Projects Spin Out of Control," presented via Webcast by Foley & Lardner LLP (April 2013) "IT Professional Services Agreements and Statements of Work," presented via Webcast by Strafford (April 2013) "Demystifying Cloud Computing Contracts for Information Technology, Corporate and In-House Lawyer: Clear Skies Ahead," presented via Webcast by Strafford (March 2013) "Legal Issues Surrounding Mobile ‘App’ Development and Releases," presented at Tech Talk: Innovation, Technology, and the Law seminar sponsored by the State Bar of Wisconsin (February 2013) "The Business, Legal, and Regulatory Issues Affecting Your Company," live panel discussion, Growth Company Event Series presented via Webcast by Foley & Lardner LLP (February 2013) "Drafting Service Level Agreements: Lessons Learned from State of Indiana v. IBM Corp.," presented via Webcast by Strafford (February 2013) "Bring Your Own Device (BYOD): Considerations and Best Practices for Policy Drafting for Lawyers," presented via Webcast by Celesq (December 2012) "BYOD – You Can Seize It, But Can You Tame It?" presented by Foley & Lardner LLP (November 2012) "Service Levels in Information Technology Agreements and State of Indiana v. IBM Corp. Important Legal Developments for Corporate and Technology Counsel," presented via Webcast by Celesq (November 2012) "Social Media," panel presentation at "User Driven IP 4.0: High Stakes. High Rewards," Foley's Annual IP Conference in New York, NY (October 2012) Quoted, Article on Security risks and other employer liabilities arising from Bring Your Own Device ("BYOD"), Washington Internet Daily (August 1, 2012) Quoted, "Digital devices owned by employees increase employers' risks," Business Insurance (July 29, 2012) Quoted, "Employer policy on mobile devices essential," Business Insurance (July 29, 2012) “Understanding the Legal Risks of Bring Your Own Devices (BYOD): Important Considerations for In-House Corporate, Employment and Technology Lawyers,” presented via Webcast by Celesq (July 2012) “IP 101-The 30,000 foot view of Intellectual Property protection for your Startup,” presented at START-UPS: Building a Strong Foundation in New York, NY (July 2012) "Crushing the 6 Risks of BYOD," presented via Webcast by Fiberlink (June 2012) "A Year in Review: Data Breaches and Lessons Learned," presented at the International Association of Privacy Professionals (IAPP) 2012 Practical Privacy Series - Data Breach Program in Chicago, IL (June 2012) Quoted, "The cutting edge of enterprise tablet deployments," TabTimes (May 3, 2012) Quoted, "On Deploying Tablets in the Enterprise," PC Magazine (April 30, 2012) Quoted, "This Week in Tablets: Apple's amazing iPad sales figures, and scary BYOD ramifications," TabTimes (April 28, 2012) Quoted, "BYOD takes center stage at the first Tablet Strategy conference," TabTimes (April 27, 2012) "Building a Mobile Policy that Enables and Protects: Seven Risks You May Not Have Considered,” presented at the TabTimes Tablet Strategy Conference in New York, NY (April 2012) Judge, Fourth Annual PROPEL Business Plan Competition (March 2012) “IT Professional Services Agreements,” presented via Webcast by Strafford (January 2012) “Drafting Key Provisions, Anticipating Common Areas of Dispute, and Streamlining Negotiations,” presented via Webcast by Celesq (January 2012) "Cloud Computing 2.0: Advanced Seminar on Drafting and Negotiating Cloud Computing Agreements," presented via Webcast by Celesq (December 2011) "Understanding and Negotiating the Outsourcing Agreement," presented via Webcast by Celesq (October 2011) "Cloud Computing 2.0: Advanced Seminar on Drafting and Negotiating Cloud Computing Agreements," presented via Webcast by Celesq (September 2011) "Drafting and Negotiating IT Professional Services Agreements," presented via Webcast by Celesq (June 2011) "The Legal Implications of Cloud Computing, Social Media and Mobility," presented at the COMMON IT Executive Conference in Minneapolis, MN (May 2011) "Essentials of Software License Agreements," presented via Webcast by Celesq (April 2011) "Defending Against Claims of Third-Party Identity Theft," presented in a Foley Web Conference Online Live Webcast (March 2011) Moderator, "Social Media Strategies in the Life Sciences Industries," 2011 iBIO IndEx (February 2011) Judge, Third Annual PROPEL Business Plan Competition (February 2011) Judge, Second Annual PROPEL Business Plan Competition (February 2010) "Identity Theft: 7 Tips for Complying with FTC Red Flag Rules," published in CIO Magazine and online at cio.com (October 2009) "HITECH: Complying with the New Security Breach Notification Regulations," presented in the West Thomson Reuters - West LegalEdcenter Online Live Webcast (September 16, 2009) "HHS Issues Interim Final Rule Governing Security Breach Notification," American Health Lawyers Weekly, AHLA newsletter Vol. 7, Iss. 34 (August 28, 2009) "HITECH: What You Need to Know About the Security Breach Notification Regulations," presented in the Foley Friday Focus Health Care Web Conference Series Online Live Webcast (August 25, 2009) "HHS Issues Interim Final Rule Governing Security Breach Notification," Foley Legal News Alert (August 21, 2009) "Tax Consequences in Transfers of Intellectual Property," which discussed structuring intellectual property and information technology transactions for tax attorneys was presented at the ABA Section of Taxation: Closely Held Businesses, Midyear Meeting, San Diego, CA (February 2006) * The Illinois Supreme Court does not recognize certifications of specialties in the practice of law and no certificate, award or recognition is a requirement to practice law in Illinois.