Roshni Patel

Tel 202.661.7686
Fax 202.661.2299
Washington, DC

Roshni Patel advises clients on privacy and data security matters. She helps companies maintain compliance with federal and state laws and regulations, including the Fair Credit Reporting Act, the Gramm-Leach-Bliley Act, the Children’s Online Privacy Protection Act, and California’s Online Privacy Protection Act. She also counsels companies on industry standards, such as the Payment Card Industry Data Security Standards (PCI-DSS), and evolving Federal Trade Commission and Consumer Financial Protection Bureau standards related to privacy and data security. Ms. Patel routinely drafts privacy policies, privacy notices, website terms of use, and other policies and procedures related to information security, data retention, and incident response. She also helps clients respond to data breaches and in related litigation matters.

Prior to joining the firm, Ms. Patel was a Privacy Fellow at the Wikimedia Foundation.

Professional Activities

South Asian Bar Association

International Association of Privacy Professionals

American Intellectual Property Law Association


Co-author, "FTC Submits Comment To Aid NTIA In Developing Internet of Things Guidance," Ballard Spahr alert, June 21, 2017

Co-author, "White House Issues New Cybersecurity Executive Order," Ballard Spahr alert, May 17, 2017 

Co-author, "The NYDFS Cybersecurity Approach Marks a Radical Shift for Financial Institutions," Cornerstone Support, April 20, 2017  

Co-author, "HHS Designates Cloud Service Providers as Business Associates Under HIPAA," Ballard Spahr alert, November 4, 2016

Co-author, "Federal Banking Agencies Propose New Requirements for Managing Cyber Risk," Ballard Spahr alert, October 20, 2016

Co-author, "UK ICO Offers Guidance on Privacy Notices Under the GDPR and the UK Data Protection Act," Ballard Spahr alert, October 18, 2016

Co-author, "Important Lessons for Businesses from FTC's Opinion on LabMD's Data Security Practices," Ballard Spahr alert, August 12, 2016

Co-author, "OCR Announces First HIPAA Enforcement Action against a Business Associate," Ballard Spahr alert, July 25, 2016

Co-author, "TCPA Under Scrutiny in Court and by Senate," Ballard Spahr alert, May 24, 2016

Co-author, “The CFPB Becomes the Latest Federal Agency to Take on Data Security,” Journal of Internet Law, May 2016

Co-author, "Mobile Financial Services Addressed in FFIEC Examination Handbook," Ballard Spahr alert, May 6, 2016

Co-author, "Class Certification Improper in Data Breach Case, PA Appellate Court Finds," Ballard Spahr alert, May 4, 2016

Co-author, "OCC White Paper Promotes Framework for Supporting Responsible Innovation," Ballard Spahr alert, April 5, 2016

Co-author, "Federal Reserve Study Highlights Consumer Behavior with Mobile Financial Services," Ballard Spahr alert, April 1, 2016

Co-author, "FTC Examines Process by which Companies Assess Compliance with PCI DSS," Ballard Spahr alert, March 9, 2016

Co-author, "Recent Trends in the FTC’s Data Security and Privacy Enforcement Actions," Journal of Internet Law, March 2016

Co-author, "EU-U.S. Privacy Shield Framework Text Published: Imposes New Obligations on Entities that Seek Data Transfers from the EU," Ballard Spahr alert, March 8, 2016

Co-author, "President Obama Gives EU Citizens Judicial Redress for Privacy Violations," Ballard Spahr alert, March 1, 2016

Co-author, "President Creates Cybersecurity National Action Plan and Commission on Enhancing National Cybersecurity," Ballard Spahr alert, February 24, 2016

Co-author, "Legal Framework of Mobile Payments Presented in Pew Center White Paper," Ballard Spahr alert, February 17, 2016

Co-author, "From Safe Harbor to Privacy Shield: New EU-U.S. Agreement for Transatlantic Data Flows," Ballard Spahr alert, February 9, 2016

Co-author, "Use of Big Data May Violate Federal Consumer Protection Laws, FTC Report Warns," Ballard Spahr alert, January 13, 2016

Co-author, "Data Security for Mortgage Companies: A Focus on Employees," Mortgage Compliance Magazine, December 2015

Co-author, "FTC Takes Action Against App Developers on COPPA Allegations Involving Persistent Identifiers," Ballard Spahr alert, December 23, 2015

Co-author, "California Updates Data Breach Notification Statute," Ballard Spahr alert, October 19, 2015

Co-author, "Court of Justice of the European Union Invalidates U.S. Safe Harbor Framework," Ballard Spahr alert, October 7, 2015

Speaking Engagements

Panelist, "Preparing for the Privacy Shield—A Discussion of New Obligations and Oversight for Cross-Border Data Transfer" Ballard Spahr webinar, April 14, 2016

Panelist, "Keeping FinTech Mobile: Understanding the Legal and Technical Aspects of Mobile Commerce," Ballard Spahr webinar, February 11, 2016

Community Activities

Volunteer, Washington Humane Society

Georgetown University Law Center (J.D 2013)
Development Editor, The Georgetown Journal of Gender and the Law
Member, Barristers’ Council, Appellate Advocacy Division

Pomona College (B.A. 2007)


U.S. Patent and Trademark Office

District of Columbia