About Trisha Sircar
Data privacy and cybersecurity considerations coupled with global regulatory compliance obligations are increasing and becoming more complex. Businesses, consumers, and individuals need protection — Trisha Sircar spearheads Katten's Privacy, Data and Cybersecurity Practice and provides clients with practical guidance and creative solutions to manage privacy, data, cybersecurity and artificial intelligence (AI) risk and compliance challenges.
Operating at the intersection of technology and law
Trisha is the head of Katten's Privacy, Data and Cybersecurity Practice and is the firm's Privacy Officer, overseeing data protection matters across all Katten offices. She collaborates with clients across all industries, including financial services, retail, manufacturing, education, new and emerging technology, professional sports, media, travel, life sciences and health care. She is a trusted advisor to in-house legal, compliance, technology, marketing and engineering teams on managing and mitigating the risks associated with cybersecurity, personal data and confidential information in the advent of AI and emerging technologies. She strategizes with clients to develop and operationalize comprehensive and effective information governance programs and assesses their day-to-day compliance needs and risks. Trisha helps clients develop policies and procedures, administer training, lead incident response, conduct red teaming, respond to data subject requests, draft privacy and AI impact assessments and negotiate cross-border data transactions, and counsels on strategic transactions, including AI, digital assets, mergers and acquisitions, and divestitures. Trisha is a seasoned attorney and industry leader on all types of AI, including large language models (LLMs), decision tree models, facial recognition and voice recognition.
Practice Focus
- Implementation of privacy and AI governance frameworks
- Incident response and data breach preparedness and response
- Cross-functional collaboration with stakeholders regarding compliance and information governance
- Coordinating and communicating with government agencies and law enforcement regarding cybersecurity incidents, threat monitoring and insider threat activities
- Privacy and cybersecurity program implementation in compliance with global regulation
- Data subject request handling and processing of implementations
- Data protection and AI impact assessments
- Intellectual property, technology, media and privacy laws
- Vendor management, contracts and cross-border data transfer agreements
- Privacy policies, procedures and standards implementation
- Cookie compliance
- Information handling policies, procedures and standards implementation
- Records management and data classification policies, procedures and guidelines implementation
- Employee privacy training and handbooks
Representative Experience
News
-
June 30, 2025
-
March 10, 2025
-
January 2, 2025
-
August 13, 2024
-
March 5, 2024
-
February 20, 2024
-
January 4, 2024
-
November 29, 2023
-
November 2, 2023
- View All News
Publications
-
July 2025
-
July 2025
-
June 2025
-
June 2025
-
May 2025
-
April 2025
-
March 2025
-
March 20, 2025
-
March 2025
- View All Publications
Quick Reads
Presentations and Events
-
August 22, 2024Presenter
-
January 29 – February 1, 2024
-
October 26, 2023Speaker
-
February 2–4, 2023Speaker | Hot Issues in Data Privacy
-
November 17, 2022
-
March 8-11, 2022Speaker | Protecting Client Data & Keeping Pace With State, National, and International Privacy Law
-
July 12, 2021
-
June 22, 2021Speaker
-
February 2–4, 2021Moderator | WFH Cybersecurity Risk Management from a Legal, Business and IT perspective
- View All Presentations and Events