Photo of Cameron Shilling

Cameron is a Director at McLane, Graf, Raulerson & Middleton. He has an active practice in New Hampshire, Massachusetts, and throughout New England. Cam leads McLane���s Privacy and Data Security Group. He comes from a background of handling technology, business litigation, and employment matters.

Cam���s expertise in data security includes managing security audits, preparing and implementing written data security policies, addressing day-to-day security issues, and investigating and remediating data security breaches. He has dealt with these issues under a range of state and federal laws, including the Gramm-Leach-Blilely Act, Health Insurance Portability and Accountability Act (HIPAA), Health Information Technology for Economic and Clinical Health Act (HITECH), Genetic Information Non-Discrimination Act (GINA), Children���s Online Privacy Protection Act (COPPA), Fair Credit Reporting Act (FCRA), Fair and Accurate Credit Transactions Act (FACTA), a number of state data security laws.

Cam���s expertise in data privacy matters includes creating and implementing information security policies, advising employers with respect to workplace privacy, advising clients with respect to social media, advising companies with respect to customer and consumer privacy, and handling claims against companies for invasion of data privacy. He has dealt with these issues under a number of state and federal laws, including the Electronic Communications Privacy Act (ECPA), Stored Communications Act (SCA), Computer Fraud and Abuse Act (CFAA), Fair Trade Commissions Act (FTC Act), Massachusetts��� Privacy Act, state Wiretap Laws, and a variety of other state laws.

Cam can be reached at His direct dial is 603-628-1351, and his cell phone is 603-289-6806.

Published in the New Hampshire Business Review (9/15/22)

Many business leaders and human resources professionals believe that cyber security is the responsibility of their information technology staff and managed services provider. However, ensuring that employees and their families have appropriate cyber security protection is an employee benefit that benefits employers as well.

Mistakes, lack of

Companies reopening their offices and facilities will be collecting sensitive personal and health information about their employees (as well as about customers, vendors, and other visitors) to track COVID-19 symptoms. Although the Americans with Disabilities Act (ADA) typically places strict limits on the collection, use, and disclosure of health information about employees, the ongoing pandemic has prompted the Equal Employment Opportunity Commission and Centers for Disease Control and Prevention to permit the widespread gathering of health information in the workplace in an effort to stem the spread of the coronavirus.

Continue Reading Coronavirus Tracking Programs Need to Comply with Privacy Laws

Employers frequently access and review data created or stored by employees on company-owned electronic devices, such as computers, laptops, tablets (iPad), and cellphones (iPhone, Droid and Blackberry).  Well-crafted technology and social media policies specifically authorize employers to do so.  But, if not careful, employers can step over the line between permissible conduct and conduct that