Data & Tech Lawyer;
Compliance for AI/ML, Privacy, Security and other Laws
Free Consultation
How can I help?

Privacy & Security
Developing effective strategies for foundations and nonprofits that apply our clients’ resources to maximum potential. For businesses, we create strategies to deliver economic success from social impact.

Artificial Intelligence
Working closely with our clients to develop action plans that fuse strategy with stakeholder realities and staying on the case through full implementation all the way to measurable impact.

Regulatory Compliance
Using evaluation to facilitate organization and community learning, make strategic decisions, and take informed action.
Or Something Else?
As a small business owner in the startup life, I understand budget constraints and the need for efficient solutions to what seem like large legal problems. I strive to be incredibly efficient with my time and your money. I don’t have a lot of time to waste overcharging you anyway because I have other clients with problems that need me. Let’s sit down and discuss how to make the most of your legal budget.
I am a tech savvy attorney that has negotiated thousands of vendor and customer contracts, including enterprise contracts with S&P 500 companies as well as other large businesses and tech companies. Let me take a look at your contracts and let’s discuss how we can streamline your contract negotiations and lower your liability risk. I can use AI to create the contracts and targeted redlines of terms you need to save your company money.
Sometimes in the startup game when you are building the plane on the way down you just need to phone a friend. When I started in online marketing and SEO almost twenty years ago, one of the great nuggets of wisdom among the online knowledge that I devoured was to “make a friend”. Why spend hours struggling with a problem when you can call a friend who has been through it before and can point you in the right direction? I have been around the block with startups and technology companies for a while now. I know the legal problems that they face and who to call when I don’t know the answer. Don’t struggle trying to decipher online guidance from large law firms. Put my number on your speed dial.
Some of the Industries I serve:
Technology
Counsel to SaaS platforms, software developers, and hardware companies on a variety of compliance and privacy issues.
Startups
Representing tech and other companies from idea to exit with data protection and compliance.
Health Care & Life Sciences
I work with industry software vendors, VC-backed medical providers and others with their regulatory and privacy compliance.
eCommerce
Advising online sellers with privacy and security.
Financial Services
I work with fintech companies and bank software providers on privacy and security such as the Gramm Leach Bliley Act.
Advertising & Marketing
Working with companies engaged in advertising and marketing with privacy compliance
AI / ML
Counsel to companies implementing AI such as LLMs with best practices, contracting and regulatory compliance.
Cryptocurrency
Bitcoin, crypto and smart contracts pose interesting compliance and privacy challenges.
Experience
Robert Melton has represented clients with legal issues for almost two decades.
Since GDPR went into effect in 2018, Robert Melton has:
Reviewed and negotiated:
– hundreds of data processing addendums
– hundreds of business associate agreements
– hundreds of enterprise security addendums
– hundreds of Standard Contractual Clauses
– hundreds of tech vendor agreements on data protection
– thousands of indemnifications and liability caps on data protection
– dozens of DPAs concerning student data in the education industry
– dozens of agreements and terms concerning the use of artificial intelligence, Generative AI and machine learning.
– dozens of data licenses
– dozens of NDAs
Assisted dozens of companies with international data transfer issues including the Standard Contractual Clauses
Led the legal investigation for companies and advised in dozens of security incidents
Advised companies on hundreds of GDPR and CCPA compliance questions
Represented buyers on data protection in dozens of private equity rollups and B2B startup acquisitions.
Represented buyers on data protection and compliance in more than a dozen reps and warranties insurance (RWI) transactions.
Represented more than a dozen health care companies concerning HIPAA and data protection in the M&A process.
Represented sellers on data protection and compliance issues in the advertising, ecommerce, financial, health care, tech and other industries.
Contract Drafting and Negotiation
Get assistance and advice from experienced contracting counsel.
From $395/hour
- Data Processing Addendums
- Business Associate Agreements
- Security Addendums
Ready your startup for enterprise software sales.
Leverage my policy templates for fast and efficient drafting.
From $395 / hour
- Written Information Security Policy
- Security Incident Response Policy
- Business Continuity and Disaster Recovery Plan
- More
Conduct a Gap Analysis to improve your Compliance
Review your policies, procedures and practices for compliance with the law and best practices.
Get an Hourly or Flat Free Proposal
Incident Response and More!
Get assistance in a data breach or start planning your response by bolstering your incident response policy, conducting a tabletop exercise and lining up your vendors.
Get an Hourly or Flat Free Proposal
Some of the Laws I work with:
GDPR
The 2018 privacy regulation of the European Economic Are and the United Kingdom set the standard for the world’s toughest data protection law.
COPPA
This US federal privacy law regulates certain collection of personal data of children under 13 years of age online.
CCPA
The first comprehensive US state privacy law was adopted by California and later amended by voters in the CPRA. A dozen state laws followed.
FERPA
Vendors to schools often have questions about this US privacy law regulating the data of colleges and other schools.
HIPAA
The leading US privacy law regulating protected health information of doctors, hospitals, health plans and their business associates.
GLBA
This federal privacy law in the US regulates non-public personal information at financial institutions.
BIPA
The Illinois Biometric Information Privacy Act requires written consent for collection and use of biometric identifiers of Illinois residents.
TCPA
Established the National Do Not Call Registry and limits robocalls and telemarketing to consumers.
+1 267 978 4292
rob@robmelton.com
Audubon, PA, US
Mon–Friday: 9:00 AM–5:00 PM
Sat-Sun: By Appointment