• vcard
  • Education
    • J.D., University of Missouri-Kansas City School of Law, 2010, Dean's List; Order of Barristers
    • BA, University of Missouri-Columbia, 2007, magna cum laude
Prior to joining Polsinelli, Allison spent several years serving as in-house counsel to privately held and publicly traded companies that operated in highly regulated industries including health care and financial services. While in-house she served on a variety of executive-sponsored strategic planning committees tasked with implementing initiatives such as information technology transformation, business process improvement, and compliance with the EU’s General Data Protection Regulation (“GDPR”). Allison’s experience working closely with business leaders influences her approach to providing legal guidance – an approach which is centered around identifying practical solutions that enable business growth and development. Her practice consists of negotiating complex licensing and technology transactions and providing guidance regarding privacy and data security matters. In addition, she provides product counseling for offerings that leverage data analytics.  

Licensing and Technology Transactions

Allison’s experience negotiating a wide variety of sophisticated intellectual property transactions allows her to efficiently negotiate similar transactions for different clients while achieving desired levels of risk mitigation and revenue generation on behalf of those clients. The following are examples of some of the in-bound and out-bound transactions that she has completed to date:
  • Joint development and commercialization agreements
  • Data exchange agreements
  • Cloud-based service offerings
  • Reseller agreements
  • Strategic acquisition agreements
  • Professional and consulting services agreements

Privacy and Data Security  

Allison regularly counsels clients on matters involving privacy and data security, including:

Policies and Procedures:
  • Creating frameworks to support GDPR and privacy by design initiatives, including frameworks for information governance practices and use of emerging technologies
  • Drafting privacy policies for website and mobile use
  • Developing risk assessments for third party suppliers and providing a framework for supplier risk governance
Data Security Incident Response:
  • Advising on data security incident response procedures.
  • Providing guidance on various state, sectoral and international data privacy laws and regulations, including HIPAA and GLBA following a data security incident.
Product Counseling:
  • Providing guidance on privacy legal obligations for marketing activities, including behavioral advertising.
  • Providing guidance regarding “opt-in” and “opt-out” consent requirements for tracking technologies.
  • Recommending agreement structures and drafting templates for data analytics offerings.
  • Advising on various methods of data de-identification under regulatory schemes

Previous to her current role, Allison was Senior Counsel for a publicly traded information technology service provider serving the health care and financial services industries. 
  • Negotiated multi-million dollar technology outsourcing agreement on behalf of publicly traded service provider with $1.5 billion in annual revenue.
  • Recommended agreement structure and drafted new templates for big data and regulatory compliance offerings on behalf of information technology service providers in the financial services and health care industries.
  • Counseled technology service provider regarding privacy compliance obligations related to behavioral advertising and other tracking technologies and drafted related privacy policies. 
  • Negotiated cloud-based service offerings and business associate agreements for health care technology company with $4 billion in annual revenue.
  • Implemented privacy by design principles on behalf of technology service provider, including drafting privacy impact assessments and conducting privacy reviews for new products and offerings.
  • Supported data security incident response procedures for technology service providers by providing guidance regarding state and sectoral privacy laws.
  • Negotiated a joint development and commercialization agreement with an academic institution on behalf of a privately owned health care information technology vendor.
  • Represented health care information technology vendor in the development of a data exchange, including participation in creating technological standards, and drafting of the data exchange agreement.
  • Conducted due diligence and drafted the related software acquisition agreement on behalf of technology service provider.
text icon Publications & Presentations
Cloud Services Negotiation: Tips for Reducing Data Privacy and Cybersecurity Risks
Co-author, ABA Information Security Committee Information Law Journal, Winter 2019: Volume 10, Issue 1
Winter 2018
eAlerts Updates
October 2018
text icon Publications & Presentations
July 25, 2018
eAlerts Updates
June 2018
text icon Publications & Presentations
May 16, 2018
text icon Publications & Presentations
Big Data, Big Business: Leveraging Analytics to Strengthen Your Legal Department
Co-Author, Association of Corporate Counsel - ACC Docket
March 2018
text icon Publications & Presentations
Breaking Down Big Data: 'Challenges of Meeting De-Identification Standards'
Co-Author, Association of Corporate Counsel - E-Publication, ACCDocket.com
September 25, 2017
text icon Publications & Presentations
Breaking Down Big Data: 'De-Identification Standards to Protect Personal Information'
Co-Author, Association of Corporate Counsel - E-Publication, ACCDocket.com
September 11, 2017
text icon Publications & Presentations
Pay to Play: Our Data is Locked Down, But Now by Us
Co-Author, Association of Corporate Counsel - E-Publication, ACCDocket.com
June 25, 2017
text icon Publications & Presentations
Practical Tools to Implement and Assess a Big Data Program
Author, Association of Corporate Counsel InfoPak
December 1, 2016