Todd is a member of Polsinelli’s Technology Transactions & Data Privacy practice group, where he works with clients to proactively manage and mitigate their business risks and guide companies through their legal and regulatory obligations in the aftermath of a security incident or privacy event.

Todd has assisted with cybersecurity risk assessments, incident response planning, cybersecurity and privacy compliance, training, policy development and vendor contract negotiation.

For businesses facing active security or privacy incidents, Todd provides support from the company’s initial investigation through the legal reporting and remediation phases of the engagement. He has successfully represented clients in data breach regulatory inquiries, privacy litigation, and has years of experience handling early-stage litigation matters such as e-discovery.

Before joining Polsinelli, Todd handled cybersecurity and data privacy matters at a Birmingham-based national law firm.

Education

  • University of Alabama School of Law (J.D., 2014)
    • Alabama Civil Rights & Civil Liberties Law Review, Articles Editor
    • Chapter President, American Constitution Society
  • University of Alabama

    Bar Admission

    • Alabama

    Recognition

    • Named one of Best Lawyers: Ones to Watch® in America in:
      • Commercial Litigation, 2025-2026
      • Privacy and Data Security Law, 2026
    Publications
    All Publications
    Current Trends in Data Breach Notification Laws: Safe Harbors and Reinforcing the Case for Cybersecurity
    Adam Griffin, Todd Panciera and Sara Kopetman provide a brief update on the state data breach notification laws, explore how legislatures and courts are navigating the uptick in data privacy litigation and what the implications are for businesses facing both increased regulation and rising litigation risks.
    Read More
    Current Trends in Data Breach Notification Laws: Safe Harbors and Reinforcing the Case for Cybersecurity
    The early 2000s marked the start of a new era for consumer protection with the passage of the data breach notification law in California, the first of its kind. Since that time, a patchwork of privacy laws has been enacted across the United States, signaling an ever-greater regulatory shift toward consumer privacy protection. And since the passage of the comprehensive California Consumer Privacy Act of 2018 (CCPA), the United States has seen exponential growth in the number of privacy-related bills being introduced in state legislatures (59 in each of the past two years) as well as the number of bills being passed into law (7 in 2023).1 This surge in legislative activity has led to a significant increase in both
    Read More