Elliott advises clients on a wide range of complex privacy and information security issues, as well as artificial intelligence, telemarketing, and consumer protection matters. He holds certifications as a certified information privacy professional in both the United States (CIPP/US) and Europe (CIPP/E). His practice spans transactional advice and compliance with evolving international, U.S. federal, and state laws, including GDPR and various state privacy regulations such as those in California, Colorado, Connecticut, and Virginia. He assists companies in operationalizing information security programs and preparing for data breaches. In the event of a security incident, Elliott manages all aspects of the response, from investigation to mitigation and stakeholder communication. Formerly a deputy attorney general in New Jersey, Elliott led the data privacy and cybersecurity section, overseeing investigations into state and federal privacy and consumer protection violations. He applies this experience to help clients anticipate enforcement trends and mitigate risks related to data protection and compliance with industry standards..