- Home
- >
- Ezra D. Church
Ezra D. Church
Partner
Philadelphia Phone +1.215.963.5710 Fax +1.215.963.5001
1701 Market St.//Philadelphia, PA 19103-2921//United States
Ezra D. Church counsels and defends companies in privacy, cybersecurity, and other consumer protection matters. He helps clients manage data security and other crisis incidents and represents them in high-profile privacy and other class actions. Focused particularly on retail, ecommerce, and other consumer-facing firms, his practice is at the forefront of issues such as biometrics, artificial intelligence, location tracking, ad tech, and blockchain. Ezra is a Certified Information Privacy Professional (CIPP) and co-chair of the firm’s Class Action Working Group.
Ezra advises clients on compliance with data privacy and cybersecurity requirements such as the California Consumer Privacy Act (CCPA), the Gramm-Leach Bliley Act (GLBA), including Regulation S-P, Controlling the Assault of Non-Solicited Pornography and Marketing Act (CAN-SPAM Act) laws, the Telephone Consumer Protection Act (TCPA), the Fair Credit Reporting Act (FCRA), the Illinois Biometric Privacy Act (BIPA), the EU’s General Data Protection Regulation (GDPR), and state data breach notification laws. He has particular experience with children’s privacy issues and has worked extensively with on educational technology firms and mobile app and game developers in connection with the Children’s Online Privacy Protection Act (COPPA), the Family Educational Rights and Privacy Act (FERPA), and numerous state law regarding education privacy. Ezra has assisted hundreds of multinational companies with advice, planning and connections with GDPR and the Privacy Shield for data transfers to and from the United States to EU countries. He has advised on privacy and security issues related to cutting-edge technologies including facial recognition, voice recognition, iris and retinal scanning, artificial intelligent and machine learning, ad tech, location tracking and employee monitoring, and blockchain. He is a Certified Information Privacy Professional with the International Association of Privacy Professionals. He writes and speaks frequently on privacy and data security and has lectured on privacy law at Rutgers University Law School.
Ezra has worked with hundreds of companies facing data breaches, counseling them in the critical hours after an incident occurs, helping them understand and investigate the issues, and crafting an effective and appropriate notice program for affected individuals and government regulators. He also works with companies to anticipate and prepare for cybersecurity incidents before they occur, developing breach response plans to help prevent and mitigate future breaches. Ezra is a member of Morgan Lewis’s Crisis Management Practice, with a focus on the management of the crises involved in cybersecurity incidents.
Beyond his counseling practice, Ezra has experience handling complex and unusual class action litigation, including some of the largest privacy and data security class actions in the United States. This includes the defense of major national retailers facing data security litigation and the representation of consumer-facing companies facing large class actions filed under the TCPA and other privacy statutes. He has handled all aspects of such cases from inception through trial and appeal and has rare experience litigation class actions all the way through class trial. He is the co-leader of the Firm’s Class Action Working Group and regularly writes and speaks on class action issues. He is a contributor to the Firm’s chapter on class action litigation in the leading treatise Business and Commercial Litigation in Federal Courts and co-author of a chapter in A Practitioner’s Guide to Class Actions, among others.
Ezra has spent over 10 years advising and defending retailers and ecommerce companies, focused on helping them find practical ways to address the unique legal challenges they face. He has counseled and defended clients on matters related to privacy and data security, credit cards, gift cards, employee background checks, anti-money laundering, advertising and sales issues, vendor and supplier issues, return policies, marketing practices, loyalty programs, layaway, and unclaimed property.
selected representations
Privacy & Cybersecurity
- Served as US financial privacy expert in connection with the world’s largest asset manager’s acquisition of a US based robo-advisor, by assisting with privacy law due diligence, including Regulation S-P, and addressing post-acquisition privacy issues
- Advised app developer regarding privacy compliance for development of preloaded games portal for major mobile phone carrier
- Advised major financial services company on compliance with the recently adopted New York DFS Cybersecurity Requirements for Financial Services Companies, including revisions of contracts and security program
- Advised global technology company regarding privacy and data security issues related to facial recognition tools
- Advised Global and US Fortune 500 insurance company in connection with the creation of digital adviser platform, including privacy and data security issues regarding aggregation and services contracts
- Advised international retailer on data privacy compliance for the development of a private label tablet
- Advised global telecommunications company on employee privacy matters and helped develop compliance program, which also addressed biometric privacy and GPS tracking issues
- Represented educational technology firm in connection with FTC investigation concerning privacy and data security
- Counseled over fifty companies facing data breach incidents
- Served as privacy, cybersecurity, and consumer protection subject-matter expert for numerous mergers and acquisitions due diligence reviews
- Assisted companies with advice, planning, and applications of the Privacy Shield for data transfers from the EU to the United States and new EU General Data Protection Regulation, which included the review of clients' privacy programs, privacy policies, security policy, and contracts
Class Actions & Complex Litigation
- Won complete defense verdict and affirmance on appeal in a rare consumer class action trial for a major national retailer under California’s gift card redemption law in which the Plaintiff class sought damages of more than $30 million
- Led representation of major national retailer in nationwide class actions alleging negligence and other claims arising from a data security incident
- Won nationwide class action for Fortune 20 technology company alleging claims related to transfer of customer data in connection with ecommerce business
- Led successful opposition to class certification, including class discovery and briefing, in rare defendant class action alleging violations of bankruptcy law and involving many of the world’s largest financial services firms
- Obtained dismissal of nationwide class action against international food and facilities services business alleging violations of FCRA in connection with employee background checks
- Successfully settled California DAs’ investigation of a major retailer alleging pricing inaccuracy
- Won dismissal of restaurant chain in lawsuit under FACTA regarding the printing of personal information on receipts
- Dismissal of class actions in Pennsylvania and Maryland alleging product defects in construction materials
- Defeated class certification in nationwide class action alleging systemic copyright violations against international publishing and media company
- Representation of major pharmaceutical company in serial litigation by state AGs regarding alleged violations of state false claims laws
- Obtained dismissal of nationwide class action against ecommerce retailer alleging false advertising and violation of FTC advertising rules
- Defended international enterprise software company in breach of contract and fraud suit arising from sale and implementation of a revenue management solution
- Defended over fifty cases alleging claims related to improper telemarketing and text advertising under the TCPA
Unclaimed & Abandoned Property
- Representation of major retailers in unclaimed property/escheat audits and voluntary disclosure agreements
- Representation of five retailers in False Claims Act litigation brought by the State of Delaware related to the treatment and reporting of the unused balance on gift cards under state unclaimed property laws
- Advised major utility company regarding participation in audit of transfer agent American Stock Transfer or AST
- Representation of major bank in false claims act litigation asserting improper reporting of unclaimed property
- Counseled over a dozen clients regarding gift card programs with respect to escheat, including the set-up and maintenance of special purpose gift card issuers
- Successfully negotiated discharge of escheat obligations with the State of Delaware based on the Chapter 11 reorganization of an international manufacturer and retailer
- Counseled major hospital system on unclaimed property issues related to insurance credit balances, including reporting obligations and ongoing compliance
- Advised advertising firm on abandoned property management related to client account balances
Awards and Affiliations
Recommended, Media, technology and telecoms: Cyber law (including data privacy and data protection), The Legal 500 US (2018–2020)
Recommended, Industry focus: Energy litigation: conventional power, The Legal 500 US (2019)
Recommended, Dispute resolution: General commercial disputes, The Legal 500 US (2018)
40 & Under Hot List, Benchmark Litigation (2018–2020)
Member, International Association of Privacy Professionals (IAPP)
Certified Information Privacy Professional (CIPP/US)
Texas Law Review (2003–2005)
Recipient, Best Editor Award, Best Note Award, Texas Law Review (2005)
Admissions
Pennsylvania - New Jersey
- Louisiana
-
US Court of Appeals for the Second Circuit
-
US Court of Appeals for the Third Circuit
-
US Court of Appeals for the Fourth Circuit
-
US Court of Appeals for the Fifth Circuit
-
US District Court for the Eastern District of Pennsylvania
-
US District Court for the District of New Jersey
-
US District Court for the Eastern District of Wisconsin
-
US District Court for the Eastern District of Louisiana
-
US District Court for the Middle District of Louisiana
-
US District Court for the Western District of Louisiana
Education
- Northwestern University, 2002, B.A.
- University of Texas School of Law, 2005, J.D., cum laude
Services
Regions
Trending Topics
Events
3/2/2021 - Privacy and Data Security Issues in M&A Transactions – 2021
2/3/2021 - AI and Data Privacy
9/21/2020 - Philly Tech Week 2020
5/6/2020 - Successful Cyber Incident Response in 2020
2/18/2020 - Privacy and Data Security Issues in M&A Transactions
1/28/2020 - Morgan Lewis 2020 Class Action Roundtable
1/16/2020 - Unclaimed Property: What You Need to Know & Best Practices
12/11/2019 - Privacy Considerations and the Use of Collected Data
5/22/2019 - 2019 Technology May-rathon: The GDPR One Year On: Where Next?
5/14/2019 - 2019 Technology May-rathon: Monetizing Big Data
5/8/2019 - 2019 Technology May-rathon: Keys to Success in Cyber Incident Response in 2019
5/3/2019 - Philly Tech Week 2019
1/23/2019 - Morgan Lewis Hedge Fund University ™ Privacy & Cybersecurity for Fund Managers
11/6/2018 - Morgan Lewis 2018 Class Action Roundtable
5/22/2018 - 2018 Technology May-rathon: Privacy and Data Security Issues in M&A Transactions
3/20/2018 - 14th Annual Retail and Ecommerce Roundtables
2/27/2018 - Global Business Alliance of New England
11/10/2017 - Campbells Fund Focus 2017 Conference
11/9/2017 - 2017 Investment Adviser Perspectives: Digital Advice Roundtable
10/11/2017 - RILA’s Retail Law Conference 2017
9/13/2017 - Doing Business in Western Pennsylvania – Crisis Management and Privacy and Cybersecurity
3/29/2017 - The GDPR: What HR Needs to Know
11/3/2016 - 2016 Investment Adviser Perspectives: Digital Advice Roundtable
10/27/2016 - ANSI Legal Issues Forum 2016
9/21/2016 - 2016 Annual Private Fund Investors Roundtable
6/21/2016 - 2015–2016 Morgan Lewis M&A Academy
2/25/2016 - Key Developments in Outsourcing – Licensing Issues in the Cloud
11/20/2015 - The South Florida Group of Regional Counsel Seminar 2015
11/10/2015 - ABA’s Consumer Protection Update
10/30/2015 - 2015 New England Retail Forum
5/19/2015 - Association of Corporate Counsel Greater Philadelphia ITPEC Institute
4/21/2015 - 11th Annual Retail Roundtables
3/24/2015 - Preventing and Responding to a Data Security Breach in the Energy Industry
2/5/2015 - 2014 Shopping Review: Preventing and Responding to a Data Breach in the Retail Industry
5/8/2014 - Preventing and Responding to a Data Security Breach
5/1/2014 - Webinar for Texas Corporations: Preventing and Responding to a Data Security Breach
4/15/2014 - Preventing and Responding to a Data Security Breach in the Energy Industry
3/27/2014 - Preventing and Responding to a Data Security Breach in the Retail Industry
News
8/6/2020 - Five Morgan Lewis Partners Named to Benchmark Litigation’s 40 & Under Hot List for 2020
7/6/2020 - Justices Keep TCPA Litigation Machine Churning for Now, Law360
8/8/2019 - Four Morgan Lewis Partners Named to Benchmark Litigation’s ’40 & Under Hot List’
6/6/2019 - GDPR’s effects are felt far from Europe, International Financing Law Review
5/24/2019 - As GDPR Enters Second Year, Companies Still Searching for Answers, Law360
5/24/2019 - Companies Working Through GDPR ‘Kinks,’ Intellectual Property Magazine
7/5/2018 - Benchmark Litigation Names Five Morgan Lewis Partners on '40 & Under Hot List'
3/15/2018 - Morgan Lewis Advises Bullhorn in Acquisitions of Talent Rover and Jobscience
8/18/2017 - Morgan Lewis Partners Author Chapter in American Bar Association Class Action Guide
8/15/2017 - Spokeo Ruling Deals Blow To Cos. But May Have Silver Lining, Law360
7/12/2017 - 3rd Circ. TCPA Ruling Saps Spokeo Defenses in Class Actions, Law360
4/19/2017 - Aramark FACTA Suit Can’t Survive Under Spokeo, Judge Says, Law360
6/16/2016 - Morgan Lewis Elects 33 New Partners
3/23/2016 - Morgan Lewis Advises Bunker Hill Capital in Sale of Smith & Wollensky to Danu Partners
11/11/2015 - Morgan Lewis Advises Schoology in $32M Series D Financing
12/21/2012 - Judge Revokes Class in Photog’s IP Suit Against Pearson, Law360
9/29/2011 - Photo Copyright Suit Against Pearson Sent To Arbitration, Law360
6/7/2011 - Pearson Escapes Injunction In Photo Copyright Suit, Law360
Publications
2/24/2021 - AI and Privacy Are on a Collision Course
2/19/2021 - Ezra Church and the Impact of the CCPA
7/13/2020 - Unpacking the Supreme Court's Praise for the TCPA, Law360
7/10/2020 - Statewide CCPA Enforcement Post-Abbott Labs
7/7/2020 - Supreme Court Severs Government-Debt Exception From TCPA
6/25/2020 - COVID-19 Pandemic Will Not Delay July 1 CCPA Enforcement Date
6/4/2020 - CCPA: What Companies Need to Do Ahead of July 1 Enforcement
5/29/2020 - Successful Cyberincident Response in 2020
5/20/2020 - Considering Facial Recognition Technology as Businesses Reopen
5/20/2020 - Retail Reopens Guide
4/3/2020 - CARES Act Provides Important Relief for Retail & Hospitality Companies
2/26/2020 - Privacy and Data Security Issues in M&A Transactions
2019 - Keys to Success in Cyber Incident Response
2019 - Protecting Your Ecommerce Company with Enforceable Online Contracts and Class Action Waivers
6/4/2019 - The GDPR One Year On: Key Areas for International Businesses, The Global Data Review
4/30/2019 - US Supreme Court Holds No Class Arbitration Absent Express Consent: Four Things to Know
4/3/2019 - Proposed TRACED Act May Increase FCC Enforcement Power Over Robocalls
March 2019 - Three Questions to Help Reduce Your Cyber Risk Today, Wells Fargo Prime Services
2/12/2019 - Harm Is Not Required to Sue Under Illinois Biometric Privacy Statute
10/22/2018 - Another Restaurant Franchise Serves Up a Settlement After Data Breach
4/5/2018 - DC Circuit’s ACA v. FCC Decision: Implications for Calling and Texting
1/12/2018 - Applying BMS To Federal Class Actions: Due Process Matters, Law360
1/2/2018 - What Is ‘Unclaimed Property’ and Why Should Hospitals Care?
11/15/2017 - Voice-Activated Devices May Collect Audio from Children
10/25/2017 - European Commission Publishes First Annual Report on EU-US Privacy Shield
9/26/2017 - Hurricane Recovery Client Alert: Key Legal Issues for Impacted Retailers
9/1/2017 - Making Sense Of 9th Circ. Spokeo Decision On Remand, Law360
8/1/2017 - FTC and FBI Issue Compliance Reminder on Children’s Online Privacy Protection Act
5/16/2017 - Spokeo: On the One-Year Anniversary of the Pivotal Case, Insights for Retailers
5/15/2017 - The Meaning Of Spokeo, 365 Days And 430 Decisions Later, Law360
2/10/2017 - Gift Card Alert—Delaware Rewrites Its Unclaimed Property Law
12/7/2016 - Investigatory Powers Act Becomes UK Law
12/5/2016 - Spokeo 6 Months Later: An Undeniably Dramatic Impact, Law360
11/21/2016 - California Plastic Bag Ban Survives Ballot Referendum
11/11/2016 - CRTC Issues First Compliance and Enforcement Decision on Canada’s Anti-Spam Legislation
10/7/2016 - CFPB Releases Final Rule on Prepaid Cards
9/1/2015 - Delaware Enacts First Privacy Law with Focus on Children
1/22/2015 - Proposed Data Breach Legislation Announced
5/8/2014 - Preventing and Responding to a Data Security Breach
4/18/2014 - New Cybersecurity Framework Revealed
4/15/2014 - Preventing and Responding to a Data Security Breach in the Energy Industry
4/9/2014 - Comparative Price Advertising Guidance for Retailers, Morgan Lewis Retail Did You Know?
4/9/2014 - Panelist, Morgan Lewis Retail Roundtable
3/27/2014 - Preventing and Responding to a Data Security Breach in the Retail Industry
10/11/2013 - New California Law Protects Online Account Information
10/4/2013 - California Enacts New Laws on Data Privacy and Security Issues
12/22/2011 - New Gift Card Rules from FinCEN, Morgan Lewis Retail Did You Know?
7/21/2011 - California’s Transparency in Supply Chains Act Article, The National Law Review
3/1/2011 - The Restore Online Shoppers Confidence Act, Morgan Lewis Retail Did You Know?
12/15/2010 - A Warning About Comparative Price Advertising, Morgan Lewis Retail Did You Know?