Peter Sloan

As a lawyer with over two decades of Information Governance experience, Peter advises clients on how to compliantly retain, secure, preserve, and dispose of information. He helps companies throughout the United States create, validate, and update retention schedules; implement compliant information management policies and processes; and defensibly dispose of information. Peter also counsels clients on data security compliance and breach response readiness, and he works with clients to manage data breach response.

Peter has served clients across a broad range of industries, including:

• Financial Services (national and state-chartered banks, investment companies, investment advisers, broker-dealers, tax preparation companies, insurance companies, and government-sponsored enterprises)
• Health Care (health systems and hospitals, physician practices, pharmacy and pharmacy benefit management companies, pharmaceutical and biotechnology firms, and medical equipment manufacturers)
• Energy (power and gas utilities, power transmission companies, oil and gas pipeline companies, and exploration and production companies)
• Engineering and Construction
• Legal
• Manufacturing
• Retail
• Technology
• Transportation

Peter was an early advocate and thought leader for what is now known as Information Governance. As a trial lawyer during his first 15 years of law practice, he saw first-hand the crucial role of business records and data in litigation. In 2000 Peter shifted his practice to focus exclusively on information retention and risk management. He spent the next decade working with clients on what seems obvious today, how records retention, litigation preservation, and data security are not isolated efforts, but instead are interrelated parts of a single strategic imperative – governing information compliance, cost, and risk while maximizing information value.

By 2010, Peter was publishing and presenting at national conferences on Information Governance concepts and practices.   He founded his prior firm’s Information Governance practice group, and he later served as a core contributor to The Sedona Conference Commentary on Information Governance (2013) and authored The Compliance Case for Information Governance, Richmond Journal of Law & Technology (2014).

Peter blogs on data management issues, and he has presented on Information Governance topics at national conferences and seminars for ARMA International; The Sedona Conference; The Society of Corporate Compliance and Ethics (SCCE); the National Association of Insurance Commissioners (NAIC); the Compliance, Governance, and Oversight Council (CGOC); the Managing Electronic Records Conference (MER); the Information Systems Security Association (ISSA); and the Society of Corporate Secretaries and Governance Professionals (SCSGP).

Education

• J.D., University of Kansas School of Law, 1985, Order of the Coif

• B.S., University of Kansas, 1982

Admissions

• Missouri, 1985

Professional Associations

• ARMA International
• Kansas City Metropolitan Bar Association
• The Missouri Bar
• The Sedona Conference, WG 1 & 11

Presentations & Publications

• Author, Information Bytes blog, 2016-present
• Speaker, "Less Data is More Than Ever," ARMA International, St. Louis MO Chapter, September 2022
• Expert Witness, trial testimony on PII breach notification statutory duties, Hiscox Insurance Company Inc. and Hiscox Syndicates, Ltd. v. Warden Grier, LLP, U.S. District Court, W.D. MO, March 2022
• Speaker, “Lawyer Ethics and Data Security Dodgeball,” KCMBA CLE, Kansas City, MO, June 2019
• Speaker, “6 Steps to Better Law Firm Data Security,” KCMBA Bench-Bar & Boardroom Conference, Branson, MO, May 2018
• Speaker, “Managing Data Retention – Key to Data Security,” Cyber Awareness 360°: Data Security, Disposal, and Incident Response, May 2018
• Speaker, “Lawyer Ethics & Data Security in a Dangerous Information World,” Hot Topics in Law and Practice, Kansas City, MO, June 2017
• Speaker, “Ethical Responsibility in Cybersecurity,” 30th Annual House Counsel Institute, Kansas City, MO, June 2017
• Speaker, “The Legal Side of Cybersecurity,” Missouri Governor’s Cybersecurity Summit, Jefferson City, MO, August 2016
• Speaker, “Cybersecurity: What Every Private Company Needs to Know,” Society of Corporate Secretaries and Governance Professionals 2016 National Conference, Colorado Springs, CO, June 2016
• Speaker, “Data Breach Readiness: One Down, Nine to Go,” ISACA Chapter Meeting, January 2016
• Co-author, “Once More Unto the Breach: Why and How to be Ready for a Data Breach,” ACC Docket, September 2015
• Speaker, “Minimizing Data Breach Exposure Through Information Governance,” RecordLion Seminar, St. Louis, MO, February 2015
• Author, “The Reasonable Information Security Program,” Richmond Journal of Law & Technology, November 2014
• Speaker, “Legal Ethics and the Reasonable Data Security Program,” NAIC 2014 Fall National Meeting, Washington, D.C., November 2014
• Author, “The Information Governance Approach to Privacy and Data Security Compliance,” Inside the Minds: Privacy and Surveillance Legal Issues, Aspatore Publishing, 2014
• Speaker, “Staying Lean, Mean & Clean: Strategies for Disposing of Old Data,” SoCal eDiscovery & Information Governance, Laguna Beach, CA, July 2014
• Panelist, “Defining Information Governance and Identifying Its Stakeholders,” “Big Data: Maximizing Value and Minimizing Risk,” and “Information Governance and Government,” The Executive Conference on Information Governance, Amelia Island, FL, April 2014
• Author, “The Compliance Case for Information Governance,” Richmond Journal of Law & Technology, February 2014
• Speaker, “Information Governance: Seeing the Elephant,” Richmond JOLT Symposium on Information Governance, Richmond, VA, February 2014
• Co-author, The Sedona Conference Commentary on Information Governance, The Sedona Conference, December 2013
• Co-author, “Combating Security Breaches at Hotels,” Hotel News Now, July 2013
• Speaker, “Information Governance Matters: Real World Lessons,” Society of Corporate Compliance and Ethics utilities and energy compliance conference, Houston, TX, February 2013
• Author, “Senior Living Providers: Too Much Information,” Colorado Real Estate Journal, November 2012
• Speaker, “Using Privacy Compliance to Elevate Your RIM Program” and “Beyond Collecting Dust: Implementing Your Records Retention Schedule,” ARMA International Conference, Washington, D.C., October 2011
• Speaker, “Building Better Bridges & Achieving Enterprise Excellence in Discovery, Retention and Disposition,” CGOC (Compliance, Governance and Oversight Council) Summit 2011, San Francisco, CA, January 2011
• Speaker, “The Legal Hold Imperative – A Key to Defensible Destruction,” Perceptive Software webinar, October 2010
• Speaker, “The New Paradigm for Cost-Justifying Electronic Records Management – Privacy & Information Security Compliance,” Managing Electronic Records (MER) Conference, Chicago, IL, May 2010
• Author, “Email Retention,” white paper, May 2010
• Author, “The Information Governance ‘C’ Change,” white paper, May 2010
• Author, “Retention, Preservation – What’s the Difference?” white paper, May 2010
• Speaker, “Be Prepared for Your Rule 30(b)(6) Deposition,” ARMA International Conference, Las Vegas, NV, October 2008
• Co-author, The Sedona Conference Commentary on Preservation, Management and Identification of Sources of Information that are Not Reasonably Accessible, The Sedona Conference, July 2008
• Panelist, “Disclosures & Preservation of Not Reasonably Accessible ESI,” Sedona Conference midyear meeting, New Orleans, LA, May 2008
• Speaker, “The Federal Rules Amendments and Preservation of Data,” Kansas City Metropolitan Bar Association e-Discovery Conference, Kansas City, MO, September 2006
• Testimony before the Civil Rules Advisory Committee on proposed amendments to Federal Rules of Civil Procedure regarding electronic evidence discovery, Dallas, TX, January 2005
• Speaker, “The Impact of Recent e-Discovery Reports: The Sedona Principles v. ABA Civil Discovery Standards,” Kroll Ontrack conference, New York, NY, June 2004
• Speaker, “Records Management in the Electronic Age,” Greater Houston Business Ethics Roundtable, Houston, TX, March 2004
• Panelist, “In the Wake of Zubulake: New Judicial Approaches and Their Implications for Litigants and Their Lawyers” and “Audits & Preservation: How to Manage Electronic Data, Control Costs & Avoid Spoliation,” Glasser LegalWorks Seventh Annual Electronic Discovery and Records Retention conference, Chicago, IL, November 2003
• Speaker, “You’ve Got Mail … Forever,” Association of Legal Administrators 32^nd Annual Conference, San Diego, CA, April 2003
• Author, “Email Management: Big Problems and Best Practices,” Digital Discovery & e-Evidence, March 2003
• Speaker, “Records Management and Risk Control,” Glasser LegalWorks Sixth Annual Electronic Discovery and Records Management Conference, San Francisco, CA, December 2002