Tanenholz & Associates Privacy Policy

Tanenholz & Associates, PLLC is dedicated to protecting the privacy of individuals using the Internet. We reserve the right to collect information on the pages accessed on this site.  To the extent that we choose to do so, the information will be aggregated to measure number of visits, average time spent on the site, pages viewed, etc.  We will use such information to improve the content of the site.  If we choose to collect information (via on-line forms) it is for the purpose of attracting and communicating with clients and interested parties. We do not currently use cookies on this site.  Information collected from our site is not shared with other organizations.

  1. Overview

Tanenholz & Associates, PLLC (“Tanenholz”), a District of Columbia registered professional limited liability company, is committed to protecting your privacy. Our policy is published on our website (https://www.tanenholzlaw.com) to explain our privacy practices and how your information is safeguarded. Tanenholz provides electronic discovery and managed review services to law firms and corporate clients that are parties to litigation, investigation and regulatory proceedings. All Personal Data Tanenholz collects, uses and transfers to the US is subject to strict privacy, confidentiality and security protocols.

2. Scope

This Privacy Shield Policy outlines Tanenholz’s collection and use of Personal Data for those who use Tanenholz’s website or those whose information is collected via transfer from the European Union and the United Kingdom to the United States for business or human resources use.

3. EU-US Privacy Shield

Tanenholz complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and United Kingdom to the United States.  Tanenholz has certified to the Department of Commerce that it adheres to the Privacy Shield Principles.  If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern.  To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/.

4. Notice

Tanenholz notifies data subjects covered by this Privacy Policy about our privacy practices:

  • The types of data collected
  • The purpose for which we collect and use Personal Data
  • The types of third parties to which we disclose Personal Data and the purposes for disclosure
  • The rights of Data Subjects to their data
  • The choices and means we offer for limiting our use and disclosure of Personal Data
  • How we enforce our obligations under the Privacy Shield
  • How users can contact us with any inquiries or complaints

Types of Data Collected and the Purposes of Collection

eDiscovery and Digital Evidence – Tanenholz may collect or receive user data from its clients that could include data subject names, personal and business physical addresses, personal and business e-mail addresses, personal and business telephone numbers, identification numbers, and physical, physiological, mental, economic, political, religious, cultural and social identity data. This data is collected for the purpose of legal Data Processing at the direction of Tanenholz’s clients and in accordance with contractual agreements to provide services to our clients and/or clients’ counsel.

Personal Data Protection, Rights and Choices

Tanenholz implements strict security measures to protect Personal Data from unauthorized access. All data received, collected, processed, hosted and produced is protected with physical and electronic safeguards including firewalls and encryption in transit and at rest. Tanenholz employees are trained in the proper handling of secure information and are aware of their responsibilities to protect Personal Data. To the extent necessary for such purposes, Tanenholz takes reasonable steps to make sure that personal information is accurate, complete, updated, and otherwise reliable with regard to its intended use. Where Tanenholz receives Personal Data from clients, affiliates or other Controller entities in the EU or UK, it will use and disclose such information in accordance with the notices provided by such entities and the choices made by the individuals to whom such personal information relates. Tanenholz processes Personal Data only in accordance with the purposes for which it was received, collected or subsequently authorized by the individual. If any changes to this privacy policy occur, we will provide individuals with the choice to opt-out or to opt-in if sensitive data is involved.

Disclosure and Onward Transfers

  • Tanenholz processes Personal Data only in accordance with the purposes for which it was received, collected or subsequently authorized by the individual.
  • Tanenholz does not disclose, sell trade, rent or otherwise share for marketing purposes Personal Data with third parties without your consent.
  • We will provide an individual opt-out choice, or opt-in for sensitive data, before we share your data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To request to limit the use and disclosure of your personal information, please submit a written request to info@tanenholzlaw.com.
  • Tanenholz may disclose Personal Data as required by court order, law, regulation or the rules of practice of a governmental or regulatory body.
  • Tanenholz’s accountability for personal data that it receives in the United States under the Privacy Shield and subsequently transfers to a third party is described in the Privacy Shield Principles. In particular, Tanenholz remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process personal data on its behalf do so in a manner inconsistent with the Principles, unless Tanenholz proves that it is not responsible for the event giving rise to the damage.
  • In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.


The Federal Trade Commission has jurisdiction over Tanenholz’s compliance with this Policy, the EU-US Privacy Shield Framework.

Access, Escalation and Independent Recourse Mechanism for Privacy Shield Complaints

Pursuant to the Privacy Shield Frameworks, EU and United Kingdom individuals have the right to obtain our confirmation of whether we maintain personal information relating to you in the United States. Upon request, we will provide you with access to the personal information that we hold about you. You may also correct, amend, or delete the personal information we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States under Privacy Shield, should direct their query to info@tanenholzlaw.com. If requested to remove data, we will respond within a reasonable timeframe.

In compliance with the Privacy Shield Principles, Tanenholz commits to resolve complaints about our collection or use of your personal information. European Union and UK individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Tanenholz at:


or via mail to:

Attn: Privacy Officer

1100 H St NW

Suite 440

Washington, DC 20005


Tanenholz has further committed to refer unresolved Privacy Shield complaints to the BBB EU PRIVACY SHIELD, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please visit http://www.bbb.org/EU-privacy-shield/for-eu-consumers for more information or to file a complaint.  The services of the BBB EU PRIVACY SHIELD are provided at no cost to you.

If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms.  See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction


Tanenholz may amend this policy by posting a revised Policy on this site located at https://www.tanenholzlaw.com.

This policy was updated August 1, 2019.


Data Processing – any operation or set of operations which is performed upon Personal Data, whether or not by automated means, such as collection, recording, organization, storage, adaptation, or alteration, retrieval, consultation, use, disclosure or dissemination, and erasure or destruction.

Personal Data – information relating to an individual that identifies that individual, or could reasonably be used to identify the individual, regardless of the medium involved (e.g., paper, electronic, video, or audio.)

Sensitive Information – information relating to an individual’s personal information specifying medical or health conditions, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership or information specifying the sex life of the individual.