Rachel Ehlers

Special Counsel

[email protected]


P: +1.512.322.2580
F: +1.512.322.3680
Rachel Ehlers

Rachel Ehlers is an attorney based in the firm's Austin office. As a former in-house counsel with multi-national experience, her practice focuses on technology transactions, data privacy and cybersecurity. She has extensive experience advising clients on data incidents and breach response, cross-border transfers, and data privacy and cybersecurity issues related to mergers and acquisitions.

Rachel also represents clients in the development of data privacy and security programs for compliance with the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), the EU General Data Protection Regulation (GDPR), the Health Insurance Portability and Accountability Act of 1996 (HIPAA), as well as sector-specific regulations.

In addition to privacy and cybersecurity work, Rachel works with clients to build regulatory compliance programs around anti-corruption, trade and export controls, third-party due diligence, and antitrust. She routinely conducts high-level investigations and training in these areas and has extensive experience advising companies on government and workplace investigations involving bribery, financial impropriety and fraud, and conflicts of interest.

Throughout her early career, Rachel served in multiple in-house legal and compliance roles, including Chief Compliance Officer and Chief Privacy Officer. She has lived and worked overseas throughout Europe, Asia, and South America and has provided guidance and training to multi-national companies globally. She also served as a foreign service officer with the U.S. Department of State, where she did tours in China and Venezuela.

Rachel is recognized by the International Association of Privacy Professionals as a Privacy Law Specialist and a Certified Information Privacy Professional. She regularly speaks on the topic of data privacy as a panelist or featured speaker at conferences and forums. She speaks Spanish and Chinese.

Related Experience

  • Represented clients and led data security and incident response in hundreds of incidents, with companies ranging from Fortune 100 companies to start-ups.
  • Developed HIPAA compliance programs for multiple Covered Entities and Business Associates.
  • Developed and helped clients manage global privacy and security programs to meet a variety of legal requirements.
  • Conducted table-top exercises and training related to global privacy and security scenarios.
  • Advised on data subject and consumer data requests, helping build customized solutions to address data rights
  • Counseled Boards and senior leadership on strategic business risks within cyber, privacy, and technology infrastructure.


results Page of

Thought Leadership

results Page of



results Page of


results Page of