Savvas Daginis
Associate – Business Law
Contact SavvasSavvas Daginis is a cross-border business, privacy, and technology lawyer licensed in Ontario, Illinois, and Washington, DC. He focuses on drafting and negotiating complex commercial and technology agreements, assisting businesses incorporate and organize themselves on both sides of the Canadian / US border, and advising clients on compliance services with respect to privacy, data exportation, artificial intelligence, cybersecurity, and business laws.
Savvas also offers reactive privacy and data breach response services to provide businesses with real-time support during incident response and remediation.
Certified Information Privacy Professional/Canada (CIPP/C), Certified Information Privacy Professional/United States (CIPP/US).
Education
American University, Washington College of Law – J.D.
University of Ottawa – J.D.
Wilfrid Laurier University – B.A.
About
Savvas Daginis is a cross-border business, privacy and technology lawyer licensed in Ontario, Illinois, and Washington, DC. He understands that in today’s digital-first world, every business is a tech business, and provides clients with practical and effective solutions to minimize legal risks and support their business objectives.
In his business practice, he advises clients on a wide range of general corporate and franchise matters, such as incorporation, business restructuring, and expansion into Canada or the U.S.
In his privacy practice, Savvas helps clients navigate Canadian and U.S. data privacy laws including PIPEDA, PHIPA, CCPA, COPPA, BIPA, HIPAA, and others. He assists clients in optimizing data processing practices and developing privacy-by-design principles. Additionally, he helps clients (a) plan their data lifecycle within their organization, (b) develop consent and data flow charts, (c) create the policies and procedures related to the privacy impact assessment (PIA) process and draft the PIAs when required, and (d) draft and maintain their data processing agreements. Savvas also provides transactional support for significant data acquisitions, including those within M&A deals. Savvas also advises clients on advertising, anti-spam, and marketing laws, including CASL, CAN-SPAM, the Competition Act (Canada), and the FTC Act.
In technology transactions, he negotiates complex technology agreements involving software licensing and development, cloud computing, outsourcing, e-commerce, data protection and privacy, cybersecurity, and artificial intelligence. Savvas also guides businesses through cybersecurity controls, related standards, and best practices, including the certification process of Canada’s national cybersecurity program—CyberSecure Canada—and those created by the U.S. National Institute of Standards and Technology (NIST). Savvas also helps clients and their sales teams develop playbooks for their services agreements to assist them in the negotiation process with their own clients and vendors.
Savvas also provides reactive privacy and data breach response services, helping businesses respond quickly and mitigate damage and maintain regulatory compliance. Savvas offers real-time support during incident response and remediation, ensuring that his clients navigate the aftermath of a security incident with confidence.
In his spare time, Savvas enjoys reading the news every morning with his coffee, playing rapid chess, and going to the gym.
Memberships and Associations
- International Association of Privacy Professionals (IAPP), Professional Member
- Middlesex Law Association, Member
- Illinois State Bar Association, Member
Awards and Recognition
In Autumn 2022, Savvas was named to the Mondaq Thought Leadership Awards in Data Protection for his authorship of the blog post "How does Wordle save my stats?"
In Autumn 2021, Savvas was named to the Mondaq Thought Leadership Awards in Intellectual Property for his co-authorship of the blog post "Lawyers Can Go Way Back With The Wayback Machine"
Blog Posts By Savvas Daginis
- Privacy pulse: Ticketmaster investigation, Google is a monopoly and Texas lawsuits against Google and General Motors
- Privacy pulse: CrowdStrike’s costly software update, PC Optimum investigation, and Google’s database leak
- Privacy pulse: Enforcement against Adobe, Microsoft controversies and OPC 23andMe joint investigation
- Privacy pulse: New Ontario OIPC guidance, privilege in data breach investigations and further developments in state privacy law
- Privacy pulse: AI arms race, TikTok restrictions, and U.S. legislative developments
- Privacy pulse: A series on data governance
- Understanding privacy impact assessments (PIAs) and their importance for your business
- Understanding data protection agreements: Key concepts and benefits
- Should my business have a ChatGPT policy?
- My business suffered a ransomware attack. Should I pay?
- Can I just change my website’s Terms of Use?
- Are we there yet? Solidifying the U.S. – E.U. privacy landscape with President Biden’s new Executive Order
- Reminder to employers: electronic monitoring policies must be in place by October 11, 2022
- Can we terminate our contracts with a sanctioned country?
- How does Wordle save my stats?
- What is on-premises software and how is it different from cloud computing?
- TL;DR – Who reads the Terms of Use?
- Could Siri be an inventor?
- Privacy laws in Canada: to infinite fees and beyond
- Can a business charge a customer to access their personal information?