Liz Harding

Shareholder, Tech Transactions & Data Privacy


Liz is a dual-qualified attorney in Colorado and the United Kingdom who counsels clients on data privacy, advertising and technology licensing matters. Prior to practicing in the U.S., she practiced law in the U.K. for over 10 years counseling clients on EU privacy and technology matters.

Liz has significant experience counseling clients on how to comply with their EU privacy obligations, with a particular focus on how to prepare for, respond to, and implement regulatory changes arising out of the General Data Protection Regulation (GDPR). With the advent of new U.S. State privacy laws such as the California Consumer Privacy Act (CCPA), Liz also assists clients with the development and implementation of enterprise wide compliance programs which address State, national and international privacy obligations. In her advertising practice, Liz advises clients within the cable television and entertainment industries on transactional and operational matters, with a particular focus on media sales and ad tech. Liz also drafts and negotiates agreements related to software and hardware development, licensing and support. Liz’s experience extends across multiple industries, including:

  • Advertising and media
  • Cable and telecommunications
  • Entertainment
  • Financial services
  • Health care
  • Hotels and hospitality
  • Retail

Areas of Focus

  • Privacy and Cybersecurity
  • Licensing
  • Technology
  • Health Care Technology & Innovation
  • Trademark and Copyright
  • Health Care Services
  • Technology Transactions
  • International
  • Health Care Industry
  • Advertising Technology
  • Education Technology


  • Legal Practice Course, Bournemouth University, 1996
  • B.A., with Honors, UWE Bristol, 1994

Bar Jurisdictions

  • Colorado
  • England and Wales


  • American Bar Association, Member
  • Law Society of England and Wales (admitted to practice 2000), Member
  • Colorado Bar Association Member


Modifications to CCPA Proposed Regulations Released by California Attorney General
February 19, 2020

How California’s Data Privacy Law Will Change Your Online Experience — No Matter Where You Live
Quoted, The Colorado Sun
October 29, 2019

Five Key Takeaways from the Long-Awaited CCPA Regulations
October 2019

CCPA is Coming
September 30, 2019

INSIGHT: AI in Health Care—A Look at Critical Data Regulations
Co-Author, Bloomberg Law
August 23, 2019

New Developments in EU for Cookies and Online Tracking
August 8, 2019

Patient Record Snooping Incident Leads to GDPR Fine
Quoted, Data Breach Today
July 18, 2019

Patient Record Snooping Incident Leads to GDPR Fine
Quoted, Healthcare Info Security
July 18, 2019

Nevada Consumers Can Now Opt-Out of a Sale of Personal Information
June 2019

AI in Health Care: Critical Data Regulations
May 30, 2019

California Assembly’s Privacy Committee Advances CCPA Employee Carve-Out
April 26, 2019

Understanding the Scope and Impact of the California Consumer Privacy Act of 2018
Co-Author, Journal of Data Protection & Privacy, Vol. 2, Issue 3, Pg. 234
March, 2019

Is GDPR Compliance Tougher Than HIPAA Compliance?
Quoted, Heatlhcare Info Security
January 9, 2018

New Guidelines on GDPR’s Territorial Scope
November 2018

When Will GDPR Show Its Teeth?
Quoted, Data Breach Today
September 21, 2018

GDPR Compliance: Common Misconceptions
Quoted, Bank Info Security
September 19, 2018