Gicel Tomimbang is an associate in the Data Privacy, Cybersecurity & Digital Assets Practice. A former deputy attorney general and Office for Civil Rights investigator, she advises domestic and international companies on data privacy and protection, healthcare privacy and digital health, cybersecurity readiness and incident response and consumer protection law.
Gicel uses her public sector experience to advise clients on a range of privacy, transactional and regulatory and compliance issues under state and federal laws, with a particular focus in the healthcare and digital health sectors. She also helps clients meet their obligations during a data breach, developing and executing legal strategy and guiding companies across industries through all aspects of incident response and investigation, including negotiating agreements with third-party vendors, interfacing with insurance providers and auditors, submitting notifications and engaging with regulators and law enforcement.
Gicel served as a deputy attorney general for the California Department of Justice – Office of the Attorney General, where she specialized in conducting health data privacy and cybersecurity-focused government investigations, as well as enforcement pursuant to federal and state health privacy laws and consumer protection laws prohibiting unfair and deceptive acts and practices. She also provided legal and policy advice to the attorney general and state agencies. Gicel also served as an investigator for the US Department of Health and Human Services, Office for Civil Rights, where she investigated companies’ compliance with the HIPAA Privacy, Security and Breach Notification rules and civil rights laws.
Gicel is a Certified Information Privacy Professional (CIPP/US and CIPP/E), a Certified Information Privacy Manager (CIPM) and an IAPP Fellow of Information Privacy (FIP). She invests in her community through her active leadership in and contributions to professional and community organizations, including the Los Angeles County Bar Association, the International Association of Privacy Professionals, the California Lawyers Association, Junior League Los Angeles and various mentorship programs.