Justin Donoho
Special Counsel
-
-
Phone: +1 312 499 0197
- Duane Morris LLP
190 South LaSalle Street, Suite 3700
Chicago, IL 60603-3433
USA
Justin Donoho, Special Counsel in Duane Morris’ Workplace Class Action Group, has defended companies faced with high-stakes, complex litigation matters for nearly fifteen years. Mr. Donoho regularly defends class actions alleging cybersecurity incidents, data privacy violations, and other issues involving thousands or millions of claims and seeking millions or billions of dollars. With a deep background in information technology, Mr. Donoho regularly helps his clients navigate IT-related issues. He has successfully litigated data privacy and cybersecurity issues under states’ wiretap acts, consumer fraud statutes, and common laws; the Illinois Biometric Information Privacy Act (BIPA); the Electronic Communications Privacy Act (ECPA); the California Consumer Privacy Act (CCPA); the EU’s General Data Protection Regulation (GDPR); and other laws.
Mr. Donoho leads case teams from complaint to resolution. He has first- and second-chaired trials and mediations. Clients often compliment Mr. Donoho’s legal strategies, courtroom performances, persuasive writings, settlement negotiations, handling of depositions, management of complex discovery, dedication, and responsiveness to their needs.
Mr. Donoho clerked for The Hon. William J. Bauer of the U.S. Court of Appeals for the Seventh Circuit (2009-2010). Mr. Donoho is a graduate of the University of Chicago Law School (J.D., 2009) and the University of Illinois at Urbana-Champaign (B.S., Computer Engineering, 1999).
Mr. Donoho is a Certified Information Systems Security Professional (CISSP). Before law school, Mr. Donoho served as a manager and consultant to large international organizations’ IT departments, where he improved IT service management organizations and processes, performed cybersecurity tests, performed IT audits, and built computer servers, networks, security information and event management (SIEM) systems, software release management systems, and other IT service management systems.
Admissions
- Illinois
- Trial Bar of the U.S. District Court for the Northern District of Illinois
- U.S. District Court for the Southern District of Illinois
- U.S. District Court for the Western District of Wisconsin
- U.S. Court of Appeals for the Seventh Circuit
- U.S. Court of Appeals for the Ninth Circuit
- U.S. Patent and Trademark Office (USPTO)
Areas of Practice
- Class Action Litigation
- Data Privacy and Cybersecurity Litigation
- Complex Commercial Litigation
- Employment, Labor, Benefits & Immigration
Education
- University of Chicago Law School, J.D., 2009
- University of Illinois at Urbana-Champaign, B.S., Computer Engineering, 1999
Highest honors
Experience
- Duane Morris LLP
- Special Counsel, 2024-present - Shook, Hardy & Bacon LLP (formerly Grippo & Elden, LLC), Chicago, IL
- Senior Counsel, 2021–2024;
- Associate, 2010–2017;
- Summer Associate, 2008 & 2009 - Baker & Hostetler LLP, Chicago, IL
- Associate, 2019–2021 - Stein Ray LLP, Chicago, IL
- Associate, 2017–2019
Selected Publications
- Co-author, “Tennessee Federal Court Rejects Certification Of Breach Of Contract Class Action,” Class Action Defense Blog, Duane Morris LLP, February 17, 2025
- Co-author, “Illinois Supreme Court Affirms Dismissal Of Data Breach Class Action For Lack Of Standing,” Class Action Defense Blog, Duane Morris LLP, January 31, 2025
- Contributor, Duane Morris Class Action Review 2025, January 7, 2025
- Co-author, “Ninth Circuit Dismisses Adtech Class Action For Lack Of Standing,” Class Action Defense Blog, Duane Morris LLP, December 18, 2024
- Co-author, “The FTC Issues Three New Orders Showing Its Increased 2024 Enforcement Activities Regarding AI And Adtech,” Class Action Defense Blog, Duane Morris LLP, December 4, 2024
- Author, "Survival Guide for Executives and Board Members: 4 Steps to Safeguard Against Individual Liability for Data Security Failures," The Legal Intelligencer, November 19, 2024
- Author, "Three Best Practices to Mitigate High-Stakes AI Litigation Risk," Journal of Robotics, Artificial Intelligence & Law, Volume 7, No. 6, November/December 2024
- Co-author, “Supreme Judicial Court of Massachusetts Orders Dismissal Of Wiretap Claim In Adtech Class Action,” Class Action Defense Blog, Duane Morris LLP, October 24, 2024
- Co-author, “Second Circuit Holds That The VPPA Applies to Subscribers of Non-Audiovisual Content,” Class Action Defense Blog, Duane Morris LLP, October 17, 2024
- Co-author, “Florida Federal Court Refuses To Certify Adtech Class Action,” Class Action Defense Blog, Duane Morris LLP, October 6, 2024
- Co-author, “Georgia Federal Court Dismisses Data Privacy Class Action Against Healthcare Company For Failure To Sufficiently Allege Any Invasion Of Privacy, Damages, Or Wiretap Violation,” Class Action Defense Blog, Duane Morris LLP, August 29, 2024
- Co-author, “California Federal Court Refuses To Dismiss Wiretapping Class Action Involving Company’s Use Of Third-Party AI Software,” Class Action Defense Blog, Duane Morris LLP, July 8, 2024
- Co-author, “California Federal Court Rejects AI Class Action Plaintiffs’ Cherry-Picking Of AI Algorithm Test Results And Orders Production Of All Results And Account Settings,” Class Action Defense Blog, Duane Morris LLP, June 28, 2024
- Co-author, “Illinois Federal Court Rejects Class Action Because An AI-Powered Porn Filter Does Not Violate The BIPA,” Class Action Defense Blog, Duane Morris LLP, June 20, 2024
- Co-author, “District Court Dismisses Data Privacy Class Action Against Health Care System For Failure To Sufficiently Allege Disclosure of PHI,” Class Action Defense Blog, Duane Morris LLP, June 19, 2024
- Author, “Four Best Practices For Deterring Cybersecurity And Data Privacy Class Actions And Mass Arbitrations,” Class Action Defense Blog, Duane Morris LLP, June 4, 2024
- Co-author, “Privacy Litigation in the Age of Coronavirus,” JD Supra, May 11, 2020
- Co-author, “COVID-19 and U.S. Statutes of Limitation,” JD Supra, March 25, 2020
- Co-author, “Recent Developments Affecting Additional-Insured Coverage Portfolios,” ABA Insurance Coverage Litigation Committee CLE Seminar, 2016
- Author, “Achieving Supreme Court Consensus: An Evolved Approach to State Sovereign Immunity,” Nebraska Law Review, v. 88, 2010
- Author, “Insufficient Hedge-Fund Fraud Complaints and Misguided Motions to Dismiss,” The Tennessee Journal of Business Law, v. 11, 2009
- Author, “Minimalist Interpretation of the Jurisdictional Immunities Convention,” Chicago Journal of International Law, v. 9, no. 2, 2009
Selected Speaking Engagements
- Co-presenter, “Artificial Intelligence: A State-by-State Guide to Litigation Trends, Regulatory Updates, and Best Practices,” Federal Bar Association and myLawCLE, November 14, 2024
- Co-presenter, “Privacy and Data Security Litigation Update” and “Individual Liability for Data Security Failures,” The Sedona Conference Working Group 11 Midyear Meeting, October 29-30, 2024
- Presenter, “Artificial Intelligence Survival Guide: Best Practices to Mitigate High-Stakes AI Litigation Risk,” Duane Morris Institute, October 15, 2024
- Co-presenter, “Digital Frontier Survival Guide For Corporate Counsel: Cybersecurity And Data Privacy Best Practices,” The Class Action Weekly Wire, Duane Morris LLP, June 10, 2024
- Co-presenter, “AI Survival Guide: Best Practices to Mitigate AI Litigation Risk,” Thomson Reuters, August 1, 2024
- Co-presenter, “Diversity, Equity and Inclusion: Avoiding Litigation Risk and Complying with Ethical Obligations,” Webinar, Association of Corporate Counsel CLE, August 9, 2023; Shook, Hardy & Bacon LLP Chicago Ethics CLE Conference, Chicago, May 18, 2023
- Presenter, "Arbitral Document Discovery Protocols, Subpoenas, and Dispositive Motions Under the AAA Construction Rules," Stein Ray LLP, Chicago June 25, 2019
- Co-presenter, "Key Considerations in Collecting Documents," Grippo & Elden LLC, Chicago, October 29, 2014
- Co-presenter, "Current Issues in Class Action Litigation," Grippo & Elden LLC, Chicago, September 4, 2013
- Co-presenter, "Understanding Corporate IT Systems: A Prerequisite to Successful Electronic Discovery," Grippo & Elden LLC, Chicago, July 27, 2011
Representative Matters
Baker et al. v. ParkMobile, LLC, No. 21-cv-02182 (N.D. Ga.) (defense of class action involving alleged cybertheft of tens of millions of email addresses, hashed passwords, license plate numbers, and other information)
Bell et al. v. Marriott International, Inc. et al., No. 19-md-02879 (D. Md.) (defense of class action involving alleged cybertheft of hundreds of millions of customer records, including credit card and passport numbers)
Brahm v. Hospital Sisters Health System et al., No. 2023CV000217 (Wis. Cir. Ct., Eau Claire Cty.) (defense of class action alleging that website advertising technology violated federal wiretap act and common laws)
Daichendt et al. v. CVS Pharmacy, Inc., No. 22-cv-03318 (N.D. Ill.) (defense of class action alleging BIPA violations relative to passport photo system)
Doe v. Emerson Hospital, No. 2277CV01000 (Mass. Super. Ct., Essex Cty) (defense of class action alleging that website advertising technology violated Massachusetts wiretap act and common laws)
Hughes et al. v. Community Health Network, No. 49D01-2211-PL-041242 (Ind. Super. Ct., Marion Cty.) (defense of class action alleging that website advertising technology violated Indiana wiretap act, Indiana consumer fraud statute, and common laws)
Peterson v. Learfield Communications, LLC et al., No. 23-cv-00146 (N.D. Ill.) (defense of class action alleging that website advertising technology violated Video Privacy Protection Act)
Quentere v. Tablecraft Products Company, Inc., No. 2020-CH-00000493 (Ill. Cir. Ct., Lake Cty.) (defense of class action alleging BIPA violations relative to staffing company’s use of finger scanning technology)
Rose et al. v. Sansum Clinic, No. 23-cv-08180 (C.D. Cal.) (defense of class action alleging that website advertising technology violated California Invasion of Privacy Act and common laws)
T.D. v. Piedmont Healthcare, Inc., No. 23-cv-05416 (N.D. Ga.) (defense of class action alleging that website advertising technology violated federal wiretap act and common laws)