Haylie D. Treas

Senior Counsel
Haylie Treas


Haylie Treas is an attorney in Holland & Knight's Houston office and a member of the firm's Data Strategy, Security & Privacy Team.

With a background in civil litigation and experience counseling clients in privacy and data security matters, Ms. Treas is able to bring a broad perspective in advising clients in a wide variety of matters, including data breach incident response, regulatory compliance, privacy and cookie policies and cookie management, security policies and procedures, mergers and acquisitions (M&A) due diligence, vendor management, technology transactions, and other technology and data support. Ms. Treas works alongside companies of all sizes on privacy and security matters spanning the areas of energy, construction, software development, healthcare and cybersecurity.

Prior to joining Holland & Knight, Ms. Treas was a tech and data attorney for an international law firm in its Houston office.

Representative Experience

  • Managed incident response for various types of data incidents, including engaging and overseeing forensic teams and ransom negotiators, advising on legal considerations, as well as preparing notices to individuals, regulators and others as needed
  • Developed and updated privacy programs for clients across numerous industries (including FinTech, staff augmentation and direct-to-consumer products) in relation to U.S. state privacy laws and other foreign privacy regimes, including in relation to privacy policies, cookie policies, website terms of use, data retention and data classification
  • Managed comprehensive data protection agreement projects for clients in relation to vendors that maintain, or have access to, personal information or proprietary/confidential company information
  • Advised clients on cybersecurity best practices and information security programs, including policies and procedures covering security (technical, physical and administrative safeguards), service providers, training and data retention, backups, and access and use limitations
  • Regularly advised clients in relation to data collection practices through the use of cookies and similar technologies and in relation to the requirements under U.S. and foreign laws
  • Managed numerous diligence projects in merger and acquisitions (M&A) deals relating to data security and privacy, compliance and information technology (IT)
  • Negotiated and drafted comprehensive cybersecurity agreement in the area of wind energy between the owner and service provider that were jointly handling cybersecurity

  • Defended a client in a multimillion-dollar lawsuit relating to claims involving a product's lack of security and product liability
  • Defended a client in response to a state attorney general civil investigative demand relating to privacy and use of online tracking tools
  • Represented a client in litigation related to a data incident
  • Represented a client in multiple lawsuits involving Fair Credit Reporting Act (FCRA) claims


  • University of Oklahoma College of Law, J.D.
  • Louisiana College, B.A., magna cum laude
Bar Admissions/Licenses
  • Oklahoma
  • Texas
Court Admissions
  • U.S. District Court for the Eastern District of Oklahoma
  • U.S. District Court for the Northern District of Oklahoma
  • U.S. District Court for the Western District of Oklahoma
  • Texas Bar Foundation, Fellow, 2020–Present
  • International Association of Privacy Professionals (IAPP), Certified Information Privacy Professional/United States (CIPP/US)
  • OneTrust Certified Privacy Management Professional


Speaking Engagements