David A. Senter, Jr.

David is a partner at Smith Anderson and leads the firm’s Data Privacy and Security practice. He advises technology companies, healthcare providers, and life sciences organizations, among other clients, on a broad range of privacy and data security matters, including regulatory compliance, contract negotiation, breach response, and risk management. David is regularly called upon by clients to navigate emerging issues at the intersection of data privacy, security, and artificial intelligence.

David brings a unique, practical perspective to his work with clients, shaped by his experience serving as Interim Associate Compliance Officer and Director of Privacy for an academic medical center, where he oversaw privacy and security compliance initiatives. 

David has significant experience advising clients on the complex data privacy and regulatory landscape, counseling on day-to-day emergent issues in an outside general counsel role. David’s work in this space includes structuring and negotiating data use, data transfer, and data processing agreements, conducting privacy impact assessments and risk analyses, advising on the application of federal, state, and international privacy and AI laws and regulations, including HIPAA, FERPA, GDPR, CCPA, and PIPL among others; and developing policies, training programs, and governance frameworks to support enterprise-wide privacy compliance. His practice also encompasses data breach investigation and response, guiding clients through the legal, regulatory, and operational challenges that arise in the aftermath of a security incident.

David is certified as a Certified Information Privacy Professional/United States (CIPP/US) and in Healthcare Privacy Compliance (CHPC®). He is a frequent speaker on data privacy, cybersecurity, and AI governance topics.

In his spare time, David enjoys running, Wake Forest sports, NASCAR and Canes hockey. David is also an Eagle Scout and a member of Providence Church.

Recognition

• The Best Lawyers in America®
  • Health Care Law (2024-2026)
  • Product Liability Litigation – Defendants (2024-2025)
  • Transportation Law (2025)
• Best Lawyers: Ones to Watch® in America
  • Health Care Law (2023)
  • Privacy and Data Security (2023)
• North Carolina Lawyers Weekly, Health Care Power List (2023)
• North Carolina Super Lawyers Rising Star (2017-2022)

Education

• Wake Forest University School of Law, J.D., 2012
  • Moot Court Board
  • Super Regional Champion, Philip C. Jessup International Law Moot Court Team
  • Student Trial Bar Board
  • CALI Award of Excellence – Products Liability, Criminal Procedure, Pre-Trial Practice
• Wake Forest University, B.A., 2007

Bar & Court Admissions

Certifications

• Treasurer, Health Care Law Section, North Carolina Bar Association
• American Health Information Management Association, Member
• American Health Law Association, Member
• Wake Forest University School of Law Rose Council, Former Executive Council Member
• Providence Baptist Church
  • Vice Chair of Deacons
  • Life Group Leader
• Boy Scouts of America
  • Eagle Scout Award
  • Order of the Arrow

• Advised clinical research organizations, sponsors, and academic research institutions on privacy, data governance, and regulatory compliance across the clinical trial lifecycle, including through structuring compliant data sharing frameworks, addressing federal, state, and international privacy requirements, managing cross-border data transfers, and advising on emerging risks related to artificial intelligence.

• Advised clients on data processing, use, and transfer agreements, vendor contracts, and data transfer mechanisms regarding issues related to state and foreign privacy laws, including CCPA, GDPR, and PIPL.

• Conducted privacy and security risk assessments and privacy impact assessments and implemented resulting mitigation efforts.
• Advised educational institution on issues related to FERPA compliance and incident and complaint response.
• Developed and implemented HIPAA privacy compliance employee training program for academic medical center.
• Prepared policy and procedure manuals and trainings for health information management departments to address HIPAA privacy requirements related to medical records and release of information.
• Advised institutional review boards on privacy considerations related to research protocols.
• Managed investigations of and advised clients on privacy and data security incidents, including breach reporting and notification requirements to federal and state agencies such as the Office for Civil Rights and state attorneys general.
• Coordinated responses to multiple investigations by federal and state agencies arising from reported complaints and privacy incidents.
• Counseled healthcare providers on HIPAA, Part 2 substance use confidentiality regulations, and Information Blocking compliance, including drafting of contract terms, policies, procedures, and training.