Antonio Rega

Managing Director J.S. Held LLC

  • New York NY

Head of Digital Forensics and Information Governance | E-Discovery and Regulatory Compliance Advisor | Global Investigations Leader

Contact

J.S. Held LLC

View more experts managed by J.S. Held LLC

View all Experts

Biography

Antonio Rega has over 20 years of experience providing consulting, advisory, and subject matter expertise in digital forensics, information governance, data privacy, security, digital assets/blockchain technology, and discovery on behalf of global corporations and law firms. He focuses on leading complex investigations and matters involving proactive and reactive discovery and analysis, often conducting in-depth examinations of electronically stored information (ESI) across repositories (cloud-based, localized, or mobile). He regularly assists clients with advisory and strategy through all phases of investigations or litigation needs, such as proactive compliance and regulatory assessments, responses to government subpoenas and/or requests from opposing parties, or matters involving remediation and related information governance needs, among other areas of specialization.

Prior to joining J.S. Held, Antonio was part of FTI’s Technology practice, leading large-scale investigations and compliance matters involving technology-related services and subject matter expertise. Previously, Antonio led Ankura's digital forensics practice, developing and expanding their forensics and analysis capabilities; his prior experience also includes time at PwC as a director in PwC's forensics, Privacy, and eDiscovery practice. Antonio has volunteered as a guest lecturer at Fordham Law School on Data Privacy and related Technology. He contributes material and discussion as a content editor for the American Bar Association (ABA), as well as participating as a member of the Sedona Conference Trade Secrets Working Group 12.

Antonio is a leader within the Global Investigations practice, focusing on data privacy and governance. He also provides subject matter expertise and consulting services in various investigations, digital forensics, digital assets and blockchain technology, and regulatory compliance matters involving reporting to government agencies.

Industry Expertise

Computer/Network Security
Legal Services

Areas of Expertise

Regulatory Compliance
Expert Witness Testimony & Litigation Support
eDiscovery
Digital Forensics Expert Witness
Data Privacy & Governance
Digital Assets & Blockchain Tech
Digital Investigations
Emerging Data Sources
Intellectual Property (IP) & Trade Secrets Misappropriation

Accomplishments & Recognitions

Who's Who Legal Consulting Expert, Digital & Data - Digital Forensic Experts

2023

Who's Who Legal Future Leader, Investigations

2022

Affiliations

  • Sedona Conference : Trade Secrets Working Group 12
  • American Bar Association (ABA) : Content Editor
  • Academy of Court-Appointed Neutrals (ACAN)
  • Association of Certified Fraud Examiners (ACFE)
  • International Society of Forensic Computer Examiners (ISFCE)
Show All +

Articles

Utilizing Digital Forensics Expertise in Intellectual Property, Copyright & Trade Secret Matters

JD Supra

2025

This article focuses on key considerations for attorneys and primary stakeholders within an organization requiring digital forensics expertise from the early stages of determining the extent of a digital forensic expert’s involvement to the different phases of IP and trade secret investigations.

View more

Inside the Healthcare Industry: Understanding Emerging Data Privacy & Security Risks and Regulations

JD Supra

2023

In this Q&A conversation, Healthcare expert Magi Curtis, and Digital Investigations & Discovery experts George Platsis and Antonio Rega, discuss the intersection of cybersecurity and data privacy with government regulation as it applies to the healthcare industry.

View more

Off-Channel Communications: How Financial Services Organizations Can Address Regulators’ Latest Target

JD Supra

2023

As a number of recent headlines demonstrate, the U.S. Securities and Exchange Commission (SEC) and other regulators have fined and penalized employers and employees in the financial services industry for non-compliance with regulations related to off-channel communications (OCC).

View more

Social

Languages

  • English

Education

John Jay College (CUNY)

B.A.

Forensics

2002

Licenses and Certifications

Certified Fraud Examiner

(CFE)

EnCase Certified Examiner

(EnCE)

Computer Certified Examiner

(CCE)

Show All +

Spotlight

1 min

Strategies for Minimizing Rising Risks to Mobile Apps from Privacy Laws

As mobile apps become more central to customer engagement, they’re also drawing closer scrutiny under global data privacy laws. In this expert-backed article, Antonio Rega, Managing Director at J.S. Held, and Ian Cohen, CEO of LOKKER, outline how businesses can identify hidden privacy risks—particularly those created by third-party SDKs and what steps they can take to stay compliant. What’s covered: How data minimization and purpose limitation apply to mobile architecture Real-time consent dilemmas and SDK-related exposure Transparency gaps in mobile data flows Upcoming enforcement trends and what they signal for app owners With decades of combined experience in digital forensics, risk, and data governance, Rega and Cohen bring sharp insight into a fast-evolving regulatory landscape. Whether you’re developing, auditing, or overseeing mobile platforms, this article breaks down what’s at stake and how to protect both users and your organization. Looking to connect with Antonio Rega? Click on his profile icon to arrange an interview or get deeper insights into data privacy, risk, and mobile app compliance. For any other media inquiries, contact : Kristi L. Stathis, J.S. Held +1 786 833 4864 Kristi.Stathis@JSHeld.com.

Antonio Rega

3 min

Off-Channel Communications: How Financial Services Organizations Can Address Regulators’ Latest Target

Off-channel communications (OCC) occur when employees use unapproved and inadequately protected devices – such as personal cellphones – or applications to communicate with co-workers, counterparties and / or clients. Many financial services firms are required to maintain copies of all communications regarding their business, supervise the same, and produce them in response to regulatory requests. Firms cannot meet those compliance obligations when employees resort to unauthorized OCC for business-related matters. In charging 15 broker-dealers and one affiliated investment advisor in September 2022 with record-keeping violations, the SEC noted that its investigation uncovered employees at all levels of these firms who routinely used text messaging apps on their personal devices to discuss business matters between January 2018 and September 2021 [1]. The firms settled the charges and agreed to pay penalties totaling more than $1.1 billion. Just as important, the firms also agreed to engage independent compliance consultants to ensure the use of OCC meets regulatory standards as part of the settlements. In a related move [2],  the Commodity Futures Trading Commission (CFTC) ordered 11 financial institutions to pay more than $710 million for recordkeeping and supervision failures for widespread use of unapproved communication methods such as personal texts, WhatsApp, and Signal. Additionally, the Financial Industry Regulatory Authority (FINRA) has also taken action when it comes to OCC. Antonio Rega, digital forensics, data governance, privacy, security, emerging technology, and discovery expert with J.S. Held, observes, “While the current administration has loosened certain regulatory enforcement near-term, we continue to observe requests from clients in supporting management of “off-channel” communications, with a particular focus on 3rd party chat messaging platforms on mobile devices, such as Whatsapp. These inquiries include supporting corporate stakeholders with internal auditing of their organizational platforms, policies and procedures.” By implementing effective processes and utilizing software and outside experts to monitor and detect OCC, broker-dealers, investment advisers, and other financial institutions can reduce the risk of regulatory enforcement and penalties and ensure that they remain in compliance with regulations. Steve Strombelline, regulatory and enterprise risk management expert with J.S. Held adds, “Although concerns typically impact broker-dealers, firms outside of financial sectors are looking closely at their messaging processes as well, which is advisable." In addition to guaranteeing that these communications are properly documented and retained, the regulations are set up to prevent the use of OCC to manipulate securities transactions or commit fraud and to ensure that it is not used to violate any other securities laws. Firms’ supervisory procedures must be reasonably designed to detect for OCC when they monitor for such activity. The following article discusses the risks that OCC pose for financial services firms, especially as the SEC, FINRA, and the CFTC have made it clear that they are now targeting firms throughout the industry about their OCC to see if they are recording and preserving business information according to regulations. The piece also explains how firms, including broker-dealers of all sizes, should manage their OCC to ensure that they and their employees comply with federal securities laws and regulations. Finally, the authors address the complexity related to the collection of OCC in response to regulatory enforcement investigative requests. As the fines and settlements between those firms and the SEC exemplify, financial services firms of all sizes need to take this regulatory focus seriously and take the proactive step of engaging an independent third-party with expertise and experience in both digital forensics and compliance issues. To read the full article and learn more about the risk of off-channel communications and how companies should manage their OCC to remain compliant, click on the button below: To connect with Antonio Rega simply click on his icon now. To arrange a conversation with Steve Strombelline or any other media inquiries contact : Kristi L. Stathis, J.S. Held +1 786 833 4864 Kristi.Stathis@JSHeld.com References [1] https://www.sec.gov/news/press-release/2022-174 [2] https://www.cftc.gov/PressRoom/PressReleases/8599-22

Antonio Rega

1 min

AI, Data & Digital Regulations: Global Risks & Opportunities in 2025

The adoption of artificial intelligence (AI) technologies and the massive growth of data generation is leading to significant advantages in global business. However, it is also presenting greater challenges with cybersecurity, data governance, regulatory compliance, and ethical conduct. In the video below, hear digital investigations and discovery experts Antonio Rega and Simon Placks discuss risks and opportunities around AI, data, and digital regulations covered in the 2025 J.S. Held Global Risk Report. To view the report and learn more about crypto and digital asset risks and opportunities click on the button below: Looking to know more or connect with Simon Placks or Antonio Rega? Simply click on either expert's icon now to arrange an interview today.

Antonio RegaSimon Placks
Show More +
Powered by