Practicing for over 20 years, Paula co-leads the global cybersecurity and data privacy practice, assisting international clients in interpreting new/existing data protection and cybersecurity laws, operationalizing their application and implementing a strategy for compliance globally. Her background in technology law makes her well placed to help clients understand the application of data protection and cybersecurity laws in the digital environment.  She regularly advises on high-profile global breach incidents, investigations and responses, coordinating with multiple agencies and stakeholders, managing potential claims and damage to reputation.

Ranked in Chambers and L500, Paula is "exceptionally commercial” and "recognizes the importance and urgency of advice."

Michael is a litigation partner and co-lead of the global cybersecurity and data privacy practice. Michael is particularly experienced in working with clients in: developing and operationalizing global privacy incident management capabilities and global privacy programs; responding to data breaches; conducting privileged investigations; responding to regulatory inquiries; defending class actions (including those involving cryptocurrencies) and advising clients on adopting revolutionary technologies.

His in-depth knowledge and deep understanding of these topics, particularly in assessing the appropriate levels of cybersecurity investment based on litigation and regulatory risk analysis has seen his ranked by Chambers USA; Band 1 in Nationwide Privacy & Data Security 

Nils is a Partner based in Munich. He focuses on contentious and non-contentious aspects of data protection, Cyber Security and IT law. His non-contentious work includes national and multi-jurisdictional data protection projects, worldwide data-breach projects across multi-jurisdictions, product/services compliance, data transfers and big data). His contentious work includes data protection litigation with a focus on data subject access request proceedings, and procedures with the data protection authority.

Clients say: “Nils is a very competent, solution oriented, extremely reliable, efficient and customer-oriented privacy expert. His subject-matter knowledge is outstanding. He helped several times coordinating and digesting pan-European privacy advice”.

Penelope is a Principal Associate in our London Office. She regularly assists clients to respond to complaints to the UK’s Information Commissioner’s Office and as well as advising on data security breaches, including multi-jurisdictional and those involving engagement with multiple regulators. Penelope is one of the Eversheds Sutherland data breach “first responders”, meaning that she is one of the first people on the initial calls with clients when a data security breach is identified and clients are trying to assess what course of action to take and what their first steps should be.

Pooja is an Associate based in New York. Pooja helps global clients to comply with regulatory requirements and protect against, and respond to, financial crime, cybersecurity and data privacy breaches.

Pooja’s recent experience includes advising a global publicly traded technology company on its breach response obligations in over 74 global jurisdictions and financial institutions on cross border transfer requirements across 75 jurisdictions. In addition, Pooja regularly advises on privacy for the development of advanced new technology. Pooja drafts, and helps organizations to implement internal policies and procedures; designs and delivers training and workshops; conducts risk assessments of businesses and identifies areas for improvement to ensure regulatory compliance.