Michael Morgan is a leader of the Firm’s Global Privacy and Cybersecurity practice.
Recognized as one of the nation’s leading lawyers in cyber incident response, Mike has guided clients through some of the largest and most complex data breaches, including state-sponsored attacks, breaches involving more than 50 million records, and incidents affecting persons in more than 100 countries around the world. He represents clients in the defense of breach-related government investigations and class action litigation as well as pre-breach planning and post-breach remediation. He counsels clients on enterprise-wide programs for compliance with US and international regulations relating to cybersecurity and data privacy, including compliance with the EU’s General Data Protection Regulation and Data Protection Directive. He has expertise on matters relating to data transfers (e.g. EU model clauses and Privacy Shield), cryptocurrency, e-commerce security, vehicle connectivity and autonomy, and blockchain. He represents clients in a range of industries, including big data, software, telecommunications, healthcare, e-commerce, insurance, automotive and education.
Mike has handled scores of privacy and cybersecurity-related cases, including more than one hundred lawsuits involving claims under the FCRA, UDAAP statutes and consumer protection statutes. He has defended against government investigations by the FTC, CFPB, FCC and state attorneys general.
Mike is a Certified Information Privacy Professional (CIPP/US) by the International Association of Privacy Professionals (IAPP).
cum laude, 1989
cum laude, 1989