Jessica (Jessi) McGahie Sawyer advises companies on global data protection laws, including privacy, cybersecurity risks, policies and incident responses, as well as data security obligations. She counsels clients on compliance with the EU General Data Protection Regulation (GDPR) and US consumer privacy statutes. She advises clients on matters relating to data localization laws, international data transfers, privacy notices and data subject rights, cryptocurrency, e-commerce security and blockchain applications.
Jessi also helps companies implement cybersecurity and data privacy assessments, including the creation of incident response plans. She provides incident response services, including handling some of the largest and most complex data breaches involving millions of consumer records. She also represents companies in various complex litigation, class actions and government investigations, including dozens of class actions resulting from data breach incidents.
Jessi maintains an active pro bono practice, focusing on obtaining asylum for unaccompanied children. In addition, she has represented pro bono clients in mortgage fraud cases and worked with the Coalition to Abolish Slavery and Trafficking to obtain T-visas for victims of human trafficking. Prior to attending law school, Jessi was a Los Angeles corps member of Teach For America, a national program in which recent college graduates commit to teach for two years in low-income schools.
Jessi regularly speaks on data privacy and protection, and cyber-related issues, including international data privacy frameworks.
Advised a professional services company on its compliance with FAR, DFARS and on preparation for CMMC
Advised a global provider of connected car applications on compliance with privacy and cybersecurity regulations, including the GDPR and China’s Cybersecurity Law
Advised a medical device company on compliance issues arising from the global launch of a consumer application
Advised a big data company on a 15 million-record data breach, including forensics, consumer notification, response to government investigations and defense of litigation*
Represented a big data company in series of nationwide class actions after a breach of mobile applicant data*
Advised numerous companies on responses to ransomware and phishing incidents, including preservation of privilege, coordination with law enforcement, retention of a forensics provider, advice on Bitcoin and cryptocurrency issues, communications with affected consumers and regulators, and remediation and recovery from the incident
Advised a university regarding data protection compliance and governance, including the scope of application of the GDPR to activities in the EU and US, compliance with the Family Education Rights and Privacy Act (FERPA), and compliance with US privacy and data protection laws
Represented a consumer credit reporting agency in connection with an investigation and lawsuit initiated by the Attorney General of Mississippi challenging the client’s credit reporting and consumer marketing activities under the Fair Credit Reporting Act, the Mississippi Consumer Protection Act and the Dodd-Frank Act*
Do not send any information or documents that you want to have treated as secret or confidential. Providing information to McDermott via email links on this website or other introductory email communications will not create an attorney-client relationship; will not preclude McDermott from representing any other person or firm in any matter; and will not obligate McDermott to keep confidential the information you provide. McDermott cannot enter into an attorney-client relationship with you until McDermott has determined that doing so will not create a conflict of interest and until you and McDermott have entered into a written agreement or engagement letter that sets forth the terms of our relationship.