Overview
Jessica (Jessi) McGahie Sawyer advises companies on global data protection laws, including privacy, cybersecurity risks, policies and incident responses, as well as data security obligations. She counsels clients on compliance with the EU General Data Protection Regulation (GDPR) and US consumer privacy statutes. She advises clients on matters relating to data localization laws, international data transfers, privacy notices and data subject rights, cryptocurrency, e-commerce security and blockchain applications.
Jessi also helps companies implement cybersecurity and data privacy assessments, including the creation of incident response plans. She provides incident response services, including handling some of the largest and most complex data breaches involving millions of consumer records. She also represents companies in various complex litigation, class actions and government investigations, including dozens of class actions resulting from data breach incidents.
Jessi maintains an active pro bono practice, focusing on obtaining asylum for unaccompanied children. In addition, she has represented pro bono clients in mortgage fraud cases and worked with the Coalition to Abolish Slavery and Trafficking to obtain T-visas for victims of human trafficking. Prior to attending law school, Jessi was a Los Angeles corps member of Teach For America, a national program in which recent college graduates commit to teach for two years in low-income schools.
Jessi regularly speaks on data privacy and protection, and cyber-related issues, including international data privacy frameworks.
Results
- Advised a big data company on its cybersecurity compliance program, including the development and implementation of a vulnerability management and data breach response plan
- Advised a consumer services company in an enterprise-wide cybersecurity assessment and remediation plan
- Advised an educational nonprofit on its compliance with COPPA, FERPA and other data protection regulations
- Advised a professional services company on its compliance with FAR, DFARS and on preparation for CMMC
- Advised a global provider of connected car applications on compliance with privacy and cybersecurity regulations, including the GDPR and China’s Cybersecurity Law
- Advised a medical device company on compliance issues arising from the global launch of a consumer application
- Advised a big data company on a 15 million-record data breach, including forensics, consumer notification, response to government investigations and defense of litigation*
- Represented a big data company in series of nationwide class actions after a breach of mobile applicant data*
- Advised numerous companies on responses to ransomware and phishing incidents, including preservation of privilege, coordination with law enforcement, retention of a forensics provider, advice on Bitcoin and cryptocurrency issues, communications with affected consumers and regulators, and remediation and recovery from the incident
- Advised a university regarding data protection compliance and governance, including the scope of application of the GDPR to activities in the EU and US, compliance with the Family Education Rights and Privacy Act (FERPA), and compliance with US privacy and data protection laws
- Represented a consumer credit reporting agency in connection with an investigation and lawsuit initiated by the Attorney General of Mississippi challenging the client’s credit reporting and consumer marketing activities under the Fair Credit Reporting Act, the Mississippi Consumer Protection Act and the Dodd-Frank Act*
*Matter handled prior to joining McDermott.
Community
- California Bar Association, member
Credentials
Education
Georgetown University, JD, 2011
Loyola Marymount University, MA, 2004
Cornell University, BA, 2002
Admissions
California
Courts / Agencies
US District Court for the Central District of California
US District Court for the Northern District of California
US District Court for the Eastern District of California
