September 21, 2020

Volume X, Number 265

September 18, 2020

Subscribe to Latest Legal News and Analysis

CF on Cyber: GDPR Regulator Takes Narrow View of "Contract" Basis for Processing Data [PODCAST]

Under the GDPR, businesses need to specify their basis for processing personal data, and the European Data Protection Board has recently released guidelines (2/2019) that take a narrow view of the "contract" basis for processing under Article 6(1)(b). Join Mike Yaeger and Steve Blickensderfer as they discuss these guidelines and how they affect compliance for US-based businesses.

©2011-2020 Carlton Fields, P.A. National Law Review, Volume IX, Number 116


About this Author

Steven Blickensderfer, Litigation Attorney, Carlton Fields Law Firm

Steven Blickensderfer handles a wide variety of civil litigation matters in federal and state court for clients across a number of industries. He is experienced in all phases of litigation, including case analysis and strategy, written and electronic discovery, depositions, expert witness preparation, motion practice, alternative dispute resolution, trials, and appeals. He has participated in a number of trials, including a two-week federal jury trial involving First Amendment issues that attracted national media attention, and has argued in several appellate courts,...

Michael Yaeger Litigator Carlton Fields New York

Michael Yaeger is a litigator whose practice focuses on government investigations and cybersecurity matters, as well as related regulatory issues and civil litigation. His years prosecuting, defending, and litigating a wide range of white-collar and regulatory matters, both on trial and appeal, have given him deep experience managing risks that cross the boundaries between criminal, regulatory, and civil litigation. The combination of his government and private sector experience — prosecuting securities frauds and cybercrime in the government, and leading internal investigations and data incident response in the private sector — has provided him with a rare view of the privacy and data security issues related to criminal and regulatory investigations.

In private practice, Michael’s clients have mostly been institutions and individuals in heavily regulated sectors such as financial services and healthcare. He has led the response to dozens of data breaches. In particular, he has deep familiarity with breach response for registered investment advisers. Michael has also advised a wide range of financial services companies and healthcare institutions —  including payments companies, banks, and academic medical centers — on their cybersecurity policies and related contracts. 

From 2008 to 2014, Michael was an Assistant U.S. Attorney (AUSA) for the Eastern District of New York, where he investigated and prosecuted cases in the Business and Securities Fraud Section of the Criminal Division involving securities fraud, investment adviser fraud, bank fraud, intellectual property crimes, tax fraud, money laundering, health care fraud, False Claims Act cases, and Federal Food, Drug, and Cosmetic Act violations, including food safety violations. He served as his office’s co-coordinator for Computer Hacking and Intellectual Property crimes. 

Michael clerked for the Hon. Samuel A. Alito, Jr., U.S. Court of Appeals for the Third Circuit (now a United States Supreme Court Justice), and the Hon. Milton Pollack, U.S. District Court for the Southern District of New York.