Philip N. Yannella

CO-CHAIR, PRIVACY, SECURITY & DATA PROTECTION PRACTICE

Phil Yannella regularly counsels clients on data, privacy, and cybersecurity issues relating to the use of digital information. He represents financial institutions, media organizations, tech companies, online platforms, life sciences companies, global manufacturers, gaming companies, and higher eds.

Phil has counseled and represented clients in a wide array of privacy and data security litigations including lawsuits filed under the Telephone Consumer Protection Act (“TCPA”), Defense of Trade Secrets Act, Computer Fraud and Abuse Act, Stored Communications Act, Video Privacy Protection Act (“VPPA”), and Illinois Biometric Information Protection Act, as well as state wiretap and data breach class actions and website accessibility claims. He has extensive experience coaching clients through data breaches. He has handled over 500 breaches for clients to date, managing breach notification in all 50 states and more than 35 foreign jurisdictions, and has led the defense of numerous regulatory investigations relating to data breaches, including those brought by state Attorney Generals, the Office of the Comptroller of the Currency (“OCC”), New York State Department of Financial Services (“NY DFS”), the UK Information Commissions Office, and Canadian privacy regulators.

In addition, Phil regularly advises clients on compliance with federal, state, and international data protection laws including California, Virginia, Colorado, Connecticut, and Utah state privacy laws, the Children's Online Privacy Protection Act, Health Insurance Portability and Accountability Act (“HIPPA”) security rules, the General Data Protection Regulation (“GDPR”), UK Data Protection Act, UK Age Appropriate Design Code, and ePrivacy Directive. He works closely with banks and other financial institutions on compliance with the privacy and security components of the Gramm Leach Bliley Act, Interagency Guidelines, NY DFS cyber-regulations, and the Payment Card Industry Data Security Standard (“PCI DSS”). He is accredited as a Certified Information Privacy Professional (“CIPP/US”).

Phil is a frequent commentator, presenter, and author on legal issues related to data privacy, cybersecurity, and information governance. He has received multiple Readers’ Choice awards from JD Supra for his writing on cybersecurity issues. He is the author of Cyber Litigation (Thomson Reuters, March 2021). He has been named to The Legal 500 US, Dispute Resolution.

While in law school, Phil was a member of the Political and Civil Rights Law Review and Temple Moot Court and a recipient of the Trial Advocacy Program’s Outstanding Advocate Award.


© 2024 Blank Rome LLP
National Law Review, Volumess XIV, Number 40