People

Daniel Alleva Managing Associate

Washington, D.C.

Prior to joining Orrick, Daniel was an associate at Buckley LLP.

Julia Apostle Partner

Paris

Julia counsels on compliance issues in relation to European and French tech and data regulations, including:

• the GDPR;
• the Digital Services Act;
• the EU AI Act and the regulation of AI more generally,
• the Data Act;
• the Cyber Resilience Act;
• the NIS2 Directive;

and other new and emerging legislation impacting online platforms, technology developers, and eCommerce businesses. She advises companies of all sizes on a wide range of compliance matters, ranging the drafting of internal policies, to assisting with regulatory investigations, product counseling and regulatory engagement.

In the context of strategic transactions covering significant and complex technological issues, she is involved in the drafting and negotiation of agreements relating to data transfer, IT, software, content and brand licensing.

Julia is deeply familiar with the commercial considerations’ clients face, having practiced in-house at Twitter, Financial Times and CBS for more than a decade prior to joining Orrick. Julia also teaches a course on AI contracts for the Master's program in AI Law at a leading French university and acts as a mentor for students.

Dr. Daniel Ashkar Counsel

Munich

Having focused on privacy law since 2012, Daniel provides comprehensive privacy and cybersecurity advisory support to clients. He further advises on AI, data, and other technology-related matters. Daniel also possesses significant experience regarding legal disputes and litigation matters as well as authority proceedings.

He is a Co-Chair of the International Association of Privacy Professionals’ (IAPP) KnowledgeNet Chapter in Munich and holds the designations Certified Information Privacy Professional/Europe (CIPP/E), Certified Information Privacy Professional/United States (CIPP/US), Certified Information Privacy Manager (CIPM), and Fellow of Information Privacy (FIP) from the IAPP.

Daniel is recommended in the 2025 Legal 500 Data protection rankings as a key lawyer of Orrick’s related German practice. Testimonials from the Legal 500 rankings state: “Daniel Ashkar is an outstanding lawyer with outstanding knowledge of current developments in the field of data protection law. His passion for data protection law and precision in his advice is unmatched. It is a pleasure to work with him.”; “Daniel Ashkar: Partner material, binding, creative, and practice-oriented.”

Daniel wrote his doctoral thesis on data privacy law and regularly publishes and speaks on privacy and AI related topics.

Anna Booth Associate

Boston

Anna advises clients on meeting the complex requirements of federal, state, and international privacy frameworks, with particular focus on the needs of cross-border projects.

Prior to joining Orrick, Anna practiced as a barrister in London for ten years, representing clients in cross-border disputes and enforcement proceedings, both in court and international arbitration. Her experience has included matters in India, Japan, Russia, Egypt, Australia, Thailand, and Europe.

David Chamberlin Managing Director of Strategic Communications Advisory Team

Houston

David collaborates with Orrick’s legal advisory teams, including the litigation, regulatory and transactional practices to provide strategic business guidance to clients facing critical situations. He helps clients address reputational challenges and maximize the opportunities affecting their organizations and stakeholders. He serves as a trusted advisor to the C-suite and Boards across numerous industries around the world. He develops strategies for Congressional hearings, corporate layoffs, federal investigations, mergers and divestitures, multi-country recalls, executive transitions, organizational change management initiatives, cybersecurity and privacy incidents and legal and financial crises.

Prior to joining Orrick, David served as the Chief Marketing Officer at SonicWall, a global cybersecurity leader, where he revamped the marketing, communications and government relations functions. He also served as PNC Financial Services Group’s Chief Communications Officer where he modernized the function and led internal and external communications, corporate social responsibility/ESG messaging, social media strategies, sponsorships and employee recognition. He also led public relations and communications for the credit card business at JPMorgan Chase and served as the Head of Global Communications for Nortel.

As a consultant, he helped launch and lead the  global Data Security & Privacy Group at Edelman. He served as the general manager of Edelman’s Dallas, Texas and Shanghai, China offices and led the firm’s global Financial Comms & Special Circumstances and Crisis & Risk practices. He also served as the North American head of MSL Group’s Issues & Crisis Management Practice. David has appeared on CNN, ABC, PBS and several other broadcast outlets. He has been published in The Wall Street Journal, New York Times, USA Today, The Los Angeles Times, Newsweek and Forbes.com. His work has earned several awards, including being named to PRWeek’s Global Power Book and 40 Under 40, as well as earning their inaugural Corporate Public Relations Team of the Year award. He is a regular speaker at conferences and universities around the country

A native of Springfield, Ohio, David has three children and lives with his wife in the Dallas, Texas area. Away from the office, he enjoys spending time with his family, listening to music and cycling.

James Chou Senior Associate

Washington, D.C.

Prior to joining Orrick, James was an associate at Buckley LLP. Previously, he spent nearly 10 years as a Defense Analyst and a Senior Operations Research Analyst for the U.S. Army, where he focused on cybersecurity, defense policy, and program analysis. He also spent more than three years in the defense industrial base as an IT Project Manager and Policy Analyst.

James is a Certified Information Systems Security Professional (CISSP), a Certified Cloud Security Professional (CCSP), and a Certified Data Privacy Solutions Engineer (CDPSE). He is conversational in Mandarin.

Scott Cohn Senior Counsel

New York

Scott's work involving regulatory compliance includes: 

• Product Recalls
• Product Safety Evaluations
• Compliance Manuals
• Made in USA claims
• California Proposition 65 Warnings and defense of Notices of Violation
• Due Diligence regulatory reviews
• Civil and Criminal Investigations and Penalties
• FDA Import Alerts
• FPLA (Fair Packaging and Labeling Act) requirements
• Textile, Wool, Fur, and Care Labeling requirements
• U.S. Customs Country of Origin Labeling requirements
• U.S. Customs tariff classification and valuation for imported products
• Autonomous Vehicle regulation
• U.S. Fish& Wildlife Service and CITES compliance

Matthew E.S. Coleman Partner

New York; Boston

Matthew helps clients comply with the Controlling the Assault of Non-Solicited Pornography And Marketing Act (CAN-SPAM), the Children’s Online Privacy Protection Act (COPPA), the California Consumer Privacy Act of 2018 (CCPA), the Fair Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA), the General Data Protection Regulation (GDPR), the Telephone Consumer Protection Act (TCPA), and state breach notification, biometric privacy, and cybersecurity laws. He counsels on self-regulatory privacy programs, including Binding Corporate Rules, the Asia-Pacific Economic Cooperation Cross-Border Privacy Rules (APEC CBPRs); programs covering online behavioral advertising, including the Digital Advertising Alliance (DAA), the European Interactive Digital Advertising Alliance (EDAA), the Interactive Advertising Bureau (IAB), and the Network Advertising Initiative (NAI); and programs covering payment card processing. Matthew also provides compliance solutions for emerging technologies, including artificial intelligence and blockchain.

Matthew’s federal regulatory experience helps clients stay compliant and avoid regulatory scrutiny. His comprehensive data management knowledge helps him counsel beyond the letter of the law and facilitates worldwide expansion, interoperable business processes, and innovative uses of consumer data while maintaining user trust. His all-encompassing, risk-based approach involves developing and executing internal and external policies for the collection, use, disclosure, sharing, retaining, transferring, and destruction of personal information. This includes managing contractual relationships with vendors, employees, acquired entities, and creditors as well as building privacy into companies’ product development life cycle and change management strategies.

Prior to joining Orrick, Matthew was an Enterprise Privacy Solutions Manager for TrustArc (formerly TRUSTe), a San Francisco-based privacy consulting and certification firm, and an adjunct law professor of Privacy Law at Santa Clara University. Matthew is a Certified Information Privacy Manager and a Certified Information Privacy Professional with a specialization in United States privacy law.

David Curtis Of Counsel

Seattle; Boston

David drafts and negotiates data licenses and other commercial contracts in which privacy and security issues are a key concern. In addition, he regularly advises clients on privacy policies, website terms and conditions and data processing agreements. David also counsels clients on digital advertising, Internet law and consumer protection, with a particular focus on compliance with the California Consumer Privacy Act of 2018 (CCPA), the California Privacy Rights Act (CPRA), the EU General Data Protection Regulation (GDPR), restrictions on unfair and deceptive trade practices and app store privacy requirements. David helped develop Orrick’s CCPA Readiness Assessment Tool, which enables companies to test how ready they are to comply with the CCPA as a first step to constructing a strategic compliance roadmap.

Before joining Orrick, David was an associate at Ropes & Gray LLP and an adjunct professor at Harvard Law School, where he taught legal research, writing and analysis. David clerked for Justice Barbara Lenk of the Supreme Judicial Court of Massachusetts.

Anupam Dalvi Managing Associate

New York

Anupam provides strategic support during the entire cybersecurity incident lifecycle, including leading tabletop exercises and assessments, advising on state breach notification laws, preparing notifications, and managing investigations and enforcement actions. He has worked on data breach investigations for companies in various sectors, helping them respond efficiently to sophisticated cyberattacks and advising them on regulatory investigations.

Anupam also has experience defending clients in class action litigation for alleged consumer privacy violations under the California Invasion of Privacy Act (CIPA), the California Constitution and the Washington Consumer Protection Act.

Behnam Dayanim Partner

Washington, D.C.

Behn advises gaming and gambling providers, large media companies, Fintech, blockchain and more traditional financial services participants, and other technology and consumer-focused companies on issues at the intersection of gaming, financial services, data privacy and governance and related regulatory areas. Clients turn to him for his ability to advise on the whole frame of issues they may encounter, and he is equally comfortable guiding emerging companies in the early stages of their lifecycles and mature, multinational public companies. Behn is at home in the courtroom – representing clients in cutting-edge gaming litigations, before regulatory bodies – helping the crypto industry address growing sanctions and other financial services obligations, and in the boardroom – assisting in the formation of significant commercial partnerships, brand licenses, acquisitions and other combinations.

Kathryn "Katy" de Visscher Managing Associate

Boston

Katy assists clients in their data breach investigations and cybersecurity incident response, including advising clients on data breach notification responsibilities and providing strategic advice on how to manage cybersecurity risks. She advises on enhancing existing privacy and information security policies and procedures, such as online privacy notices.

Her work includes counseling on compliance with the California Consumer Privacy Act (CCPA) and General Data Protection Regulation (GDPR) for day-to-day business operations and the development of new products.

Katy graduated from Boston College Law School. During that time, she externed in the Data Privacy & Security Unit at the Massachusetts Attorney General’s Office where she supported consumer protection enforcement actions. She also interned with The Future of Privacy Forum and in-house with a leading cloud-based software company.