Dr. Christian Schröder Partner

Düsseldorf

Christian helps clients consider the privacy and artificial intelligence implications of new technology, supports their compliance programs, and helps them stay ahead of enforcement trends. One particular focus of his work deals with internal data transfer agreements, external data transfers with external providers, and product launches that comply with international data protection standards, as well as privacy requirements for connected cars. Furthermore, Christian provides guidance on privacy and data protection considerations for developing, acquiring, using, licensing and selling technology, data and intellectual property, including M&A transactions and IP focused joint ventures. He supports companies on the set-up of webshops, outsourcings, license agreements, in cases of trademark or unfair and deceptive trade practice issues, as well as on hard and software license and information technology (IT) project agreements.

Christian maintains strong working relationships with German data protection authorities and EU regulatory authorities with jurisdiction over privacy and data security matters. He effectively defends companies in cybersecurity and privacy-related investigations initiated by EU regulatory authorities. He also engages with authorities on behalf of clients and helps clients avoid proceedings and possible litigation. When litigation can't be avoided, Christian vigorously defends his clients.

For companies facing global cybersecurity incidents, Christian helps with crisis mitigation, including counseling on notification requirements, coordinating media strategies, and representing clients before data protection authorities in related regulatory investigations.

Christian regularly contributes practical thought leadership to global privacy industry publications and German privacy books and journals. Christian authors the Chapter V (international data transfers) of Germany’s leading GDPR commentary Kühling/Buchner (4th ed.) and is co-author to the Corporate Privacy Handbook (Betrieblicher Datenschutz). As an active member of the Sedona Conference, Christian drives the development and understanding of cross border privacy. He also participates in, hosts and moderates speaking programs with fellow private practitioners, EU data protection authorities, and academics focused on privacy and data security. Legal 500 Germany named Christian one of the top 15 practitioners in 2023 and noted that he is "a pioneer in the legal field, a data protection guru." They also recognized Christian and Orrick as "truly global" and how that it is "vital as they require the various leaders of each region to participate and bring issues to the table as a forum".

Prior to working in private practice, Christian interned with the German Federal Data Protection Commissioner and www.epic.org.

Jamie Moore Partner

London

Jamie acts for both early and late stage companies in intellectual property rich sectors and those who invest in them, including some of the most active venture capital funds, corporate or individual investors.

Jamie has a passion for disruptive technologies, innovation and entrepreneurial business. He has acted on countless transactions across a broad range of sectors both in the UK and internationally, but is most known for his experience in acting on investments into fintech and Artificial Intelligence companies.

Jamie has deep knowledge of the practice area in which he operates and market trends, which he leverages to provide clear and concise advice on a range of corporate issues taking high growth technology companies from start-up through to exit.

He presents on corporate law and venture capital to clients and at seminars in the City, including practitioners’ conferences on practical legal issues in venture capital transactions and SEIS/EIS investments.

An active participant in the venture capital community, Jamie Moore has contributed to industry standard form documentation, acted as a mentor for various Seedcamp portfolio companies and hosted office-hours for the Barclays' TechStars cohort.

Thora Johnson Partner

Washington, D.C.

Thora works with medical device, pharmaceutical, biotech and digital health companies, helping them navigate the increasingly complex patchwork of state and federal health privacy laws. One client described her to the Legal 500 as a “very practical” advisor providing “exceptional guidance” on health information privacy and HIPAA compliance matters.

Her breadth and depth of experience enable Thora to assist clients in harnessing the power of artificial intelligence and executing data-sharing arrangements, all while protecting health data. As a result, Thora spends much of her time counseling pioneering startups and high-growth companies on responsible innovation in healthcare and life sciences.

Thora brings extensive experience counseling clients, including Fortune 500 companies and brick and mortar providers, on the Health Insurance Portability and Accountability Act (HIPAA) and other state and federal health privacy and regulatory compliance regimes including:

• Office of the National Coordinator for Health Information Technology’s interoperability and information blocking regulations
• Centers for Medicare & Medicaid Service’s (CMS’s) interoperability and patient access regulations
• Part 2 confidentiality requirements applicable to substance abuse records
• State health information privacy laws
• State consumer privacy laws with special controls for health data
• Medicare/Medicaid compliance
• Mental Health Parity and Addiction Equity Act (MHPAEA)
• Genetic Information Nondiscrimination Act (GINA)
• Affordable Care Act (ACA) compliance
• Regulatory requirements of the Employer Retirement Income Security Act (ERISA), the Internal Revenue Code, HIPAA, and the ACA as they apply to employer health and wellness plans

Thora routinely helps companies and large employers prepare for and respond to privacy and security incidents involving health information. She also defends clients in government investigations initiated by the OCR, OIG, DOJ, FTC and State AGs, among others.

Dr. Daniel Ashkar Counsel

Munich

Having focused on privacy law for over a decade, Daniel provides comprehensive privacy and cybersecurity advisory support to clients. He further focuses on AI, data, and other technology-related matters. Daniel also possesses significant experience regarding legal disputes including litigation matters and authority proceedings.

He is a Co-Chair of the International Association of Privacy Professionals’ (IAPP) KnowledgeNet Chapter in Munich and has obtained the certifications / designations Artificial Intelligence Governance Professional (AIGP), Certified Information Privacy Professional / Europe (CIPP/E), Certified Information Privacy Professional / United States (CIPP/US), Certified Information Privacy Manager (CIPM), and Fellow of Information Privacy (FIP) from the IAPP.

Daniel is recommended in the 2025 Legal 500 Data protection rankings as a key lawyer of Orrick’s related German practice. Testimonials gathered by Legal 500 state: “Daniel Ashkar is an outstanding lawyer with outstanding knowledge of current developments in the field of data protection law. His passion for data protection law and precision in his advice is unmatched. It is a pleasure to work with him.”; “Daniel Ashkar: Partner material, binding, creative, and practice-oriented.”

Daniel wrote his doctoral thesis on data privacy law and regularly publishes and speaks on privacy and AI related topics.

Prior to joining Orrick, Daniel was an in-house counsel for a German automotive manufacturer and for one of the largest reinsurance corporations in the world. Due to his in-house experience at these large German multinationals, he has a particular understanding of globally operating clients’ needs and requirements. Daniel started his career at another global law firm where he worked for several years with a main focus on data privacy as well as dispute resolution and litigation matters.