Pavel (Pasha) A. Sternberg regularly advises clients of all sizes, and across industry segments, on a wide range of ever-evolving domestic and international privacy and cybersecurity regulations. Pasha works to help clients assess and implement compliance and remediation efforts to comply with these laws, which include CCPA and CPRA, GDPR, HIPAA, and GLBA. Pasha began his career in-house helping to develop and manage a full-scale privacy program at a large health care entity, and so is familiar with the realities of managing a compliance program in a complex regulatory environment. Using this experience, Pasha assists clients effectively and efficiently conduct data mapping exercises, carry out compliance and risk assessment on new products, programs, and initiatives; as well as draft and implement privacy and cybersecurity policies.
Pasha also regularly assists clients as they investigate and respond to cyber incidents, ranging from malicious employees to sophisticated external attacks, and everything in-between. As part of those efforts, Pasha advises companies through the investigation and notification stages, helping navigate both the regulatory landscape and logistical complexities of a data incident response. Pasha also assists clients in responding to investigations launched by both federal and state regulators as a result of reported data incident. In this capacity, Pasha has successfully resolved dozens of state and federal investigations and inquires on behalf of clients. Prior to joining Polsinelli, Pasha was an associate at a global law firm in San Francisco. Prior to that, Pasha assisted hundreds of companies through cyber incidents as a Privacy Breach Response Manager.
Pasha is a Certified Information Privacy Manager (CIPM) and a Certified Information Privacy Professional/United States (CIPP/US).