Shira Shamir

Associate, New York



Shira is a Data, Privacy, and Cybersecurity associate in White & Case's New York office.

Shira advises various clients in the consumer, technology, and financial space on data privacy and cybersecurity issues. She counsels clients on compliance with data privacy and cybersecurity laws including the California Consumer Privacy Act (CCPA), the Health Insurance Portability and Accountability Act (HIPAA), Illinois' Biometric Information Privacy Act (BIPA), the Children's Online Privacy Protection Act (COPPA), and the EU General Data Protection Regulation (GDPR). Shira's practice includes preparation of legally compliant online privacy notices, counseling clients on emerging privacy legal frameworks in the United States, and advising clients on data privacy and cybersecurity issues in corporate transactions, including mergers & acquisitions.

Shira has additional experience with a variety of matters including complex commercial litigation, internal investigations, and public international law.

Shira is actively involved with the Firm's pro bono efforts, with a particular focus on criminal appeals and the United Nations Sustainable Development Goals.

Shira graduated from Harvard Law School in 2020. During law school, she worked as a research assistant for the Program on International Law and Armed Conflict where she conducted research on international criminal law and cyber warfare. She also served as a deputy editor for submissions for the Harvard National Security Journal.

Shira is a Certified Information Privacy Professional (CIPP/US) and a member of the International Association of Privacy Professionals.

Bars and Courts
New York State Bar
Harvard Law School
International Relations
Tufts University


Advised corporate clients on implementation of the California Consumer Privacy Act.

Counseled an entertainment company on development of a privacy notice to comply with the California Consumer Privacy Act (CCPA) and Children's Online Privacy Protection Act (COPPA).

Advised international sovereign concerning United States privacy and cybersecurity legal frameworks.

Guided companies on data privacy and cyber security matters in corporate transactions, including mergers, acquisitions, securitizations, and financings, and securities offerings.