Phyllis Sumner is a partner at King & Spalding LLP and the firm’s Chief Privacy Officer. She leads the firm’s Data, Privacy and Security practice. Phyllis regularly counsels corporate boards, senior executives and other clients regarding data breach prevention, emergency response, remediation, compliance, regulatory enforcement, internal corporate investigations and other critical privacy and data security concerns.
As a crisis manager, Phyllis works closely with clients’ legal, compliance and business teams to strategize, manage and defend when significant privacy and data security issues arise. She assists her clients with developing mature incident response plans and leads them through security incidents, including investigations, containment, remediation, communications, and contractual and legal obligations. She represents clients defending against class actions resulting from alleged consumer protection and privacy violations, and data security incidents. In 2018 and 2016, Cybersecurity Docket named Phyllis to its Incident Response 30, which lists “the 30 best and brightest Incident Response attorneys” in the U.S. and Law360 named her Cybersecurity MVP in 2017 and Privacy MVP in 2016.
Phyllis also represents clients in complex litigation involving the False Claims Act, RICO, the Fair Credit Reporting Act and fraud. She is known for her negotiation and advocacy skills in and out of the courtroom. Law360 named her “Healthcare MVP” in 2014 and she has been a Georgia “Super Lawyer” since 2013. Atlanta Magazine named her as a “Woman Making a Mark” in 2016 and the Daily Report named her a “Distinguished Leader” in 2017.
Previously, Phyllis served as an Assistant U.S. Attorney in the Northern District of Illinois and the Northern District of Georgia. She successfully prosecuted high profile cases such as Eric Rudolph, the Centennial Olympic Park bomber, as well as cases involving public corruption, domestic terrorism, credit card fraud, money laundering, healthcare fraud and other complex criminal matters.