Mohammad Mehdi Ghanbari

Mohammad mehdi ghanbari Attorney at Law & International Legal Consultant Specialist in Cyber Law, Technology, Criminal Law, and International Trade Professional Summary A seasoned Attorney at Law and legal scholar with 11 years of university-level teaching experience in Criminal Law at the master's level, complemented by extensive practical experience in providing strategic legal counsel to international corporations and leading startups. Delivers innovative, results-driven strategic solutions at the intersection of technology, data, complex contracts, e-commerce, M&A, government projects, and emerging industries. Combines deep academic knowledge with hands-on field experience to resolve complex legal issues for international clients. Core Practice Areas 1. Cyber Law, Data Privacy & Data Protection Full compliance with GDPR and international data protection laws. Drafting Privacy Policies and managing data breach incidents. Representation in cybercrime and data breach litigation. Advising on digital security and technology platform compliance. 2. E-commerce & Internet Law Drafting Terms of Service and platform agreements. Counseling on digital advertising and marketing laws. Advising on consumer rights in the digital space. 3. Information Technology Law Complex software agreements, SaaS, and Cloud Services contracts. Counseling for data centers and digital infrastructure. Legal Due Diligence for technology projects. 4. Media, Entertainment & Sports Law Copyright and Intellectual Property (IP) protection. Licensing, publishing, and distribution agreements. Sponsorship and broadcasting rights contracts. 5. Emerging Industries (Biotechnology & Space Law) IP protection for biotechnology startups. Legal frameworks for commercial space activities (Space Law). Regulatory affairs and licensing. 6. International Trade Law Cross-border transactions, import/export regulations. Compliance with international sanctions and customs tariffs. International commercial dispute resolution. 7. Government Contracts Public tenders and auctions. Negotiation and compliance for public sector contracts. Dispute resolution and litigation for government projects. 8. Complex Contracts Drafting and negotiating domestic and international commercial agreements. Distribution, agency, and partnership agreements. Service and manufacturing contracts. 9. Business Registration Legal structuring and company formation. Registration in free-trade zones. Designing partnership and Joint Venture (JV) structures. 10. Private Equity & Venture Capital Structuring investment transactions. Drafting Term Sheets and shareholder agreements. Counseling on all stages of capital raising (Seed to Series C). 11. Mergers & Acquisitions (M&A) Leading end-to-end M&A processes. Drafting Share Purchase Agreements (SPAs) and Asset Purchase Agreements (APAs). Due Diligence and complex merger structuring. 12. Gaming Law Game development and publishing agreements. Intellectual Property (IP) and licensing. Compliance with international platforms (App Store, Google Play). Professional & Academic Experience International Legal Counsel & Attorney at Law | Ghanbari Legal (Sole Practice) | 2013 – Present Provided strategic counsel to over 50 startups and international companies in FinTech, ecommerce, IT, and media. Led legal processes for multiple venture capital deals and cross-border transactions. Delivered expert advice on GDPR and data privacy to European and Asian clients. Managed disputes and resolutions for major government projects. Represented clients in complex technology, IP, and cybercrime litigation. Drafted and negotiated over 100 complex international contracts ( IP, JV, MOU, Licensing). University Lecturer (Criminal Law & Criminology) | Islamic Azad University, Payame Noor University | 2015 – 2025 Taught specialized courses: Cybercrime, Digital Evidence, International Criminal Law. Supervised and advised over 30 master's theses on the intersection of law and technology. Selected Case Studies & Representative Matters Case 1: Cross-Border Data Breach & Regulatory Counsel Matter: Advised a European FinTech startup following a cyberattack affecting 50,000 users. Outcome: Achieved full resolution without arbitration, ensured GDPR compliance, significantly reduced potential fines, and preserved user trust. Case 2: International Government Contract Dispute Resolution Matter: Represented a European consortium in a $50,000 dispute with a state-owned entity. Outcome: Secured an amicable settlement, recovered 90% of client's claims, preserved the business relationship, and ensured project continuation. Case 3: Enterprise Software Contract Renegotiation Matter: Rescued a manufacturing company from a vendor lock-in situation with a major software provider. Outcome: Achieved over $60,000 in cost savings, secured full technical access, and enabled the successful completion of the client's digital transformation. Case 4: Commercial Software Contract Dispute Matter: Resolved a payment dispute with a major retail corporation. Outcome: Recovered 90% of the outstanding payment and converted the dispute into a longterm annual maintenance contract, securing the client's reputation. Professional Attributes ✅ Results-Driven – Focused on achieving clients' practical and commercial objectives. ✅ Innovative – Delivering creative solutions for complex legal challenges. ✅ Strategic – Combining long-term vision with comprehensive risk analysis. ✅ Bilingual – Ensuring effective communication with both Iranian and international clients. ✅ Scholar-Practitioner – Leveraging a unique blend of academic theory and practical experience. ✅ Trusted Advisor – Serving as a strategic partner to executives and entrepreneurs. Work history Legal Counsel to a European FinTech Startup Following a Cyberattack of International Origin Case Title: Legal Counsel to a European FinTech Startup Following a Cyberattack of International Origin Situation Overview: A Europe-based FinTech startup, serving a global user base including a significant number of Iranian customers, was subjected to a sophisticated cyberattack. In this breach, the personal data of over 50,000 users—including names, email addresses, and partial transaction histories—was stolen by a hacker group. The attackers proceeded to launch phishing campaigns targeting the Iranian users, attempting to extort money under the threat of publishing their complete data on the dark web. Key Legal Challenges: GDPR Compliance: As a European entity, the client was subject to the strict regulations of the GDPR and was obligated to report the breach to the relevant Data Protection Authority (DPA) within 72 hours. Multi-Jurisdictional Complexity: The victims were located in various countries, including Iran, while the attackers utilized servers based in multiple jurisdictions, complicating legal recourse. Lack of Comprehensive Data Protection Law in Iran: At the time, Iran lacked a singular, comprehensive data protection framework, which made pursuing legal action on behalf of Iranian victims particularly challenging. Reputational and Financial Risk: The company faced the risk of substantial GDPR fines, a significant loss of user trust, and severe damage to its brand reputation. Actions and Strategies Implemented by Counsel: As the lead legal counsel on this matter, I devised and executed the following multi-faceted strategy: Crisis Management and Immediate GDPR Compliance: Immediately established an incident response team and guided the company on its reporting obligations under Articles 33 and 34 of the GDPR. Drafted the official notification to the relevant Data Protection Authority, as well as a clear and transparent communication plan for all affected users. International Legal Analysis and Enforcement Strategy: By analyzing Iran's Cybercrime Law (2009) and civil liability regulations, I developed a legal roadmap for Iranian victims to pursue formal complaints. Advised the client to proactively engage with its Iranian user base, guiding them on how to file official complaints with Iran's Cyber Police (FATA) and the specialized prosecution office for computer crimes. Coordination with Technical Experts and Legal Authorities: Collaborated closely with a team of cybersecurity specialists to trace the origin of the attack and gather admissible digital evidence. Facilitated the process of issuing Mutual Legal Assistance Requests (MLARs) through international legal channels to the jurisdictions where the attackers' servers were located. Case Outcome: Full Compliance and Penalty Reduction: The timely and transparent reporting to the GDPR authority resulted in a significant reduction of the potential financial penalty, as it demonstrated the company's responsible and proactive conduct. Restoration of User Trust: Honest communication and the provision of legal guidance to Iranian victims not only prevented mass user churn but also served as a positive action that strengthened the company's brand reputation in the long term. Establishment of a Successful Precedent: Guided by the counsel provided, the client successfully implemented a robust internal framework for data breach management and data protection, significantly mitigating the risk of similar incidents in the future. Resolution for Victims: A portion of the damages incurred by Iranian users was compensated through a remediation process designed and implemented by the company under my legal advisement. This case demonstrates my ability to manage complex legal-technical crises, provide strategic counsel at the intersection of different legal systems (Iran and EU), and achieve favorable outcomes for clients in high-stakes, multinational environments. Legal Representation of a European Engineering Consortium in a Contractual Dispute with a State-Owned Entity on an Energy Infrastructure Project Case Title: Legal Representation of a European Engineering Consortium in a Contractual Dispute with a State-Owned Entity on an Energy Infrastructure Project Situation Overview: A European engineering consortium (the "Client") was awarded an international tender for the design and construction of a major energy infrastructure project in the Middle East. The contract, based on FIDIC principles, encountered significant challenges mid-execution. The state-owned employer, citing "unforeseen conditions" and "national needs," demanded extensive changes to the project's Scope of Work. However, it refused to issue formal Change Orders or provide corresponding adjustments to the contract price and project timeline. This led to a partial project shutdown, a severe escalation of costs for the Client, and a complex contractual dispute valued at over $10 million. Key Legal Challenges: Contradictory Contract Interpretation: The state-owned employer unilaterally interpreted contract clauses to classify the requested changes as part of the contractor's original obligations. Risk of Termination: There was a high risk of unilateral contract termination by the employer and the subsequent calling of the Client's bank guarantees. Complex Governing Law: The contract was governed by the laws of the host country (a civil law system) while also referring disputes to international arbitration in a third country (a common law system). Preservation of Business Relations: The Client wished to assert its rights while preserving its long-term business relationship with the host country's government, seeking to avoid costly and time-consuming litigation. Actions and Strategies Implemented by Counsel: As the lead legal counsel for the consortium, I designed and executed the following dispute resolution strategy: Comprehensive Risk Analysis and Documentation: Immediately conducted a thorough review of all project correspondence, meeting minutes, and documentation, compiling a complete evidentiary file of all change requests and their associated costs. Developed a legal risk matrix that outlined the strengths and weaknesses of the Client's legal position under the governing law and international arbitration rules. Strategic Negotiation Leadership: Instead of sending aggressive legal notices, I adopted a principled, interest-based negotiation approach. I arranged multiple meetings with the employer's legal and technical representatives, re-engaging them in dialogue by focusing on the project's shared objectives. Utilization of Contractual Mechanisms: By invoking the "amicable settlement" clauses within the FIDIC contract, I formally submitted a request to constitute a Dispute Adjudication Board (DAB). This procedural step placed pressure on the employer to engage more seriously in negotiations. Formulation of a Win-Win Proposal: I drafted a comprehensive settlement package that proposed a reasonable adjustment to the contract price and timeline in exchange for accepting certain key changes requested by the employer. The proposal was structured to secure the Client's financial interests while allowing the employer to proceed with the project according to its revised needs. Case Outcome: Successful Resolution Without Arbitration: Through intensive, structured negotiations, the dispute was fully resolved outside of international arbitration, saving both parties millions of dollars in legal fees and significant time. Full Recovery of Client's Financial Rights: I successfully secured a Contract Amendment and the recovery of over 90% of the additional costs incurred by the Client. Preservation of Strategic Relationships: The amicable resolution not only preserved but strengthened the business relationship between the consortium and the state-owned employer, paving the way for future collaborations. Successful Project Continuation: The project was brought out of deadlock and was successfully completed under a new, realistic timeline and budget. This case highlights my expertise in managing complex disputes in large-scale government contracts, my command of international contract principles (FIDIC), and my ability to achieve favorable outcomes through strategic negotiation. Legal Representation of a Major Manufacturing Company in a Contractual Dispute with a Global Software Vendor Case Title: Legal Representation of a Major Manufacturing Company in a Contractual Dispute with a Global Software Vendor Situation Overview: A large-scale Iranian manufacturing company (the "Client"), as part of its digital transformation initiative, procured an Enterprise Resource Planning (ERP) software from a major American software vendor. During the initial negotiations, the vendor's sales team promised "full flexibility" and "seamless integration" with the Client's existing systems. However, after signing the contract and paying a substantial upfront license fee, the Client faced significant challenges: The Software License Agreement (SLA) was highly restrictive, deeming any use outside of the narrowly defined scope as a breach of contract. Access to key APIs required for integration with the company's other software necessitated the purchase of a costly "premium" license, which was not mentioned during the initial sales negotiations.scottandscottllp The Client's digital transformation project was brought to a halt, and the company was at risk of losing its entire multi-million dollar initial investment. Key Legal Challenges: Adhesion Contract and Imbalance of Power: The contract was a standard, non-negotiable agreement drafted unilaterally by the software vendor, and the Client was not fully aware of its legal complexities at the time of signing. Discrepancy Between Sales Promises and Contractual Obligations: There was a clear conflict between the verbal assurances made by the sales team and the rigid, restrictive text of the contract. Risk of Vendor Lock-in: The Client was at an impasse; it could either pay the unforeseen additional costs or consider its entire initial investment a loss. Restrictive Interpretation of "License Grant": Citing the contract, the software vendor considered any attempt by the Client to reverse-engineer or interface with the APIs as a material breach of its intellectual property rights. Actions and Strategies Implemented by Counsel: As the company's lead legal counsel, I designed and executed a multi-stage strategy to break the deadlock: In-depth Contract Analysis and Leverage Point Identification: By conducting a meticulous review of the multi-hundred-page agreement, I identified several ambiguous clauses, conflicting technical definitions, and inconsistencies that could be used as leverage in negotiations. Building a Documentary Record of Misrepresentation: I compiled all email correspondence and marketing materials provided by the vendor's sales team, creating a strong evidentiary file demonstrating that the Client had entered into the agreement based on misrepresentation. Initiating High-Level Legal Negotiations: Instead of continuing discussions with the sales department, I engaged directly with the software vendor's legal department. By presenting my legal analysis and the documentary record, I demonstrated that their position could lead to a costly legal claim for "fraudulent misrepresentation" on their part. Proposing a Win-Win Commercial Solution: Rather than demanding damages, I proposed a "License Agreement Addendum." In this proposal, the Client, in exchange for receiving the necessary technical access and an expanded "license grant," would agree to waive any legal claims and collaborate with the vendor on a "Success Story" for the software's implementation in the manufacturing industry. Case Outcome: Successful Renegotiation and Contract Amendment: Without resorting to arbitration or litigation, I successfully negotiated and executed a comprehensive addendum to the license agreement that met all of the Client's technical requirements.1template Significant Financial Savings: By securing the necessary access under the new agreement, the Client avoided over $50000 in additional costs for premium licenses. Project Resumption and Successful Digital Transformation: The Client's digital transformation project was put back on track and successfully completed, leading to increased productivity and reduced operational costs. Establishment of an Internal Protocol: To prevent similar issues in the future, I developed a "Legal Framework for the Evaluation and Procurement of Enterprise Software," which has since been adopted as an internal standard for all of the company's technology contracts. This case highlights my ability to dissect complex technology agreements, negotiate strategically with large international corporations, and achieve creative commercial solutions that secure the client's long-term interests. Legal Representation of a Software Development Firm in a Contractual Dispute with a Major Retail Corporation Case Title: Legal Representation of a Software Development Firm in a Contractual Dispute with a Major Retail Corporation Situation Overview: A growing software development firm (the "Client") had entered into a contract to design and implement a custom e-commerce platform for one of the nation's largest retail chains (the "Customer"). Upon delivery of the final software version, the Customer refused to pay the final, substantial installment of the contract fee, citing "failure to meet expectations" and "slow performance during peak hours." The Customer threatened not only to withhold payment but also to file a counterclaim for loss of profits due to the delayed full launch of the platform. Key Legal Challenges: Ambiguous Acceptance Criteria: The contract lacked precise, measurable technical criteria to define "satisfactory performance" and final software acceptance, leaving it open to the Customer's unilateral interpretation. Imbalance of Negotiating Power: The Customer was a large corporation with extensive financial and legal resources, whereas the Client was a mid-sized firm. A prolonged legal battle could have led to a liquidity crisis and even bankruptcy for the Client.resumeworded Risk of Reputational Damage: A public dispute with a major brand could have severely damaged the Client's professional reputation in the market. Burden of Proof: The core challenge was to prove that the delivered software met all initial contractual requirements and that any performance issues stemmed from the Customer's inadequate infrastructure. Actions and Strategies Implemented by Counsel: As the lead legal counsel for the software development firm, I designed and executed an outof-court dispute resolution strategy centered on negotiation and a commercial-minded solution: Meticulous Review of Contract and Project Documentation: By conducting a thorough analysis of the original contract, all meeting minutes, email correspondence, and documents related to Change Requests, I created a detailed timeline of the project's progress and the staged approvals received from the Customer. Identifying Leverage Points and Shifting the Narrative: Instead of engaging in an endless technical debate about software performance, I shifted the focus of the negotiations to the "project management process and the parties' mutual obligations." Citing documentary evidence, I demonstrated that the Customer had issued necessary approvals at several stages and had delayed in providing the required infrastructure. Initiating Commercial Negotiations Instead of Legal Confrontation: I arranged a meeting with senior executives from both companies (not just the technical teams). By presenting a cost-benefit analysis, I demonstrated that a continued dispute would be detrimental to both parties. Proposing a Win-Win Settlement: I drafted a commercial settlement package that included the following: Provision of a 60-day period of complimentary technical support to optimize the software's performance on the Customer's infrastructure. Application of a 10% discount on the final payment installment as a gesture of goodwill to preserve the long-term business relationship. Drafting a "Contract Addendum" that precisely defined the final acceptance criteria and committed both parties to signing a definitive acceptance certificate after the support period. Case Outcome: Complete Dispute Resolution Without Litigation: Through direct negotiations, the case was resolved amicably, avoiding a costly and time-consuming legal battle that could have lasted for months.resumaker Recovery of 90% of the Contract Value: The Client successfully recovered 90% of its final installment, which fully resolved the company's liquidity crisis. Preservation and Strengthening of the Business Relationship: The Customer welcomed the practical solution. This not only preserved the business relationship but also led to the signing of a new annual support and maintenance contract, turning a dissatisfied customer into a stable source of revenue. Establishment of a Successful Internal Protocol: Using the experience from this case, I helped the Client develop a "Standard Contract Template" with precise acceptance criteria and clear dispute resolution clauses to prevent similar issues in the future.indeed This case demonstrates my ability to manage complex contractual disputes, negotiate strategically with large corporations, and achieve a creative commercial solution that secures the client's long-term interests.