DETAILS

Overview

Matthew's cross-disciplinary practice focuses on data privacy, cybersecurity, crisis management, and incident response for a broad range of industries. He is well-versed in multi-jurisdictional privacy compliance; cyber risk identification, mitigation, and response strategies; complex information governance and data management issues; and cross-border electronic discovery. His diverse experience at the intersection of litigation, informational and operational technology, and data management enables him to provide clients with comprehensive business-oriented counsel proactively and in real time.

Matthew routinely counsels clients on considerations arising under a wide range of domestic and international privacy and security laws, standards, and best practices. Such frameworks and standards include the California Consumer Privacy Act of 2018 (CCPA), the Illinois Biometric Information Privacy Act (BIPA), the EU's General Protection Data Regulation (GDPR), Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), and Brazil's General Data Protection Act (LGPD), as well as regulatory guidance and international standards relating to privacy and security, such as NIST or ISO standards.

In addition, Matthew has managed dozens of cyber and privacy incidents for multi-national companies through all aspects of investigation, remediation, notification, regulatory engagement, and litigation. With his keen awareness of the enforcement landscape, Matthew assists clients with incident and crisis response preparedness. As part of this, Matthew works hand-in-hand with clients to develop tabletop exercises, simulations and drills for individuals in a variety of roles to help identify and address gaps in procedures and protocols for emergent situations.

Matthew is a certified privacy and information management specialist, including as a: Certified Privacy Program Manager (CIPM); Certified Information Privacy Professional - U.S. (CIPP/US); and Certified Information Privacy Professional - Europe (CIPP/E).

Prior to joining the firm, Matthew represented clients in complex criminal and commercial litigation matters throughout all phases of regulatory investigations, trial and appellate proceedings, with a focus on environmental and energy-related litigation. During law school, Matthew served as a law clerk for the U.S. Attorney's Office for the Southern District of California.

Admission & Affiliations

State Bar of California
State Bar of Texas
New York State Bar
Certified eDiscovery Specialist (CEDS)
Information Governance Professional (IGP)
Certified Privacy Program Manager (CIPM)
Fellow in Privacy (FIP)
Certified Information Privacy Professional - U.S. (CIPP/US)
Certified Information Privacy Professional - Europe (CIPP/E)

J.D., Southern Methodist University Dedman School of Law 2008
B.A., Political Science, University of Saint Thomas 2005

Experience

Representation of a global provider of labor and production services criminally charged in connection with a multi-fatality incident on an oil and gas production platform.
Representation of a global energy services company under criminal investigation for fraud related to inspection services provided to oil and gas production platforms.
Representation of a Fortune 100 company in connection with federal and state investigations related to a multi-fatality incident at a chemical manufacturing plant.
Representation of leading health care provider in connection with data privacy compliance and information governance practices.
Representation of a Fortune 100 financial institution in connection with information governance practices.
Representation of an international oil and gas services company in Suspension & Debarment proceedings before federal agencies relating to potential disqualification from participation in federal contracts and related subcontracts.
Representation of a major oil field services provider in connection with the criminal investigation of the April 2010 Deepwater Horizon oil spill.
Representation of an international oil services company in a multi-billion dollar MDL proceeding—MDL-2179, In re Oil Spill by the Oil Rig "Deepwater Horizon" on April 20, 2010 (E.D. La.—Judge Barbier).
Representation of the chief financial officer of a public company under investigation for accounting fraud and manipulation of financial statements and SEC filings.
Representation of high-profile, public clients in connection with a DOJ investigation into the September 2013 lane closures on the George Washington Bridge involving New Jersey Governor Chris Christie's administration.
Representation of a major energy company in connection with an SEC investigation into alleged fraudulent accounting and reporting practices.
Internal investigation for a multi-national aerospace company regarding suspected violations of the FCPA.
Provision of advice to a major European energy company on domestic and international data privacy compliance issues for purposes of establishing a new domestic presence.
Provision of advice to an international client on domestic and international data privacy compliance issues in connection with expansion into Europe.
Provision of assistance to a major international oil field services provider in the revision and update of its corporate governance and compliance policies and procedures.
Provision of assistance to a multinational bank in the revision and update of its information governance compliance policies and procedures.

News

See More News

11 September 2024 News Coverage Smart shields: leveraging AI in defensive cyber security

10 September 2024 News Coverage Car Surveillance Rules Risk Gaps Amid Agencies’ Piecemeal Moves

09 September 2024 News Coverage Calif. Takes AI Reins With Looming Safety, Transparency Laws

10 July 2024 News Coverage CDT Roundup: 11 Deals, 11 Firms, 95 Lawyers, $3.9B

03 July 2024 News Release Baker Botts Represents Consensys Software Inc. in its Acquisition of Wallet Guard Inc. Bitcoin

24 June 2024 News Release Novacap and its Portfolio Company Cadent Complete Acquisition of AdTheorent Television Advertising

09 April 2024 News Coverage CDT Roundup: 20 Deals, 14 Firms, 203 Lawyers, $18.4B

01 April 2024 News Release Baker Botts Represents Novacap and its Portfolio Company Cadent in Acquisition of AdTheorent Television Advertising

12 March 2024 News Coverage What Is Ransomware? Types, Variants, Protection Tips 2024

11 March 2024 News Coverage What Is Ransomware? Types, Variants, Protection Tips 2024

21 February 2024 News Coverage Kongregrate’s Partnership with Monumental

15 February 2024 News Release Baker Botts’ Individual Rankings Increase by 39% in Chambers Global 2024

11 September 2024 News Coverage Smart shields: leveraging AI in defensive cyber security

10 September 2024 News Coverage Car Surveillance Rules Risk Gaps Amid Agencies’ Piecemeal Moves

09 September 2024 News Coverage Calif. Takes AI Reins With Looming Safety, Transparency Laws

Thought Leadership

See More Thought Leadership

09 August 2024 Blog Post Patreon Settles VPPA Lawsuit for $7.2 Million: A Cautionary Tale for Digital Platforms

05 August 2024 Blog Post Spinning into Legal Trouble: Peloton Accused of Wiretapping in California Privacy Lawsuit

22 July 2024 Client Updates Latest Developments in the SolarWinds Case and Implications for SEC's Cyber Incident Response Efforts and Litigation

08 July 2024 Client Updates SEC Amends Regulation S-P, Heightening Protections for Nonpublic Information about Consumers

12 June 2024 Blog Post Texas Attorney General Ken Paxton Launches Data Privacy and Security Initiative

05 June 2024 Webinar Bits & Bytes Session 3: Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) - Proposed Rules

19 March 2024 Webinar Bits & Bytes Session 2: Privacy Litigation Update: AdTech and Website Technology

22 February 2024 Blog Post Recent DoorDash Settlement Underscores the High Stakes of Data Sharing Practices

23 January 2024 Client Updates CJEU Clarifies Scope of Controller/Processor Liability for Data Breach

16 January 2024 Webinar Bits & Bytes Session 1: Navigating and Operationalizing the SEC's New Cybersecurity Disclosure Rules

11 January 2024 Client Updates DoD Releases New Cybersecurity Model Certification Program Rule

09 January 2024 Blog Post New Jersey Passes Comprehensive Data Privacy Bill

09 August 2024 Blog Post Patreon Settles VPPA Lawsuit for $7.2 Million: A Cautionary Tale for Digital Platforms

05 August 2024 Blog Post Spinning into Legal Trouble: Peloton Accused of Wiretapping in California Privacy Lawsuit

22 July 2024 Client Updates Latest Developments in the SolarWinds Case and Implications for SEC's Cyber Incident Response Efforts and Litigation

Awards and Community

Recommended in The Legal 500 U.S., 2018 & 2019

Recognized as a Northern California Super Lawyer-Rising Star (Thomson Reuters), 2013-2019

Sectors

Practices/Industries

People

Overview

Admission & Affiliations

Experience

Awards and Community

People

By Last Name

Services

Sectors

Practices / Industries

Experience

Practices / Industries

Regions

Info Hubs

News

Thought Leadership

Events

Geographies