Matthew MK Stein

Special Counsel
Organization Profile
Connect
+1.617.348.1770
Professional Biography

Matt is an accomplished disputes and investigations lawyer who advises organizations and individuals, including sophisticated corporate data users, vendors, and data-first organizations, on a broad spectrum of data privacy, data governance, and cybersecurity issues. He leverages more than 15 years of experience in private practice and as in-house counsel at a global financial institution to litigate and provide guidance on high-stakes and complex matters. Matt represents clients in a variety of industries, including technology, artificial intelligence, financial services, health care, blockchain, and the adtech and martech sectors.

Holding a Certified Information Privacy Professional/United States (CIPP/US) certification issued by the International Association of Privacy Professionals, Matt regularly provides proactive guidance on privacy and security governance and compliance obligations. He also manages and mitigates security incidents and cyber risks, advises on data governance and licensing issues, negotiates data-related contracts and transactions, and assists with product and program development. Additionally, he has advised clients on the data protection aspects of acquisitions and divestitures and on litigation risk, including providing pricing to account for the materiality of litigation, privacy, security, and data risk to the transaction.

His experience encompasses counseling clients on US federal and state data laws, including the federal Gramm-Leach-Bliley Act (GLBA), the Health Insurance Portability and Accountability Act of 1996 (HIPAA), the Family Educational Rights and Privacy Act (FERPA), the CAN-SPAM Act, the Telephone Consumer Protection Act (TCPA), the California Consumer Privacy Act (CCPA), the Illinois Biometric Information Privacy Act, Massachusetts and New York cybersecurity rules, and the Virginia Consumer Data Protection Act (VCDPA). He also provides guidance on global data laws, such as the EU’s General Data Protection Regulation (GDPR) and ePrivacy Directive, Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA), Brazil’s LGPD, and China’s Personal Information Protection Law).

In the litigation side of his practice, Matt represents clients in cutting-edge data- and privacy-related disputes in state and federal courts nationwide, including cases involving novel claims. He frequently achieves positive outcomes at the early stages of cases and when brought in to counter unfavorable developments. He also represents companies in commercial litigation, including class actions and investigations.

Matt writes widely on data privacy and cybersecurity matters, deploying his extensive legal experience in the field to analyze emerging issues. Before joining Mintz, he was a special counsel in the Privacy and Data Security Practice at a national, Los Angeles–based firm. Earlier, he was a senior privacy counsel at one of the world’s largest financial institutions, where he counseled company leaders on global and US privacy laws, including the GLBA, the CAN-SPAM Act, and the GDPR, and practiced at a global law firm, focusing on privacy and security matters, litigation and regulatory enforcement matters, and M&A diligence.

Before law school, Matt worked as a Java, SQL, and website developer.

  • More Legal and Business Bylines From Matthew MK Stein

 
NLR Logo
We collaborate with the world's leading lawyers to deliver news tailored for you. Sign Up to receive our free e-Newsbulletins

 

Sign Up for e-NewsBulletins