MATTHEW STAPLES
MATTHEW STAPLESAssociate
Technology Transactions
Global Outsourcing Transactions
Consumer Regulatory & Privacy
Intellectual Property
Privacy & Data Protection
Retail, Consumer & Advertising
Matthew Staples is an attorney in Wilson Sonsini Goodrich & Rosati's Seattle office. Matt represents clients in business transactions involving the development, use, acquisition, monetization, or divestiture of intellectual property and technology, and counsels clients regarding information privacy, data security, e-commerce, and advertising matters. His experience includes representation of companies ranging in size from privately funded companies to large, multinational public companies in a variety of industries.
Matt has experience with a variety of transactions, including the licensing and procurement of software, content, technology, and hardware; the development, distribution, marketing, and resale of products and services; the outsourcing of business processes; and services and consulting relationships.
Matt devotes a significant portion of his practice to counseling clients regarding privacy, data security, and consumer protection matters. Matt works with companies to assess statutory, regulatory, private litigation, and other legal and practical risks. Matt assists his clients with the design and implementation of practical, cost-effective means to eliminate or mitigate identified risks appropriately.
The International Association of Privacy Professionals has designated Matt as a Certified Information Privacy Professional.
Prior to joining Wilson Sonsini Goodrich & Rosati, Matt was an attorney at Perkins Coie LLP in Seattle.
SELECT MATTERS:
- Conducted enterprise-wide data privacy audits of national wireless telecommunications carrier and leading video-game manufacturer
- Assisted online behavioral advertising (OBA) technology provider in the development of internal privacy guidelines relating to its OBA preferences directory, its guidelines for behavioral targeting, and its privacy policy, and with the drafting and negotiation of its inbound and outbound data license agreements
- Counseled several clients regarding appropriate handling of personally identifiable information and other sensitive data in connection with mergers, acquisitions, and other business transactions
- Counseled online social network platform provider regarding the development of its privacy management functionality and its public-facing privacy policy
- Counseled online social networking platform provider regarding privacy and consumer protection issues relating to its targeted advertising offerings
- Counseled clients regarding the CAN-SPAM Act, Telephone Consumer Protection Act, Telephone Sales Rule, junk fax legislation, mobile spam regulations, and other state and federal laws bearing upon marketing communications
- Assisted several clients, including a number of large public companies, regarding data security breach mitigation and response, including the coordination of nationwide reporting to consumers in compliance with state security breach notification laws
- Counseled wireless telecommunications carriers regarding location-based privacy, "pretexting," and other issues pertaining to access to, and use and disclosure of, Customer Proprietary Network Information (CPNI)
- Counseled clients regarding compliance with the Payment Card Industry Data Security Standard, Payment Application Best Practices, and other security requirements relating to the acceptance of debit and credit cards
- Counseled mobile payment processing company regarding the development of privacy and security policies and its agreements with merchants and consumers
- Counseled financial institution in connection with the development and offering of a mobile banking application
- Assisted several clients with reviewing, assessing, and modifying agreements with vendors and outsourcers to allocate data security risks appropriately
- Represented wireless telecommunications carrier in the drafting and negotiation of call center outsourcing agreements with service providers in the U.S. and Canada
- Assisted companies with obtaining U.S.-E.U. and U.S./Switzerland Safe Harbor certification
- Prepared website privacy policies and terms of use for several clients
- Counseled developers of platform software, mobile-device applications, and Web-based services regarding privacy, data security, and e-commerce issues
- Counseled clients regarding compliance with data security requirements imposed by the Gramm-Leach-Bliley Act (GLB), Sarbanes-Oxley (SOX), and state laws, including Massachusetts CMR 17.00
- Counseled wireless hardware manufacturer regarding the collection and use of location information from wireless devices
- Counseled clients regarding compliance with state and federal restrictions on the collection and use of Social Security numbers (SSNs) and other personally identifiable information at the point of sale
- Represented public travel website in the drafting and negotiation of international call center outsourcing agreement
- Represented clients in the negotiation and structuring of numerous information technology-related transactions, including software license agreements, hardware procurement agreements, consulting agreements, and services agreements
- Counseled social-networking websites regarding the Digital Millennium Copyright Act, the Communications Decency Act, other liability-limitation regimes, and user privacy issues
- J.D., University of California, Berkeley, Boalt Hall School of Law
Executive Editor, California Law Review; Senior Executive Editor, Berkeley Business Law Journal; Managing Editor, Berkeley Technology Law Journal; Fellow, Berkeley Center for Law and Technology - B.S., Biology, Washington State University
Summa Cum Laude; Recipient, Presidential Scholarship; Recipient, S. Town Stephenson Award, University Honors College; Member, Phi Beta Kappa, Phi Eta Sigma, and Phi Kappa Phi honor societies
- Member, American Bar Association Section of Business Law (Privacy and Data Security Committee and Committee on Electronic Commerce)
- Member, American Bar Association Section of Science and Technology Law (E-Privacy Law Committee and Information Security Committee)
- Member, Washington State Bar Association
- Named to Washington Super Lawyers' list of "Rising Stars" in 2011-2014
Matt has authored or co-authored numerous publications, including the following:
- "Digital Advertising Alliance Releases Guidance on the Application of Its Self-Regulatory Principles to the Mobile Environment," Eye on Privacy, September 2013
- "FTC Recommends Consumer Protections for Mobile Payment Industry," Intellectual Property and Technology Law Journal, June 2013
- "California Supreme Court Holds Song-Beverly Act Inapplicable to Online Businesses Selling Downloadable Products," Eye on Privacy, March 2013
- "Social Networking Mobile App Developer Agrees to Pay $800,000 and Implement Comprehensive Privacy Program to Settle Claims for COPPA Violations and Deceptive Privacy Practices," WSGR Alert, February 5, 2013
- "FTC Releases Final Amendments to Children's Online Privacy Protection Rule," Eye on Privacy, January 2013
- "Mobile Apps Face Heightened Privacy Enforcement: Policies and Practices Scrutinized," WSGR Alert, December 21, 2012
- "FTC Announces $1 Million Penalty for Children's Privacy Violations by Fan-Club Website Operator," Eye on Privacy, November 2012
- "FTC Proposes Additional Revisions to Children's Online Privacy Protection Rule," Eye on Privacy, September 2012
- "FTC Releases Marketing and Privacy Guide for Mobile App Developers," WSGR Alert, September 18, 2012
- "Myspace Reaches Consent Agreement with FTC over Misrepresentations in Privacy Policy," Eye on Privacy, May 2012
- "FTC Releases Final Privacy Report, Sets Forth Best Practices, and Calls for Federal Privacy, Data Security, and Breach Notification Legislation," Eye on Privacy, May 2012
- "White House Proposes Consumer Privacy Bill of Rights, Seeks Adoption of Private Codes of Conduct, and Pushes Federal Privacy Legislation," WSGR Alert, February 28, 2012
- "New Principles for the Collection of Data Online Released," Law360, November 23, 2011
- "Federal Trade Commission Announces Settlement with Skidekids.com: Company Did Not Obtain Verifiable Parental Consent before Collecting Children's Personal Information," WSGR Alert, November 14, 2011
- "FTC Proposes Significant Revisions to Children's Online Privacy Protection Rule," WSGR Alert, September 20, 2011
- "Federal Court Approves the Application of the CAN-SPAM Act to Messages Sent within Social Networking Platforms," WSGR Alert, April 19, 2011
- "Ninth Circuit Holds that Increased Risk of Identity Theft Is Sufficient for Article III Standing: Privacy Class Actions Likely Tougher to Dismiss," WSGR Alert, January 24, 2011
- "FTC Releases Latest Privacy Report, Proposes New 'Do Not Track' Mechanism," WSGR Alert, December 13, 2010
- "New Washington State Data Security Law Effective July 1, 2010; Companies Should Assess Compliance with Several New State Data Security Laws," WSGR Alert, May 19, 2010
- "Red Flags Rules: Financial Institutions and Creditors with Covered Accounts Must Implement ID Theft Prevention Programs," American Bar Association Section of Antitrust Law, Insurance and Financial Services Committee Newsletter, Fall 2009
- "FTC Settlement with Sears Signals Increased Enforcement Risks for Privacy Missteps," WSGR Alert, June 15, 2009
- "FTC Extends Delayed Enforcement of Red Flags Rule until August 1, 2009; Provides Guided Template to Assist Companies in Developing Identity Theft Prevention Programs," WSGR Alert, May 18, 2009
- "FTC Issues New Guidelines for Online Behavioral Advertising," WSGR Alert, February 17, 2009
- "Children's Privacy Violations Lead to $1 Million Penalty," WSGR Alert, December 17, 2008
- "New CAN-SPAM Rules Clarify Online Marketing Requirements," WSGR Alert, May 27, 2008
- "Security Breach Notification," 1 Privacy and Data Security Law Journal 391, 2006
- Contributor, American Bar Association E-Privacy Law Database
- State Bar of Washington
- U.S. Patent and Trademark Office
