Matthew J. Siegel, CIPP/US

Member

Philadelphia

(215) 665-3703

(215) 701-2303

Matt focuses his practice in the areas of cyber and technology risks, privacy compliance, commercial litigation, and insurance coverage. A certified information privacy professional (CIPP/US), Matt co-chairs the firm’s Privacy, Data and Cybersecurity Industry Team and is a member of the Technology Committee.

Matt has counseled clients on the evaluation of data privacy risks, responses and solutions, and he serves as a breach coach, providing analysis and advice to address data breach events, including forensics, notification pursuant to federal and state laws, credit monitoring, and public relations issues. In addition to breach response and privacy compliance, Matt has counseled insurers on the underwriting and coverage issues arising under cyber-risk policies. Matt has also represented a wide variety of clients, including insurers, contractors, product manufacturers, and individuals, and concentrates his practice on complex litigation matters, including prosecuting and defending first- and third-party insurance coverage claims, construction claims, and commercial disputes. 

Outside of the office, Matt is an active member of the community. He is the former vice president of the board of the Support Center for Child Advocates, a nonprofit organization that represents abused and neglected children in Philadelphia. He also serves as chair of the firm's child advocacy practice group and handles several cases for the Support Center. He has lectured at the center’s training program on several occasions, co-chairs the agency’s Volunteer Committee, and was named one of its Distinguished Advocates in 2006. Matt is also a former member of the board of directors of the Jewish Relief Agency, a nonprofit agency that provides food relief to thousands of local citizens in need.

Matt received his Bachelor of Arts in English from Colgate University in 1995. He earned his law degree, cum laude, at Temple University Beasley School of Law in 1998, where he served as an articles editor for the Temple Political and Civil Rights Law Review and was awarded the Barrister Award for achievement in the field of trial advocacy.

Experience

Blogs

Cyber Law Monitor

Following current trends in cyber, privacy, and data security law.

http://cyberlawmonitor.com/

News

Matthew Siegel Named the Support Center for Child Advocates Volunteer of the Month

November 05, 2021

Cozen O’Connor is pleased to announce that Matthew Siegel, member of the firm’s Commercial Litigation Department, has been named the Support Center for Child Advocates Volunteer of the Month

Privacy & Digital-Rights Experts Worry …

April 08, 2020

Matthew Siegel was quoted on Satoshi Nakamoto Blog discussing how countries are using mobile phone tracking to help fight pandemics, and the privacy side behind this.

Zoom's Sudden Rise Presents Test For New Calif. Privacy Law

April 03, 2020

Matthew Siegel was quoted in a Law360 article discussing how Zoom shares and secures personal data.

Matthew Siegel Named to the Rutgers University Cybersecurity Certificate Program Advisory Board

June 14, 2019

Matthew Siegel, a member of Cozen O’Connor’s Privacy & Data Security practice, was named to the Rutgers University Cybersecurity Certificate Program Advisory Board.

Cyber Security Insurance Coverage Issues Presentation

April 24, 2017

Joseph Gerber and Matthew Siegel were invited to present to two Insurance Contact classes at Temple on Cyber Security.

Publications

Statement of Work Can Make or Break Discoverability of Data Breach Report [Cyber Law Monitor Blog]

September 02, 2021

A recent decision from a federal court in Pennsylvania highlights the importance of a carefully crafted statement of work (“SOW”) when commissioning an investigative report in response to a data security breach. A convenience store chain recently learned this lesson the hard way when it was ordered...

Indiana Supreme Court Refuses to Hold Commercial Crime Policy Covers Ransomware Attack [Casualty Coverage Chronicle Blog]

June 30, 2021

Typically, comprehensive cyber insurance policies, rather than commercial crime policies, respond to claims of data breach and other cybercrimes. With the rise in hacking and ransomware attacks worldwide, businesses that may have chosen not to purchase cyber insurance may find themselves without...

Does the CCPA Apply to Financial Institutions? [Cyber Law Monitor Blog]

April 07, 2020

Despite the global pandemic, the California Attorney General will begin enforcing the California Consumer Privacy Act on July 1 as planned, so even in this new work-from-home environment, businesses must continue to work towards compliance and resolve any open issues. One question we've been asked...

Cybersecurity Best Practices in the Remote-Working Environment [Cyber Law Monitor Blog]

March 31, 2020

In the wake of the COVID-19 crisis, much of the workforce has shifted to working remotely, with many workers operating out of makeshift "offices" they created in their homes with little or no warning. Along with this remote work comes an increased cybersecurity threat. We recently issued a...

Cybersecurity Challenges for Companies in the Wake of the COVID-19 Crisis [Alert]

March 26, 2020

Matt Siegel gives companies seven tips they should keep in mind as their employees try to do from home what they would have otherwise done at the office.

Eight Best Practices for Avoiding Data Breaches [Cyber Law Monitor Blog]

March 06, 2020

As data breaches are on the rise, the old adage rings true: it's not a question of if, but when. More companies are experiencing crippling breaches and the statistics are alarming:  According to IBM Security’s Cost of a Data Breach Report 2019, the average cost of a data breach is $3.9 million and...

Recent Decision Sends Companies Rushing to Review Browsewrap Agreements [Cyber Law Monitor Blog]

October 23, 2018

A California federal court recently held in Rushing v. Viacom, Inc. that an arbitration provision in Viacom’s End User License Agreement (“EULA”) was one click shy of enforceability, and denied the company’s motion to dismiss claims against it pending arbitration. Plaintiffs did not receive...

Anthem Agrees to Record Data Breach Settlement [Cyber Law Monitor Blog]

October 16, 2018

In the wake of the largest U.S. health care data breach in history, Anthem, Inc., has agreed to pay $16 million to the Office for Civil Rights, which is a record settlement for alleged HIPAA violations. According to the Department of Health and Human Services ("HHS"), the previous high was a...

Anthem Agrees to Record $16 Million Settlement for Alleged HIPAA Violations [Health Law Informer Blog]

October 16, 2018

In the wake of the largest U.S. health care data breach in history, Anthem, Inc., has agreed to pay $16 million to the Office for Civil Rights, which is a record settlement for alleged HIPAA violations. According to the Department of Health and Human Services ("HHS"), the previous high was a $5.55...

Technical FACTA Violation Insufficient to Confer Standing [Cyber Law Monitor Blog]

April 05, 2018

A federal court in Texas cut short a putative class action alleging violation of the truncation requirement under the Fair and Accurate Credit Transactions Act (FACTA), sending a clear message to plaintiffs that minor inconvenience flowing from a procedural violation of FACTA does not establish...

Updated SEC Guidance Highlights Importance of Solid Cybersecurity Policies and Procedures [Cyber Law Monitor Blog]

March 16, 2018

The Securities and Exchange Commission (“SEC” or “Commission”) has given public companies a heads up on where the Commission is setting its sights in the ever-developing world of cybersecurity. Here’s what you need to know, and what you need to do, to stay on the right side of the SEC. Public...

EU’s New Privacy Law—What You Need to Know [Cyber Law Monitor Blog]

December 08, 2017

The European Union (EU) Parliament’s new data privacy law, known as the General Data Protection Regulation (GDPR), is set to become enforceable in all EU member states on May 25, 2018, just six months from now. The GDPR replaces the former Data Protection Directive. Among other things, the...

Cybersecurity Best Practices -- How General Counsel Can Prepare For The Worst [Cyber Law Monitor Blog]

November 06, 2017

Take note GCs: The question is not if you will have to respond to a cybersecurity incident—the question is when. That was the message from speakers and panelists at the Association of Corporate Counsel’s annual meeting this year. Indeed, the majority of all U.S. businesses have experienced at...

Latest Spokeo Decision Adds to the Growing Body of Law Supporting Article III Standing for Cybersecurity Plaintiffs [Cyber Law Monitor Blog]

August 30, 2017

We recently wrote about a decision in Attias v. CareFirst, Inc., holding that a class of plaintiffs whose information was compromised in a cyberattack had sufficiently demonstrated standing to survive a motion to dismiss. The U.S. Court of Appeals for the Ninth Circuit now has added to the toolbox...

CareFirst Data Breach Appeal Holds Three Key Lessons for Cyberattack Litigants [Cyber Law Monitor Blog]

August 17, 2017

A recent federal appellate decision suggests that it might be getting easier for cyberattack plaintiffs to establish standing in a manner sufficient to survive a motion to dismiss. According to the U.S. Court of Appeals for the District of Columbia Circuit, people whose personal information was...

Events & Seminars

Past Events

Insurance and Reinsurance Symposium

March 12, 2020 - Philadelphia, PA

NetDiligence Cyber Claims Study

November 06, 2019 - Webinar

Smart Talk: Cyber Security

September 17, 2019 - Philadelphia, PA

Emerging Legal Issues in Health and Pharmaceutical Law

October 10, 2017 - Indianapolis, IN

Ethical Use of Technology

July 21, 2017 - Webinar

Industry Sectors

Insurance

Education

  • Temple University School of Law, J.D., cum laude, 1998
  • Colgate University, B.A., 1995

Awards & Honors

Super Lawyers "Rising Stars" - 2008, 2011, 2013. This award is conferred by Super Lawyers. A description of the selection methodology can be found here. No aspect of this advertisement has been approved by the Supreme Court of New Jersey.

First Judicial District Pro Bono Honor Roll - 2007-2019

Good Shepherd Mediation Program "Most Valuable Peacemaker" for Pro Bono work - 2006

Recipient of Distinguished Advocate Award by Philadelphia Support Center for Child Advocates

  • New Jersey
  • Pennsylvania
  • Pennsylvania Supreme Court
  • Superior Court of New Jersey
  • Supreme Court of New Jersey
  • U.S. District Court -- Eastern District of Pennsylvania
  • U.S. District Court -- New Jersey
  • U.S. Court of Appeals for the Third Circuit
  • American Bar Association
  • Defense Research Institute
  • Pennsylvania Bar Association
  • Philadelphia Bar Association
  • Philadelphia Support Center for Child Advocates
  • International Association of Privacy Professionals