About the IAPP

Lee Matheson, CIPP/A, CIPP/E, CIPP/US, CIPM

Crowell & Moring, LLP

Associate

Lee Matheson is a recent graduate of The Ohio State University Moritz College of Law, where he was a member of the Ohio State Journal of Criminal Law. Lee has been interested in law since he participated in a mock trial competition in the sixth grade. He was initially drawn to privacy and surveillance issues as an undergraduate, when he noticed that the banner ads in his browser suddenly seemed to know his location. He earned his undergraduate degree in Political Science at Denison University.



While a law student at Ohio State, Lee was exposed to a variety of perspectives on the practice of privacy law via a summer externship with the Privacy Office of the Department of Homeland Security, a clerkship with a small law firm specializing in startup and technology law, and his work as a research assistant for professors Dennis Hirsch and Dakota Rudesill.



Outside of the practice of law, Lee enjoys disc golf and Ultimate, and is an avid fan of overly-complex strategy board games.   



 

Contributions by Lee Matheson

• Top 10 Operational Responses to the GDPR
  Author
• Top 5 Operational Impacts of the CCPA: Part 2 - Transparency and notice obligations
  The Privacy Advisor
• DPO liability and potential insurance coverage
  Westin Research Center
• Notes from the IAPP, May 18, 2018
  United States Privacy Digest
• Top 10 Operational Responses to the GDPR – Part 8: Data breach and the GDPR
  Westin Research Center
• Web Conference: Staffing the DPO Role—Internal or External? Attorney or No?
  
• Top 10 Operational Responses to the GDPR – Part 6: Transparency and privacy notices
  Westin Research Center
• US Supreme Court hears arguments in United States v. Microsoft
  Westin Research Center
• Top 10 operational responses to the GDPR – Part 2: Lawful bases for processing
  Westin Research Center
• European Commission weighs in on Microsoft Ireland case
  Westin Research Center
• The Working Party guidance on consent is finally here
  Westin Research Center
• What’s in the WP29 update on transfers to third countries?
  Westin Research Center
• Reading the tea leaves in Carpenter v US
  Westin Research Center
• The Year in U.S. Privacy
  Speaker at IAPP Europe Data Protection Congress 2017
• Can a cease-and-desist notice create CFAA liability? Scrapers beware
  Westin Research Center
• WP29 releases guidelines on profiling under the GDPR
  Westin Research Center
• Understanding 'Schrems 2.0'
  Westin Research Center
• Mass. weighs in on Equifax: Who else might?
  Westin Research Center
• Spokeo ruling means even 'good' errors are bad
  Westin Research Center