Barrett Jack right.jpg

John F. Barrett
Member, ERM

Direct: 215.665.3391
Fax:     215.561.6661
Office: Philadelphia, PA

Cornell University, B.A.

Widener University School of Law, J.D.

US Army Command and General Staff College 

Bar Admissions


New Jersey

New York

Court Admissions

United States District Court Eastern District of Pennsylvania

United States District court Middle District of Pennsylvania

United States Court of Appeals Third Circuit 

The Dubai International Finance Center Court

The Court of Appeals for the Armed Forces

The Army Court of Criminal Appeals


  • Downhill and Cross- Country Skiing

  • Fishing

John F. Barrett is a member in the firm's Philadelphia office where he concentrates his practice on issues related to cyber security liability and data privacy. John is the Chair of the firm's Privacy and Data Security practice group at Bennett, Bricklin & Saltzburg LLC, as well as the co-chair of the firm’s Commercial Transportation practice group. John is a Lieutenant Colonel in the U.S. Army Reserve. John has been working on issues related to data security and privacy in state and federal government since 1990. John clerked for the Commonwealth Court of Pennsylvania which hears all appeals from all PA agency action involving privacy and public information, including Pennsylvania’s open meeting laws.

John is a former Commonwealth employee who provided counsel to Pennsylvania state agencies (PLCB, PEMA, DMVA) with regard to issues under: Pennsylvania Criminal History Record Information Act (CHRIA), Pennsylvania Drug and Alcohol Abuse Control, Pennsylvania Emergency Medical Services System Act, the Pennsylvania Drug and Alcohol Abuse Control, the Pennsylvania Mental Health Procedures Act, the Pennsylvania Mental Health and Intellectual Disability Act of 1966 and the compliance of agency records and meetings with various “right-to-know” laws.

John has counseled entities that have suffered breaches, as well as working with clients to develop privacy related internal standard operating procedures (SOP), as well as developing their incident response guidelines. John has provided guidance to clients related to both physical and electronic controls of access to information systems (IS). John has worked on intellectual property matters for clients.

John is the firm’s Enterprise Risk Manager (ERM) where he oversees the firm’s enterprise risk management program. John is responsible for vendor screening and contract review/negotiation for adherence to firm privacy SOPs as well as external privacy and security regulations. John is responsible for incident response and firm compliance with IS regulations and contracts. He is a member of the International Association of Privacy Professionals (IAPP).  Thus, John is familiar with the real world data and privacy risks facing both large and small public and private organizations. 

John continues to serve in the Army Reserve.  John has provided guidance and training on data security and privacy, such as: Federal Family Educational Rights and Privacy Act (FERPA), Federal Confidentiality of Substance Use Disorder Patient Records, the Freedom of Information Act (FOIA), DOD data security regulations and most frequently, the Privacy Act of 1974, including preparation of internal SOPs to govern handling of those issues.

John has handled cargo claims under the Hamburg Rules and other Carriage of Goods by Sea Acts. John has significant experience in transportation operations having spent a year working on an overseas multi-modal supply chain. John has investigated, prosecuted and defended claims on and behalf of the U.S. Government and private entities both domestically and overseas.

John is licensed to practice in Pennsylvania, New Jersey, and New York and he has been admitted to United States District Court for the Districts of New Jersey, Eastern and Middle Pennsylvania, Eastern and Southern New York, the Third Circuit Court of Appeals, the Dubai International Finance Center Court, the Court of Appeals for the Armed Forces, and the Army Court of Criminal Appeals.

John received his J.D. from Widener University School of Law in 1992 and clerked for the Honorable Joseph T. Doyle of the Commonwealth Court of Pennsylvania. He received his B.A. from Cornell University. He is a 2014 graduate of the Command and General Staff College, Ft. Leavenworth, KS. Mr. Barrett has been rated “A-V Preeminent” by Martindale Hubbell, their highest ethical standard.


Losing PrivilegeNortheast Corporate Counsel, May 2018
Soft Targets Under FireRisk Management (Volume 61, Issue 2), March 2014
After the War - The Risks and Growing Insurance Demand in Post-Conflict Regions, Risk Management, Spotlight 2008
Adjusting for Mass DisasterRisk Management, May 2006

Speaking Engagements:

National Cyber Liabilities Insurance ExecuSummit “Legislative Update on Data Privacy: How to Respond to Data Security Incidents in a New Global Legislative Age”, 2019
Netdiligence Conference “Ethical Obligations for Lawyers in Cyber Response”, 2018
Netdiligence Conference "Cyber Risks in the Transportation Sector" 2018
Northeast Corporate Counsel Forum  “Phishing & Social Engineering” 2018
Lloyd's Market Association “Cyber Law & Data Risk” 2016
Bennett, Bricklin & Saltzburg LLC New Jersey Insurance Defense Conference “Trends in New Jersey Cyber Law and Data Risk” 2016

Practice Areas     |     Attorney Profiles