Carla “CJ” Utter, Counsel at our Phoenix law office
Carla “CJ” Utter vcard
vCard

Carla “CJ” Utter

Counsel
Phoenix
Services
California Consumer Privacy Act (CCPA) Commercial Agreements Corporate and Securities General Data Protection Regulation (GDPR) Healthcare Life Sciences and Medical Technology Mergers and Acquisitions Cybersecurity, Data Protection and Privacy International Pharmaceuticals and Medical Devices Technology Transactions Technology
Biography

Practice in Arizona temporarily authorized pending admission in Arizona under Rule 39(b). Supervision by Lisa Coulter, a member of the State Bar of Arizona.

With a robust background in technology and law, CJ Utter helps clients navigate the complex landscape of cybersecurity, data protection, and privacy regulations.

CJ has advised companies across various industries to help ensure compliance with GDPR, CCPA, COPPA, PIPL, and other critical privacy laws and frameworks. She also advises companies on all issues related to evaluating, strategizing, and implementing effective cybersecurity policies and procedures. CJ is skilled at handling complex commercial contracts, ensuring that these agreements not only comply with legal standards, but also effectively address privacy and security concerns. She also maintains relevant data security certifications including, (ISC)2 CISSP (2015), IAPP CIPT (2023), IAPP FIP (2023), IAPP CIPP/E (2019), and IAPP CIPP/US (2020).

Prior to joining Snell & Wilmer, CJ served as in-house counsel and data privacy officer to several southern California-based technology companies. She also gained valuable insights as a professional in data and security operations centers for the federal government and private sector. CJ leverages these experiences to provide clients sound data privacy and protection, cybersecurity, and commercial legal advice.

Credentials

Bar Admissions

  • California
  • District of Columbia
  • New York


Education

  • University of Buffalo School of Law (J.D.)
  • University of Maryland, University College (M.S.I.T., Information Assurance and Computer Science)
  • University of Maryland (B.A., Political Science and Government)
  • Hagerstown Community College (A.A.S., Computer Forensics)
Experience

Previous Professional Experience

  • Xperi Inc., Director, Legal Privacy (2022-2023)
  • Viant Technology, Vice President, Legal and In-House Privacy Counsel (2022)
  • Vizio Inc., Director and In-House Privacy Counsel (2021-2022)
  • Masimo Corporation, In-House Counsel and Director of Privacy and Data Protection (2018-2021)
  • Deloitte, Data Security and Privacy Counsel (2016-2018)
  • Virginia State University, Chief Information Security Officer (2015-2016)
  • Erie County Assistant District Attorney (2006-2007)
  • New York State Appellate Division, Judicial Clerkship (2005)

Professional Memberships and Activities

  • Member of IAPP
  • Member of (ISC)2
  • Member, California Lawyers Association

Representative Presentations and Publications

  • “Interview with the Capitol Forum on Dark Patterns,” Presenter (October 2024)
  • “California Privacy Law Masterclass Workshop,” Presenter, IAPP Privacy, Security and Risk Conference (2024)
  • “Digital Advertising, Technologies and Privacy Law Compliance,” Presenter, IAPP Privacy, Security and Risk Conference (2023)
  • “CCPA, VA Consumer Data Protection Act, CPA, Executive Orders. What’s Next?” Presenter, RSA Conference (June 2022)
  • IAB Tech Summit Conference, Presenter (April 2022)
  • SPOKES Wirewheel Conference, Presenter (December 2021)
  • IAPP Privacy Security Risk Conference, Standardizing Global Data Security Agreements (October 2021)
  • IAPP KnowledgeNet Chapter, Silicon Valley Chapter (July 2021)
  • “What is New in California Privacy and What Does it Mean for the Company?” Presenter, RSA Conference (May 2021)
  • “Vendor Risk Management,” Online Presenter, CISO Champions (February 2021)
  • “IAPP CCPA Presentations-Consumer Rights and Deletion Exceptions,” Presenter, RSA Conference (February 2020)
  • “Vendor Risk Management Panel and Women in Privacy,” Panelist, PrivacyOC (January 2020)
  • “Security Issues in Mobile Ad Hoc Networks,” Decision Sciences Institute, Co-Author (June 19,2013)
  • “Hybrid Deployment of IPS/IDS,” Decision Sciences Institute, Co-Author (June 1, 2013)
  • “Cloud Computing Not for Disaster Recovery,” Decision Sciences Institute, Co-Author (November 1, 2012)
  • “Do You Know the Legal Elements in Cyber Security?” Decision Sciences Institute, Co-Author (November 1, 2012)
  • “The “Bring Your Own Device” Conundrum For Organizations And Investigators: An Examination Of The Policy And Legal Concerns In Light Of Investigatory Challenges,” Journal of Digital Forensics, Security and Law, Co-Author