Dominique Shelton Leipzig, CIPP/US


Perkins Coie


Privacy and cybersecurity attorney Dominique Shelton co-chairs Perkins Coie’s Ad Tech Privacy and Data Management. She provides strategic privacy and cyber-preparedness compliance counseling, and defends, counsels and represents companies on privacy, global data security compliance, data breaches and investigations with an eye towards helping clients avoid litigation. A former litigator for 22 years, her compliance counseling includes defending companies under investigation by the Federal Trade Commission, attorneys general offices and other regulatory and government authorities. Through these actions and related litigations where she provides subject matter leadership, Dominique is able to advise companies on best practices in privacy, cybersecurity, data, mobile, cloud storage, AdTech privacy, Internet of Things, cyber preparedness and other areas of regulatory compliance.

Dominique frequently conducts trainings for senior leadership, corporate boards and audit committees regarding risk identification and mitigation in the areas of privacy and cyber.

Recognized as a “Woman Leader in Tech Law” by The Recorder and as one of the most influential lawyers in digital media and e-commerce law by the Los Angeles Business Journal, Dominique has deep experience advising publicly traded and privately held companies in healthcare and med tech, media, entertainment, e-commerce, financial services and other industries. She leads companies in legal assessments of data security, cyber preparedness and compliance with such regulations as the California Confidentiality of Medical Information Act (CMIA), HIPAA, the Video Privacy Protection Act (VPPA), the Children’s Online Privacy Protection Act (COPPA) and the NIST Cybersecurity Framework.

Dominique has significant experience leading investigations related to data and forensic breaches. She has steered investigations for a range of companies, including for national retailers, financial institutions, health and wellness enterprises, media companies and others.

Dominique also advises companies on global privacy and data security, particularly on EU General Data Protection Regulation (GDPR). Her background includes advising on European, Asian and South American privacy and security compliance projects for U.S.-based and overseas companies. In addition, she counsels on strategies for related legal compliance and vendor management in cross-border transfers.

Highlights of Dominique’s litigation achievements include shutting down the threat of a $29 billion privacy class action by obtaining a denial of class certification; achieving two summary judgments on behalf of a technology company in a $40 million copyright litigation against a government contractor; and representing several large companies in class action litigation in state and federal courts pertaining to the Credit Card Transactions Act (FACTA).

A past-member of the Federal Bar Association’s board of directors, Dominique served for five years on the Magistrate Judge Merit Selection Panel for the U.S. District Court for the Central District of California, and served as a lawyer representative to the Ninth Circuit Judicial Conference. She is a member of the International Association of Privacy Professionals and a Certified Information Privacy Professional (CIPP/US). Dominique is a frequent speaker and panelist at leading conferences and meetings, where she addresses such topics as cross-border data transfer litigations and investigations, privacy concerns in health tech and emerging cybersecurity issues.


Contributions by Dominique Shelton Leipzig

  • Vendor Management and Contracting Readiness: Integration for Coming Regulations
    Speaker at Global Privacy Summit 2020
  • Working with Third Parties — Business and Service Provider Relationships
    Speaker at IAPP CCPA Comprehensive Live 2019
  • Q&A: With the Panelists
    Speaker at IAPP CCPA Comprehensive Live 2019
  • What the U.S. Regulatory Landscape Means for Your Privacy Program
    Speaker at IAPP Privacy. Security. Risk. 2019
  • Understanding the CCPA
    Forum Speaker at IAPP Privacy. Security. Risk. 2019
  • White Paper – Implementing the CCPA: A Guide for Global Business
  • Leveraging Your GDPR Program for Compliance with the CCPA – Work needs to be done but there is still time!
    Speaker at Paris KnowledgeNet: 8 July 2019
  • Understanding the CCPA
    Forum Speaker at Global Privacy Summit 2019
  • Out: GDPR; In: CCPA; Compare and Contrast
    Speaker at IAPP CCPA Comprehensive 2019
  • Gray Areas in the CCPA
    Speaker at IAPP CCPA Comprehensive 2019
  • Q&A: Stump the Panelists
    Speaker at IAPP CCPA Comprehensive 2019
  • Marketing and Privacy: Building privacy by design into four key verticals of marketing
    Speaker at Phoenix KnowledgeNet: December 4, 2018
  • Does Your PbD Framework Really Govern Technology Enablers?
    Speaker at Global Privacy Summit 2017
  • Privacy and Cybersecurity in M&A Transactions
    Speaker at Los Angeles KnowledgeNet: February 27, 2017
  • Privacy Litigation: Defining Privacy Harm
    Speaker at Privacy. Security. Risk. 2016
  • EU Tech and Data Protection Discussion (Including German Enforcement Updates)
    Speaker at Los Angeles KnowledgeNet: June 16, 2016
  • The Asia Data Shake-Up: What U.S. Privacy Professionals Need to Know About Asia's Data Laws
    Speaker at Los Angeles KnowledgeNet: April 13, 2016
  • Privacy Litigation: Defining Privacy Harm
    Speaker at 2016 IAPP Privacy Bar Section Forum
  • Thinking Outside the Cookie Jar: Opportunities and Risks of Mobile Tracking
    Speaker at Privacy. Security. Risk. 2015
  • Court Sides with Hulu in VPPA Case, Grants Summary Judgment with Prejudice
    Privacy Tracker
  • Court Denies Class-Action in Hulu Case, But There’s More
    The Privacy Advisor