Sherwin M. Yoder, CIPP/US, CIPP/E, and CIPM

Partner

New Haven
[email protected]

Notice

Information you send by email through this link is not protected by the attorney-client privilege and is not confidential. Therefore your email should not include confidential information. To obtain legal advice, you must hire an attorney and establish an attorney-client relationship by signing and returning an engagement letter. Until you do so, our law firm is not your attorney, you are not our client, and nothing you tell us is privileged or confidential. If in doubt about whether any information is confidential, please do not send it.

By clicking "Accept" below, you indicate that you have read and understand this Notice.

Accept
203.784.3107

Legal Services

Industries

Healthcare

Education

Quinnipiac University School of Law, J.D., 2003 ~ magna cum laude
Wesleyan University, College of Letters, B.A., 1995 ~ cum laude

Admissions

Bar Admissions

Connecticut
New York

Court Admissions

U.S. Court of Appeals for the Second Circuit
U.S. District Court, District of Connecticut
U.S. International Trade Commission
U.S. Supreme Court

Back to Our Team

Home » Our Team » Sherwin M. Yoder, CIPP/US, CIPP/E, and CIPM

Sherwin thrives in taking on the unexpected and hard matters that our clients sometimes face. He thinks of himself as part of the client’s team. He enjoys learning about their business and their goals, and helping them find the simple, actionable solutions to complex challenges.

Sherwin is a technology lawyer with a litigation background. As a certified privacy professional (CIPP/US, CIPP/E and CIPM), Sherwin leads Carmody’s Privacy & Data Security practice. He advises clients across a broad spectrum of data privacy and cyber security matters. He represents customers and service providers in transactions or disputes involving technology, software, Internet, e-commerce, and digital communications. He is a founding member of the Start@Carmody team, supporting start-up and early growth stage companies.

Sherwin is a member of Carmody’s Litigation practice, which is named a “highly recommended” Connecticut litigation team in Benchmark Litigation’s Guide to Leading Business Litigation Firms and Attorneys.

Affiliations

Mackrell International, Global Privacy and Data Security Practice Group Member
Connecticut Entrepreneurs Forum, Inc., Secretary and Board of Directors, 2017-present
International Association of Privacy Professionals, including Co-chair of Connecticut KnowledgeNet Chapter, 2020-22
InfraGard, Connecticut Chapter
New Haven County Bar Association
Connecticut Bar Association
Federal Practice Section, Legislative Liaison and Executive Committee Member, 2014-present

Distinctions

Best Lawyers® – Commercial Litigation, 2025-2026
Litigation Star, Benchmark Litigation, 2023-2026
Connecticut Super Lawyers® - Business Litigation, Utilities, Intellectual Property Litigation, 2013, 2015-2017, 2020, 2022-2025
New England Super Lawyers® - Business Litigation, 2013-2016
Certified Information Privacy Professional/United States (CIPP/US), 2015-present
Certified Information Privacy Professional/Europe (CIPP/E), 2018-present
Certified Information Privacy Manager (CIPM), 2018-present

Community

President, Board of Directors, Christian Community Action (providing Help, Housing, and Hope in New Haven, CT), 2023-present
Director/Development Task Force Chair, Christian Community Action, 2020-present
Volunteer, Federal Court Public Outreach Committee, Annual Law Day High School Trial Simulation, New Haven, 2011-present
Lay Pastor, Agape Community Church, 2018-present

Experience

Coach organizations through data security incident responses, data breach notifications, and regulatory defenses in multiple jurisdictions and under various state, federal, and international laws.
Investigate and prosecute theft of intellectual property and trade secrets, online defamation and fraud, cybersquatting, and Internet domain name abuses.
Defend technology service providers against plaintiffs’ state data privacy law class action.
Prosecute and defend technology service providers and software developers in arbitration and court litigation.
Draft and negotiate technology service and licensing agreements, SaaS agreements, and website and mobile app terms of use and privacy policies.
Serve as outsourced Privacy Counsel, Data Protection Officer, and Chief Privacy Officer for software technology providers and consumer-facing e-commerce and digital marketing service providers.
Guide clients through EU-US Data Privacy Framework self-certification process.
Draft, review, implement written information security, data privacy compliance, and Artificial Intelligence governance programs.
Advise on cybersecurity and privacy due diligence in M&A transactions.
Review and negotiate cybersecurity insurance coverage.
Counsel school districts, higher ed, and edtech vendors on student data privacy.
Train client workforce on data privacy, AI, and cybersecurity compliance and risk mitigation.

Sherwin Yoder Quoted in Hartford Business Journal on New AI Business Requirements

June 02, 2026

Privacy & Data Security partner Sherwin Yoder shares his insights on the new AI compliance requirements facing Connecticut businesses and the steps organizations should take to manage legal and regulatory risk in this Hartford Business Journal article.

July 1st Amendments to the Connecticut Data Privacy Act: New Impact Assessment Requirements

May 01, 2026

CTDPA impact assessments, workplace app hacks, and Alabama’s new data privacy law Key Takeaways for Businesses Impact assessments (IAs) are mandatory when covered businesses employ profiling on or after August 1, 2026, that causes a legal or significant effect for any consumer, or for any profiling of minors, regardless of severity
Read More

Conn.’s Proposed AI Rule Not a Shock to Attorneys

April 24, 2026

Privacy & Data Security partner Sherwin Yoder is quoted extensively in this Law360 article regarding a proposed rule that would put attorneys at risk of sanctions for erroneous citations created by AI.

July 1st Amendments to the Connecticut Data Privacy Act: Getting your House in Order

March 31, 2026

For organizations covered by the Connecticut Data Privacy Act (CTDPA) amendments, it is critical to begin updating internal operational, governance, and documentation practices to achieve compliance by the July 1 deadline. Key Internal Processes to Update Employee-facing policies, procedures, and training Vendor contracts and Data Processing Agreements (DPAs) Employee-Facing Policies,
Read More

July 1st Amendments to the Connecticut Data Privacy Act: Are You In?

February 26, 2026

We continue to unpack the top operational impacts of the looming July 1st amendments to the Connecticut Data Privacy Act (“CTDPA”). Will the CTDPA amendments affect your organization? Here are the Top Five Business Considerations and an update on the 2026 State Data Privacy Law Landscape. Do You Conduct Business
Read More

Is your business ready for Connecticut’s new AI and Data Privacy rules coming July 1, 2026?

May 14, 2026

Join Carmody Data Privacy lawyer Sherwin Yoder for a complimentary briefing on Connecticut’s new Artificial Intelligence and Data Privacy rules coming July 1, 2026. Last-minute, little-noticed legislative amendments from the Connecticut 2025 legislative session will have outsized impacts on small and medium-sized Connecticut businesses beginning July 1, 2026.

Is your business ready for Connecticut’s new AI and Data Privacy rules coming July 1, 2026?

May 05, 2026

Join Carmody Technology & Data Privacy lawyer Sherwin Yoder for a complimentary briefing on Connecticut’s new Artificial Intelligence and Data Privacy rules coming July 1, 2026. Lunch will be served. Last-minute, little-noticed legislative amendments from the Connecticut 2025 legislative session will have outsized impacts on small and medium-sized Connecticut businesses
Read More

QuantumCT x Connecticut Entrepreneurs Forum

January 27, 2026

Connecticut’s innovation community is stepping into a new era of technological possibility — and quantum is rapidly becoming a defining part of that future. Join the Connecticut Entrepreneurs Forum and QuantumCT for an energizing conversation on how quantum technologies and AI are shaping new opportunities for startups, corporate innovation, and
Read More

Cybersecurity in Mediation: Secure the Data, Secure the Deal

June 03, 2025

Carmody Technology & Data Privacy partner Sherwin Yoder and Alternative Dispute Resolution partner Hon. Douglas C. Mintz (Ret.) will speak on "Cybersecurity in Mediation: Secure the Data, Secure the Deal" for the American College of Civil Trial Mediators on June 3 at their 2025 Annual Conference. For more information, click
Read More

The Nigerian Prince: Understanding Ethical Obligations and Managing Cyber Security Risk

May 08, 2025

Carmody Technology & Data Privacy partner Sherwin Yoder and Ethics partners Stephen Conover and Lindsay Reed will present on ethical obligations and managing cyber security risk for the Fairfield County Bar Association. Key Topics: Overview of Cyber Security Threats Ethical and Legal Duties of Attorneys Recent Case Law Developments Managing Cyber
Read More

ABA 2024 Advanced Mediation and Advocacy Skills Institute

October 17, 2024

Cybersecurity in Mediation: Tools to Keep Barbarians Outside the Gates

Business Law Section Meeting: War Stories

June 18, 2024

Carmody Data Privacy Partner Sherwin Yoder will lead "War Stories" for the Connecticut Bar Association's Business Law Section Meeting. Sherwin will address data privacy/breach issues that affect law firms, including the use of generative Artificial Intelligence (AI) and cybersecurity issues that have proliferated in the practice of law. Register here

Artificial Intelligence (AI) in the World of Financial Institutions – Are you ready for it?

May 22, 2024

AI-powered solutions are proliferating, promising to multiply efficiency and capacity. Should you be jumping on board? Are your employees or business segments running ahead of management in deploying these technologies? Join us for this webinar as we discuss the top areas of risk for the financial services industry and practical
Read More

Cybersecurity Basics: Practical Ideas and Solutions for Your Organization

April 24, 2024

Talk to our panel of experts to learn how you can prioritize cybersecurity initiatives effectively without breaking the bank. Find out about cost-effective tools, risk management strategies, and collaborative approaches to enhance your organization's cyber resilience within budget constraints. Learn about emerging threats, such as ransomware and social engineering, and
Read More

Latest Cybersecurity & Data Privacy Laws: Incentives and Impacts

November 29, 2023

Cybersecurity laws in Connecticut and beyond reward businesses for getting ahead of the curve. New consumer data privacy laws create obligations for Connecticut businesses and their service providers. Distinguish your firm and better serve your clients. Learn practical steps for taking advantage of these laws. Reduce the risk of bad
Read More

Electronic Medical Records: What are the Privacy, Security and Legal Obligations?

January 31, 2017

Attorney Sherwin Yoder presented to an international nonprofit organization on Electronic Medical Records: Privacy, Security and Legal Obligations.