Best Way to the Top Is Intimate Knowledge of the Business: A Q&A With X1 CEO Craig Carpenter
Craig Carpenter, the CEO of X1, a data search tool that can be used for e-discovery and to track data, spoke to Corporate Counsel about how X1 is being used in the wake of CCPA and GDPR and skills GCs who hope to move to the C-suite should have.
November 13, 2019 at 05:44 PM
5 minute read
Craig Carpenter said the law firm dynamic was not for him, so he decided to work in more business-facing roles as a practicing lawyer after working at a firm from 1997 to 2000. In 2006, he became the general counsel of the e-discovery company Recommind and stayed in that role until 2013.
Last year, he became the CEO of X1, a data search tool that can be used for e-discovery and is now also being used to track data to help companies comply with laws like the California Consumer Privacy Act, or CCPA, and the European Union's General Data Protection Regulation, GDPR. He is based in San Francisco.
Carpenter spoke to Corporate Counsel on Wednesday about how X1 is being used in the wake of these new data privacy laws and skills GCs who hope to move to the C-suite should have.
This conversation has been edited for clarity and length.
Corporate Counsel: What skills have you taken from your time as a general counsel that you feel are beneficial to you now as CEO?
Craig Carpenter: You have to look at things from the general counsel perspective. I grew up and live in Silicon Valley, and that is not at all how Silicon Valley looks at the world. It is very much "I'm going to build the greatest piece of technology, and you're going to get it because you need it." That is not how GCs look at the world at all. They look at the world as "I have five things right in my face that I have to deal with. Unless you can materially assist me in being able to address one of those five, I don't have time."
Understanding how our technology can benefit them in a quantifiable and demonstrative fashion is critical. I don't think I would have that perspective if I had not been in their shoes.
CC: What advice would you give for a GC who is hoping to get into the C-suite of a company?
Carpenter: The reputation of GCs in the past is that they're really good at understanding risk, but they don't know the business. The first piece of advice I have is to know the business intimately. The second part that GCs don't understand is the world of sales and the customer because they don't tend to be as customer-focused. Any company, I don't care what you do, starts and ends with the customer.
If a GC can nail those down, then they have their natural area of strength, which is understanding the more esoteric areas of the business that are critical like risk, enterprise value and intellectual property and other areas that are naturally in their sweet spot. Those areas are not naturally in the sweet spot of people in sales or marketing.
Understanding all of that makes them better at their job. I came up on the marketing side in my business career. There was such a stark contrast when dealing with lawyers and GCs who understood the business and recognized their job was to support the business versus those who felt that law was the only thing that mattered. If you're in sales, that looks like a blocking function that doesn't add value.
CC: Does having a background as a lawyer better help you sell X1?
Carpenter: One hundred percent. The credibility factor for e-discovery is very important. If you and I walk into a room and we're talking to a GC and we don't understand the nomenclature or we haven't been in their shoes to at least some degree, out of the gate we lose credibility. From an empathetic perspective, GCs tend to not want to deal with people who don't understand their thoughts.
CC: How is X1 beneficial for compliance efforts when it comes to laws like the GDPR and CCPA?
Carpenter: In the privacy realm, being able to query thousands, if not tens of thousands of systems, simultaneously to see if they have personally identifiable information on them is particularly valuable right now. Just to understand what information is there and be able to form some sort of risk assessment and then decide whether or not to delete it is how our product is used.
We help people understand, technologically what information they have and where. In the context of GDPR, what we're seeing is that people are focused on the lower hanging fruit. They're thinking I've got to make sure my HR systems are locked down and make sure the databases with client information are locked down. Which makes sense, but where a lot of people are leaving a pretty gaping hole is what happens when you or I access that and print out a report? There are very few companies that are dealing with that yet.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View All
People and Purpose: AbbVie's GC on Leading With Impact and Inspiring Change
7 minute read
From Olympic Aspirations to Legal Innovation: Tom Dunlop's Journey to Founding Summize
8 minute read
'Am I Spending Time in the Right Place?' SPX Technologies CLO Cherée Johnson on Living and Leading With Intent
9 minute read
Mary O'Carroll on Her Move to Goodwin: Law Firms Are at the Heart of Industry Disruption
Trending Stories
- 1Deadline Extended for Southeastern Legal Awards
- 2Church of Scientology Set to Depose Phila. Attorney in Sexual Abuse Case
- 3An AG Just Specified How AI Could Get You in Hot Water
- 4Supreme Court Appears to Lean Toward Letting TikTok Ban Take Effect
- 5Standing Spat: Split 2nd Circuit Lets Challenge to Pfizer Diversity Program Proceed
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250
