Podcasts about California Consumer Privacy Act

Shoot us a Text.Welcome to Wednesday as we talk about  Volkswagen's significant investment in Rivian, the latest on the DMS Outage as well as how Target plans to empower its retail associates with a new GenAI-powered chatbot tool.As thousands of Dealers on the CDK platform are about to enter their second week of ongoing disruptions, the company has said there is no resolution expected before June 30. CEO Brian MacDonald defends the company's crisis response amid rising tensions and legal challenges.CEO Brian MacDonald has begun speaking publicly by asserting the company's proactive engagement with dealers and commitment to support, In a June 25 note, CDK wrote, “We do feel it is important to share that we do not believe that we will be able to get all dealers live prior to June 30 but are making making significant progress.” The company emphasized transparency and urged dealers to use their available resource center while encouraging alternate planning for financial statement preparationCDK currently faces two lawsuits seeking class-action status over compromised personal information.One Filed by vehicle lessee Yuriy Loginov on June 22, alleging negligence, breach of contract, unjust enrichment, and breach of fiduciary duty, seeking class-action status for anyone in the U.S. whose private information was compromised.The Second Lawsuit, filed by former dealership employee Eugene Buraga on June 24, alleges negligence, breach of confidence, breach of contract, and violations of the California Consumer Privacy Act, seeking class-action status for those whose information was exposed to unauthorized third parties.Volkswagen is set to invest up to $5 billion in Rivian, aiming to strengthen its software unit and support the EV startup's next generation of vehicles. VW will invest $2 billion in a joint software company using Rivian's technology and purchase a $3 billion stake in Rivian over several years.The investment provides Rivian with necessary capital to launch more affordable vehicles and improve its balance sheet.Rivian shares rose about 30% in aftermarket trading following the announcement.RJ Scaringe, Rivian's CEO, emphasized that the partnership lowers parts costs and spreads software development costs over a larger fleet.VW aims to use Rivian's technology to address issues in its software unit, Cariad, which has faced quality problems.Scaringe also emphasis that this is enough cash to get the company to the point where it is able to generate its own positive cash flow from salesTarget plans to introduce a GenAI-powered chatbot tool, Store Companion, to all its nearly 2,000 U.S. stores by August, aiming to streamline daily tasks, coaching, and customer assistance for associates.Store Companion will be available as an app on store team members' handheld devices, providing quick answers to process-related questions.The chatbot will also serve as a "store process Hosts: Paul J Daly and Kyle MountsierGet the Daily Push Back email at https://www.asotu.com/ JOIN the conversation on LinkedIn at: https://www.linkedin.com/company/asotu/ Read our most recent email at: https://www.asotu.com/media/push-back-email

In this podcast recorded at Ogletree Deakins' national Workplace Strategies seminar, Ben Perry (of counsel, Nashville) discusses the latest cybersecurity and privacy issues, risks, and challenges that employers are facing. In addition to reviewing what to do in the face of a data breach, Ben discusses how data privacy laws, such as the California Consumer Privacy Act, apply in the employment context, focusing on notice/opt-out requirements and employee rights. Additionally, Ben covers best practices for risk mitigation, managing data breaches when they happen, and handling employers' legal notification responsibilities. Finally, Ben addresses trending issues such as biometrics, employee monitoring, and the use of artificial intelligence in the workplace, including their application to the remote work environment.

Last week, the Senate Judiciary Committee brought the CEOs of major tech companies like Meta and TikTok to answer questions about the impact of social media on children—from concerns about bullying and mental health to sexual exploitation. Lawmakers around the country and the world have been increasingly focused on this and other issues under the broader umbrella of digital privacy. Europe has led the Western world in enacting regulations that privacy advocates herald while critics warn they stifle innovation.We're 30 years into widespread adoption of the commercial Internet, yet Congress has failed to pass any sort of comprehensive legislation around digital privacy. There's broad agreement that America needs a national privacy law, so why don't we have one? In the meantime, a growing number of U.S. states have filled the void with bills like the California Consumer Privacy Act and the Illinois Biometric Information Privacy Act. How have these laws impacted the tech landscape? How do they impact global internet practices, and shape principles around online free speech and innovation?Evan and FAI Director of Outreach Luke Hogg are joined by Jennifer Huddleston, technology policy research fellow at the Cato Institute. Her work covers a range of topics, including antitrust, online content moderation, and data privacy. For more, see her recent piece on online safety legislation.NB: A previous version of this episode was missing content, which has been restored.

In today's episode, Teresa gives her annual Legal Update for changes happening on January 1, 2024. Out of the 1,046 bills sent to Governor Newsome for signature, 890 were signed and 156 were vetoed. 80 employment-related bills were signed with 26 vetoed. All bills, except those designated as emergency measures or as otherwise noted, take effect January 1, 2024.  Legal Update Topics Discussed Today: Minimum Wage Increases - The minimum wage in California will increase to $16.00 an hour. (Review the UC Berkeley Labor Center's detailed list of local minimum wage ordinances for additional guidance.) AB 2188 Discrimination in Employment: Use of Cannabis (Chapters 2 and 5) - AB 2188 makes it unlawful for an employer to discriminate in hiring, termination, or any term or condition of employment, or otherwise penalize an individual if the discrimination is based on the individual's use of cannabis off the job and away from the workplace.   SB 700 – Employment Discrimination: Cannabis Use (Chapters 2 and 5) - SB 700 expands existing lawful use of cannabis outside the workplace by making it unlawful for an employer to take any adverse employment action (i.e., take any action that would negatively impact the employee's terms or conditions of employment) against an employee for off-duty cannabis use. Fair Chance Act (Ban the Box) Regulation Update (Chapter 2) - The California Office of Administrative Law approved amendments to the California Fair Chance Act regulations, as proposed by the California Civil Rights Council. These changes impact employers with five or more employees and involve inquiries into an applicant's criminal history before a job offer or in other subsequent employment decisions (e.g., promotion, training, discipline, layoff, and termination) and the criminal history of current employees.   SB 497 – Protected Employee Conduct (The Equal Pay and Anti-Retaliation Protection Act) (Chapter 4) - SB 497 amends various sections of the Labor Code by creating a rebuttable presumption in favor of an employee's claim of retaliation if the employer takes any adverse action against the individual within 90 days of the employee's having engaged in protected activity.  SB 616 – Sick Days: Paid Sick Days Accrual and Use (Chapters 4 and 5) - SB 616 amends the Healthy Workplace, Healthy Families Act of 2014 (HWHFA) by increasing accrual/frontloading paid sick leave mandates from 24 hours (3 days) to 40 hours (5 days) and increasing cap amounts to 80 hours.   SB 848 - Leave for Reproductive Loss (Chapter 5) - SB 848 makes it unlawful for a covered employer to refuse to grant Reproductive Leave (“Leave”) following a miscarriage, failed surrogacy, stillbirth, unsuccessful “assisted reproduction” (i.e., artificial insemination or embryo transfer), or failed adoption. SB 553 – Workplace Violence: Restraining Orders and Workplace Violence Prevention Plan (Chapter 7) - This law takes effect July 1, 2024 - SB 553 requires covered employers in California to; develop and implement a workplace violence prevention plan that meets the law's specific standards; maintain a violent incident log to record any violent workplace incidents or threats; provide comprehensive training to all employees on workplace violence prevention; and keep records related to the workplace violence prevention plan to ensure compliance. Maintain these records for at least five years and produce them to Cal/OSHA upon request.  California Privacy Rights Act of 2020 (CPRA) (Chapter 5) - The CPRA became effective January 1, 2023. However, regulatory enforcement is stayed until March 29, 2024 - Current employer exemptions in the California Consumer Privacy Act of 2018 (CCPA) were eliminated in accordance with the CPRA when it became effective January 1, 2023. SB 699 – Contracts in Restraint of Trade - Existing law concerning restrictive covenants (e.g., non-competition, non-solicitation agreements) regulates business activities to maintai...

Jennifer Mitchell is a Partner and the Head of Privacy Governance and Technology Transactions at Baker Hostetler, a law firm specializing in digital risk advisory and cybersecurity, blockchain and digital assets, financial services, and more. Jennifer's law career spans over 15 years with legal, compliance, and operations expertise. At Baker Hostetler, Jennifer provides business solutions to uphold evolving US state privacy laws in compliance with the General Data Protection Regulation, HIPAA, and California Consumer Privacy Act. In this episode… The amended California Consumer Privacy Act defines employees as consumers. So what does that mean for employee privacy rights? The CCPA affects employee rights by requiring employers to implement security measures to protect employees' personal information. These measures include implementing data security policies and procedures, conducting regular security audits, and training employees on data security best practices. Privacy lawyer Jennifer Mitchell explains that CCPA gives workers the right to request their employers disclose the personal information employers have collected about them. This gives employees the freedom to either opt out of selling their data or have their information deleted from their employer's records. Additionally, CCPA prohibits companies from discriminating against employees who request their rights. Join Jodi and Justin Daniels in today's episode of the She Said Privacy/He Said Security Podcast, where they welcome Jennifer Mitchell, Partner at Baker Hostetler, to discuss employee privacy under the California Consumer Privacy Act. Jennifer discusses the difference between “right to know” and “right to delete,” opportunities for employee privacy rights to build relationships between companies and employees, and how company employee monitoring may potentially violate employee privacy rights.

In September, the Board of the California Privacy Protection Agency (CPPA) announced the first public drafts of two forthcoming sets of regulations relating to the California Consumer Privacy Act and California Privacy Rights Act. These “discussion” drafts focus on new requirements related to cybersecurity audits, privacy risk assessments, AI, and automated decision-making. In this episode, Scott Loughlin, co-lead of the Hogan Lovells Privacy and Cybersecurity practice, is joined by Hogan Lovells senior associate Aaron Lariviere to explain the context for the draft regulations, to walk through key features of the privacy risk assessment regulations, and to explore the potential impacts these regulations will have for businesses. Scott Loughlin: Contact Aaron Lariviere: Contact

Two weeks after this video was published, a new amendment to a bill (AB-1757) was proposed that would require WCAG 2.1 AA conformance of websites and mobile apps. The bill would have far reaching consequences. You can read about it here: https://krisrivenburgh.medium.com/ab-1757-new-california-bill-would-increase-website-accessibility-lawsuits-across-u-s-d68157c70304 Kris Rivenburgh covers the state of ADA Website Compliance in California. The two primary laws in play are the Americans with Disabilities Act (ADA) and the California Unruh Civil Rights Act (Unruh Act). Also, one huge and recent development is online-only can no longer be effectively sued in California state or federal court. Additionally, litigation may happen randomly or a number of businesses within a specific niche or industry may be sued. Industries targeted include dentists, plastic surgeons, restaurants, bike shops, breweries, and cannabis shops among others. California plaintiffs law firms that have been involved in litigation include Pacific Trial Attorneys, Manning Law, The Hill Law Firm, Potter Handy (Center for Disability Access), and The Wilshire Law Firm. Also note that the California Consumer Privacy Act also touches upon website accessibility. You can watch my video on the CCPA here: https://www.youtube.com/watch?v=jAxlN6NVqh0 #CaliforniaADAWebsiteCompliance #ADAComplianceCalifornia #CaliforniaWebsiteAccessibility Kris designed the ADA Compliance Program as a done-for-you (DFY) service for website owners. The ADA Compliance Program audits and remediates your website for $4,999 (for most websites). Find out more at https://accessible.org. Kris designed the ADA Compliance Course (ACC) as instructions you can give your team to fix the most commonly claimed issues in ADA website lawsuits. The ACC is really an SOP for your web team. Your team can get started in minutes at https://ADACompliance.net. Kris created the WCAG Course so that you can learn about website accessibility and train your digital team. The WCAG Course comes with video lessons, full explanations, code examples, and an Excel spreadsheet. Start the WCAG Course now at https://WCAGCourse.com. Kris created Audits 101 so that you can learn how to audit a website against the WCAG 2.1 AA technical standards. Learn how to conduct an accessibility audit at https://Audits101.com. Connect with Kris directly on LinkedIn: https://www.linkedin.com/company/adabook https://www.linkedin.com/in/krisrivenburgh Kris offers accessibility services including WCAG 2.1 AA manual audits and remediation at https://accessible.org. Kris also wrote the book on ADA compliance for digital assets. You can find out more about The ADA Book at https://ADABook.com. Transcript: https://adabook.com/ada-website-compliance-california/

California's data privacy regulations, primarily embodied in the California Consumer Privacy Act (CCPA) and its extension through the California Privacy Rights Act (CPRA), constitute a pioneering and influential framework. These regulations, effective from 2018 and further strengthened in 2020, set a standard for data protection not only within the state but also across the national and global economy. In this episode of Corruption, Crime and Compliance, Michael Volkov explores the nuances of the CCPA and CPRA, and the evolving data privacy landscape.You'll hear Michael talk about:The lack of a federal data privacy law in the United States has led to a complex patchwork of state laws. Businesses are faced with the challenge of navigating these varied regulations, which contributes to compliance complexities.California, through the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), is a leader in data privacy regulation in the United States, with implications for both the national and global economy. The CPRA, enacted in 2020, establishes the California Privacy Protection Agency (CPPA) to enforce the law robustly.The CPRA introduces critical changes, including: Protection of employee and business-to-business personal information, which is now subject to the same privacy protections as consumer personal information. Enhanced consumer rights, such as the right to access, delete, and correct their personal information, and the right to opt out of the sale of their personal information.Companies are now obligated to implement reasonable security precautions and undergo annual cybersecurity audits and risk assessments.In addition to California, other states such as Virginia, Colorado, Utah, Iowa, and Connecticut have also enacted data privacy laws that echo the GDPR. Businesses must stay up-to-date on evolving compliance requirements and adapt their systems accordingly.Compliance issues comprise risk assessments, impact assessments, adherence to data breach requirements, and compliance with notification standards. Companies are developing systems based on the most stringent set of laws to guarantee compliance.KEY QUOTES“We have a patchwork of laws that apply in the United States. Unfortunately, we continue to suffer from the absence of a federal data privacy and breach notification law. Congress has tried for years to broker a deal here, but it has never been able to overcome strong lobbying forces. Whether it's high tech trial lawyers, law enforcement, or other gadflies, the public continues to suffer.” - Michael Volkov“Many commentators have suggested that California's data privacy laws and regulations are starting to look closer and closer to the EU's GDPR regime.” - Michael Volkov“To me, we're getting into a more strict regulation. We already have, under the California Consumer Privacy Act, a requirement to have on your website: an ‘opt out' in terms of any information that you may provide to a website, that it can't be used by the entity for sharing or selling or whatever consumer products purposes. So keep tabs on the California events.” - Michael VolkovResourcesMichael Volkov on LinkedIn | TwitterThe Volkov Law Group

Ispire Technology reports 100.4% YoY revenue growth, Benzinga Cannabis Capital Conference returns to Chicago, Google accuses EU of overreach with 2.4 billion euros fine, Disney to invest 60 billion dollars in theme parks and cruises, BP appoints Kate Thomson as interim CFO, global medical device coating market projected to reach $11.2 billion by 2028, Gentry Lane discusses cyberwar threats, Chris Boulden emphasizes technology's role in the ingredients industry, Derek Slager advises on complying with California Consumer Privacy Act, Boulder iQ appoints Jeremy Anderson as Director of Business Development, Purpose Life Sciences adds Jeff Kindler and Calum MacRae to Strategic Advisory Board.

This week on Android Faithful, Huyen Tue Dao, Mishaal Rahman and Ron Richards are joined by Mary Ross, Chief Privacy Officer of OSOM Products, o get some insight into Data Privacy and how it affects the world of Android along with the usual fun we have covering the past week of Android.Featured in this episode:DISCUSSION: Mary Ross's journey with data privacy, ranging from co-authoring the California Consumer Privacy Act legislation and it's impact on technology to her joining OSOM Products and continuing to walk the walk when it comes to data privacy in tech.NEWS: Google and Android celebrate the latest ART impact on millions of devices, plus Google Calendar starts to play nice with Microsoft OutlookHARDWARE: OPPO confirms the Find N3 Flip (and Huyen loves it), Qualcomm getting Snapdragon into gaming devices, and the reports of the ASUS ZenFone's death was great exxagerated.APPS: Google Search goes all in on Stories, YouTube Music touts RSS for podcasts, but Ron isn't having it and rants instead. Samsung gets real about how much data is used by its bloatware.Check out Mary Ross's work at OSOM Products at https://www.osomprivacy.com/ Hosted on Acast. See acast.com/privacy for more information.

Please join Troutman Pepper Partner Chris Willis and his colleague Kim Phan as they discuss the new California Privacy Rights Act (CPRA) and the creation of the California Privacy Protection Agency (CPPA), California's first state agency focused exclusively on privacy. They also dive into the CPPA's recent amendments to the California Consumer Privacy Act (CCPA), discussing the timeline, overview, and technical guidance for companies. And with 23 topical areas of regulation — what we can expect from the CPRA's next set of rules.

Oregon, California, and TikTok top the list of data privacy developments of June 2023. Tune in for how Oregon's new data privacy statute blends the best of California and other state statutes for a comprehensive code and adds a unique twist about who can enforce it. Learn how a California court extended the effective date of a California agency's regulations drafted to implement the Golden State's pioneering California Consumer Privacy Act. Consider a whistleblower's sworn testimony that contradicts TikTok's long-held position that it does not and will not share personal data of TikTok users with the Chinese Government, despite Chinese law intended to require such reporting on demand. In concise analysis that digs beneath the deadlines, Yugo Nagashima and Brion St. Amour, attorneys on the Data Security and Privacy Team of Frost Brown Todd LLP, share their insights with that of the Data Privacy Detective. Join our podcasts on the first Thursday of each month to probe three top developments from the prior month. Time Stamps: 01:04 — Oregon 05:41 — California 08:32 — TikTok

In this episode of OnAir with Akin, cybersecurity, privacy & data protection practice co-head Michelle Reed and counsel Molly Whitman and Lauren York discuss the newly published third edition of the firm's annual CCPA Litigation and Enforcement Report, which, through analysis of hundreds of cases, provides readers with a clear view of the landscape in this fourth year of the California Consumer Privacy Act. Among the topics covered: ·         2022 CCPA litigation overview. ·         Key statistics and trends from the report. ·         Industries hardest hit by CCPA lawsuits. ·         Important takeaways for businesses in California.

Tune in to the second episode of Ropes & Gray's podcast series The Data Day, brought to you by the firm's data, privacy & cybersecurity practice. This series focuses on the day-to-day effects that data has on all of our lives as well as other exciting and interesting legal and regulatory developments in the world of data, and will feature a range of guests, including clients, regulators and colleagues. On this episode, hosts Fran Faircloth, a partner in Ropes & Gray's Washington, D.C. office, and Edward Machin, a London-based associate, are joined by special guest Kevin Angle, a Boston-based counsel. Join us as we discuss recent enforcement by the California Attorney General, including a new round of enforcement sweeps, actions by the California Privacy Protection Agency, and the relationship between the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). 

Tune in to the second episode of Ropes & Gray's podcast series The Data Day, brought to you by the firm's data, privacy & cybersecurity practice. This series focuses on the day-to-day effects that data has on all of our lives as well as other exciting and interesting legal and regulatory developments in the world of data, and will feature a range of guests, including clients, regulators and colleagues. On this episode, hosts Fran Faircloth, a partner in Ropes & Gray's Washington, D.C. office, and Edward Machin, a London-based associate, are joined by special guest Kevin Angle, a Boston-based counsel. Join us as we discuss recent enforcement by the California Attorney General, including a new round of enforcement sweeps, actions by the California Privacy Protection Agency, and the relationship between the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). 

California has long led the way on many privacy-related laws, going back to at least 2002 when it passed the first data breach notification law in the U.S. More recently, passage of the California Consumer Privacy Act and the California Privacy Rights Act has prompted other states to follow suit. Baker McKenzie Partner Lothar Determann has long practiced and taught international data privacy law, and beginning in 2013, published the book, “California Privacy Law.” Now in its fifth edition and published by the IAPP for the last three editions, the new edition comes as the CPRA goes into effect, with implementing regulations on the way. IAPP Editorial Director Jedidiah Bracy caught up with Determann to talk about the California's privacy regime, what companies should be doing to comply, what's new in the updated book, and what's on the horizon for federal and state privacy law in the U.S. and beyond.

Kris Rivenburgh explains that while the California Consumer Privacy Act (CCPA) does require accessibility / WCAG 2.1 AA conformance, remediation of your entire website is not technically required. Rather, the CCPA is focused on the ability to access privacy information and submit a request to delete personal information and/or opt out of the sale of your personal information. Resources: https://leginfo.legislature.ca.gov/faces/codes_displayText.xhtml?division=3.&part=4.&lawCode=CIV&title=1.81.5 https://oag.ca.gov/sites/all/files/agweb/pdfs/privacy/ccpa-add-adm.pdf Kris offers accessibility services including WCAG 2.1 AA manual audits and remediation at https://accessible.org. Kris also wrote the book on ADA compliance for digital assets. You can find out more about The ADA Book at https://ADABook.com. Transcript: https://adabook.com/ccpa-website-accessibility-california-consumer/

This will be a big change for all businesses, but particularly for B2B companies.  This session will provide an overview of the new requirements under the California Privacy Rights Act (CPRA) with a focus on the expiring exemptions and what companies need to do to extend their CCPA compliance programs.

The California Consumer Privacy Act and the California Privacy Rights Act exemptions for employee, applicant, and business-to-business data are set to expire on January 1, 2023. How can employers prepare? Epstein Becker Green's Brian Cesaratto has more. Visit our site for this week's Other Highlights and links: https://www.ebglaw.com/eltw277 Subscribe to #WorkforceWednesday: https://www.ebglaw.com/subscribe/. Visit http://www.EmploymentLawThisWeek.com. The EMPLOYMENT LAW THIS WEEK® and DIAGNOSING HEALTH CARE podcasts are presented by Epstein Becker & Green, P.C. All rights are reserved. This audio recording includes information about legal issues and legal developments.  Such materials are for informational purposes only and may not reflect the most current legal developments.  These informational materials are not intended, and should not be taken, as legal advice on any particular set of facts or circumstances, and these materials are not a substitute for the advice of competent counsel. The content reflects the personal views and opinions of the participants. No attorney-client relationship has been created by this audio recording. This audio recording may be considered attorney advertising in some jurisdictions under the applicable law and ethical rules. The determination of the need for legal services and the choice of a lawyer are extremely important decisions and should not be based solely upon advertisements or self-proclaimed expertise. No representation is made that the quality of the legal services to be performed is greater than the quality of legal services performed by other lawyers.

In January 2020, the California Consumer Privacy Act will go into effect and change marketing forever. At the same time, a decade of increased marketing budgets and growing technology stacks have failed to deliver customized content experiences at scale that consistently lead to more conversions and higher sales.  The struggle is real in dealing with media and data volatility, but there's no challenge that can't be leveraged for greater marketing success. Let's discuss five ways how you can be a compliant, lean, and productive content marketer by the end of 2019.  5 Takeaways for Participants  · Grasp the need for customer data platforms and better data governance, ready for tightening privacy regulations. · Obtain a holistic view of each customer and unique audience segments in the data you have today. · Forget personas, and turn customer journey mapping into the real-time analysis of what customers want and how they behave. · Reduce operating expenses and drive higher sales. · Leverage machine learning to develop better content and influence the product development process.Check out upcoming DigiMarCon Digital Marketing, Media, and Advertising Conferences & Exhibitions Worldwide at https://digimarcon.com/events/

In January of 2020, the California Consumer Privacy Act will go into effect and change marketing forever. At the same time, a decade of increased marketing budgets and growing technology stacks have failed to deliver customized content experiences at scale that consistently lead to more conversions and higher sales.  The struggle is real in dealing with media and data volatility, but there's no challenge that can't be leveraged for greater marketing success. Let's discuss five ways how you can be a compliant, lean, and productive content marketer by the end of 2019.  5 Takeaways for Participants  · Grasp the need for customer data platforms and better data governance, ready for tightening privacy regulations. · Obtain a holistic view of each customer and unique audience segments in the data you have today. · Forget personas, and turn customer journey mapping into the real-time analysis of what customers want and how they behave. · Reduce operating expenses and drive higher sales. · Leverage machine learning to develop better content and influence the product development process.Check out upcoming DigiMarCon Digital Marketing, Media, and Advertising Conferences & Exhibitions Worldwide at https://digimarcon.com/events/

Please join Consumer Financial Services Partner Chris Willis and his colleagues Ron Raether and Kim Phan, partners in our Privacy + Cyber Practice Group, as they discuss recent privacy and data security updates in the consumer financial services industry. Topics include:The CFPB's and FTC's regulatory stance on privacy and data security issues;The current landscape of privacy legislation; andEmerging trends in privacy and data security litigation, including the status of litigation under the California Consumer Privacy Act, and how businesses can protect themselves going forward.Ron Raether has helped companies navigate federal and state privacy laws for over 20 years. He has effectively defended hundreds of privacy and data security putative class actions. Ron's experience is unique in the number of privacy cases litigated through class and substantive issue motions, including defending those successes in the appellate courts.Kim Phan counsels financial institutions in complying with federal and state privacy and data security statutes and regulations. She also guides clients on regulatory compliance matters, including supervisory and enforcement interactions with the CFPB, the FTC, and state attorneys general and departments of consumer protection.

In January 2020, the California Consumer Privacy Act will go into effect and change marketing forever. At the same time, a decade of increased marketing budgets and growing technology stacks have failed to deliver customized content experiences at scale that consistently lead to more conversions and higher sales.  The struggle is real in dealing with media and data volatility, but there's no challenge that can't be leveraged for greater marketing success. Let's discuss five ways how you can be a compliant, lean, and productive content marketer by the end of 2019.  5 Takeaways for Participants  · Grasp the need for customer data platforms and better data governance, ready for tightening privacy regulations. · Obtain a holistic view of each customer and unique audience segments in the data you have today. · Forget personas, and turn customer journey mapping into the real-time analysis of what customers want and how they behave. · Reduce operating expenses and drive higher sales. · Leverage machine learning to develop better content and influence the product development process.Check out upcoming DigiMarCon Digital Marketing, Media, and Advertising Conferences & Exhibitions Worldwide at https://digimarcon.com/events/

In this episode of The Workplace podcast, CalChamber employment law expert Matthew Roberts and CalChamber policy advocate Ashley Hoffman discuss the current state of the California Consumer Privacy Act (CCPA) and how it will affect employers starting January 1, 2023.

On this episode of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal of Outschool catch up on a week in privacy. This week is all about the C's - COPPA, code, California, Cuba, Colombia, cars, consultations, and more. We talk about the new age appropriate design code bill that is before the CA governor for signature. It is expected to pass in spite of the opposition against it. Cuba's new law is covered, but we only touch on Colombia because we have an upcoming guest for that topic. The new CNIL enforcement against UBEEQO is wonderfully instructive in its findings, if not its recommendations. And also the Sephora settlement in California under the California Consumer Privacy Act, addressing the “sell” of data, service providers' contracts, and notice. The slightly unexpected aspect centering on GPC, Global Privacy Control.Join us for an enlightening and entertaining conversation, with a couple of bloopers for the listeners - someone suggested that we give y'all a treat with outtakes, so one day, we may put together a special episode (and it's not just K who bloops). As always, if you have comments or questions, let us know - LinkedIn, Twitter @podcastprivacy @euroPaulB @heartofprivacy @trustArc and email seriousprivacy@trustarc.com. Please do like and write comments on your favorite podcast act so other professionals can find us easier. 

About SheeriAfter almost 2 decades as a database administrator and award-winning thought leader, Sheeri Cabral pivoted to technical product management. Her super power of “new customer” empathy informs her presentations and explanations. Sheeri has developed unique insights into working together and planning, having survived numerous reorganizations, “best practices”, and efficiency models. Her experience is the result of having worked at everything from scrappy startups such as Guardium – later bought by IBM – to influential tech companies like Mozilla and MongoDB, to large established organizations like Salesforce.Links Referenced: Collibra: https://www.collibra.com WildAid GitHub: https://github.com/wildaid Twitter: https://twitter.com/sheeri Personal Blog: https://sheeri.org TranscriptAnnouncer: Hello, and welcome to Screaming in the Cloud with your host, Chief Cloud Economist at The Duckbill Group, Corey Quinn. This weekly show features conversations with people doing interesting work in the world of cloud, thoughtful commentary on the state of the technical world, and ridiculous titles for which Corey refuses to apologize. This is Screaming in the Cloud.Corey: This episode is sponsored by our friends at Fortinet. Fortinet's partnership with AWS is a better-together combination that ensures your workloads on AWS are protected by best-in-class security solutions powered by comprehensive threat intelligence and more than 20 years of cybersecurity experience. Integrations with key AWS services simplify security management, ensure full visibility across environments, and provide broad protection across your workloads and applications. Visit them at AWS re:Inforce to see the latest trends in cybersecurity on July 25-26 at the Boston Convention Center. Just go over to the Fortinet booth and tell them Corey Quinn sent you and watch for the flinch. My thanks again to my friends at Fortinet.Corey: Let's face it, on-call firefighting at 2am is stressful! So there's good news and there's bad news. The bad news is that you probably can't prevent incidents from happening, but the good news is that incident.io makes incidents less stressful and a lot more valuable. incident.io is a Slack-native incident management platform that allows you to automate incident processes, focus on fixing the issues and learn from incident insights to improve site reliability and fix your vulnerabilities. Try incident.io, recover faster and sleep more.Corey: Welcome to Screaming in the Cloud, I'm Corey Quinn. My guest today is Sheeri Cabral, who's a Senior Product Manager of ETL lineage at Collibra. And that is an awful lot of words that I understand approximately none of, except maybe manager. But we'll get there. The origin story has very little to do with that.I was following Sheeri on Twitter for a long time and really enjoyed the conversations that we had back and forth. And over time, I started to realize that there were a lot of things that didn't necessarily line up. And one of the more interesting and burning questions I had is, what is it you do, exactly? Because you're all over the map. First, thank you for taking the time to speak with me today. And what is it you'd say it is you do here? To quote a somewhat bizarre and aged movie now.Sheeri: Well, since your listeners are technical, I do like to match what I say with the audience. First of all, hi. Thanks for having me. I'm Sheeri Cabral. I am a product manager for technical and ETL tools and I can break that down for this technical audience. If it's not a technical audience, I might say something—like if I'm at a party, and people ask what I do—I'll say, “I'm a product manager for technical data tool.” And if they ask what a product manager does, I'll say I helped make sure that, you know, we deliver a product the customer wants. So, you know, ETL tools are tools that transform, extract, and load your data from one place to another.Corey: Like AWS Glue, but for some of them, reportedly, you don't have to pay AWS by the gigabyte-second.Sheeri: Correct. Correct. We actually have an AWS Glue technical lineage tool in beta right now. So, the technical lineage is how data flows from one place to another. So, when you're extracting, possibly transforming, and loading your data from one place to another, you're moving it around; you want to see where it goes. Why do you want to see where it goes? Glad you asked. You didn't really ask. Do you care? Do you want to know why it's important?Corey: Oh, I absolutely do. Because it's—again, people who are, like, “What do you do?” “Oh, it's boring, and you won't care.” It's like when people aren't even excited themselves about what they work on, it's always a strange dynamic. There's a sense that people aren't really invested in what they do.I'm not saying you have to have this overwhelming passion and do this in your spare time, necessarily, but you should, at least in an ideal world, like what you do enough to light up a bit when you talk about it. You very clearly do. I'm not wanting to stop you. Please continue.Sheeri: I do. I love data and I love helping people. So, technical lineage does a few things. For example, a DBA—which I used to be a DBA—can use technical lineage to predict the impact of a schema update or migration, right? So, if I'm going to change the name of this column, what uses it downstream? What's going to be affected? What scripts do I need to change? Because if the name changes other thing—you know, then I need to not get errors everywhere.And from a data governance perspective, which Collibra is data governance tool, it helps organizations see if, you know, you have private data in a source, does it remain private throughout its journey, right? So, you can take a column like email address or government ID number and see where it's used down the line, right? GDPR compliance, CCPA compliance. The CCPA is a little newer; people might not know that acronym. It's California Consumer Privacy Act.I forget what GDPR is, but it's another privacy act. It also can help the business see where data comes from so if you have technical lineage all the way down to your reports, then you know whether or not you can trust the data, right? So, you have a report and it shows salary ranges for job titles. So, where did the data come from? Did it come from a survey? Did it come from job sites? Or did it come from a government source like the IRS, right? So, now you know, like, what you get to trust the most.Corey: Wait, you can do that without a blockchain? I kid, I kid, I kid. Please don't make me talk about blockchains. No, it's important. The provenance of data, being able to establish a almost a chain-of-custody style approach for a lot of these things is extraordinarily important.Sheeri: Yep.Corey: I was always a little hazy on the whole idea of ETL until I started, you know, working with large-volume AWS bills. And it turns out that, “Well, why do you have to wind up moving and transforming all of these things?” “Oh, because in its raw form, it's complete nonsense. That's why. Thank you for asking.” It becomes a problem—Sheeri: [laugh]. Oh, I thought you're going to say because AWS has 14 different products for things, so you have to move it from one product to the other to use the features.Corey: And two of them are good. It's a wild experience.Sheeri: [laugh].Corey: But this is also something of a new career for you. You were a DBA for a long time. You're also incredibly engaging, you have a personality, you're extraordinarily creative, and that—if I can slander an entire profession for a second—does not feel like it is a common DBA trait. It's right up there with an overly creative accountant. When your accountant has done a stand-up comedy, you're watching and you're laughing and thinking, “I am going to federal prison.” It's one of those weird things that doesn't quite gel, if we're speaking purely in terms of stereotypes. What has your career been like?Sheeri: I was a nerd growing up. So, to kind of say, like, I have a personality, like, my personality is very nerdish. And I get along with other nerdy people and we have a lot of fun, but when I was younger, like, when I was, I don't know, seven or eight, one of the things I really love to do is I had a penny collection—you know, like you do—and I love to sort it by date. So, in the states anyway, we have these pennies that have the date that they were minted on it. And so, I would organize—and I probably had, like, five bucks worth a pennies.So, you're talking about 500 pennies and I would sort them and I'd be like, “Oh, this is 1969. This was 1971.” And then when I was done, I wanted to sort things more, so I would start to, like, sort them in order how shiny the pennies were. So, I think that from an early age, it was clear that I wanted to be a DBA from that sorting of my data and ordering it, but I never really had a, like, “Oh, I want to be this when I grew up.” I kind of had a stint when I was in, like, middle school where I was like, maybe I'll be a creative writer and I wasn't as creative a writer as I wanted to be, so I was like, “Ah, whatever.”And I ended up actually coming to computer science just completely through random circumstance. I wanted to do neuroscience because I thought it was completely fascinating at how the brain works and how, like, you and I are, like, 99.999—we're, like, five-nines the same except for, like, a couple of genetic, whatever. But, like, how our brain wiring right how the neuron, how the electricity flows through it—Corey: Yeah, it feels like I want to store a whole bunch of data, that's okay. I'll remember it. I'll keep it in my head. And you're, like, rolling up the sleeves and grabbing, like, the combination software package off the shelf and a scalpel. Like, “Not yet, but you're about to.” You're right, there is an interesting point of commonality on this. It comes down to almost data organization and the—Sheeri: Yeah.Corey: —relationship between data nodes if that's a fair assessment.Sheeri: Yeah. Well, so what happened was, so I went to university and in order to take introductory neuroscience, I had to take, like, chemistry, organic chemistry, biology, I was basically doing a pre-med track. And so, in the beginning of my junior year, I went to go take introductory neuroscience and I got a D-minus. And a D-minus level doesn't even count for the major. And I'm like, “Well, I want to graduate in three semesters.”And I had this—I got all my requirements done, except for the pesky little major thing. So, I was already starting to take, like, a computer science, you know, basic courses and so I kind of went whole-hog, all-in did four or five computer science courses a semester and got my degree in computer science. Because it was like math, so it kind of came a little easy to me. So taking, you know, logic courses, and you know, linear algebra courses was like, “Yeah, that's great.” And then it was the year 2000, when I got my bachelor's, the turn of the century.And my university offered a fifth-year master's degree program. And I said, I don't know who's going to look at me and say, conscious bias, unconscious bias, “She's a woman, she can't do computer science, so, like, let me just get this master's degree.” I, like, fill out a one page form, I didn't have to take a GRE. And it was the year 2000. You were around back then.You know what it was like. The jobs were like—they were handing jobs out like candy. I literally had a friend who was like, “My company”—that he founded. He's like, just come, you know, it's Monday in May—“Just start, you will just bring your resume the first day and we'll put it on file.” And I was like, no, no, I have this great opportunity to get a master's degree in one year at 25% off the cost because I got a tuition reduction or whatever for being in the program. I was like, “What could possibly go wrong in one year?”And what happened was his company didn't exist the next year, and, like, everyone was in a hiring freeze in 2001. So, it was the best decision I ever made without really knowing because I would have had a job for six months had been laid off with everyone else at the end of 2000 and… and that's it. So, that's how I became a DBA is I, you know, got a master's degree in computer science, really wanted to use databases. There weren't any database jobs in 2001, but I did get a job as a sysadmin, which we now call SREs.Corey: Well, for some of the younger folks in the audience, I do want to call out the fact that regardless of how they think we all rode dinosaurs to school, databases did absolutely exist back in that era. There's a reason that Oracle is as large as it is of a company. And it's not because people just love doing business with them, but technology was head and shoulders above everything else for a long time, to the point where people worked with them in spite of their reputation, not because of it. These days, it seems like in the database universe, you have an explosion of different options and different ways that are great at different things. The best, of course, is Route 53 or other DNS TXT records. Everything else is competing for second place on that. But no matter what it is, you're after, there are options available. This was not the case back then. It was like, you had a few options, all of them with serious drawbacks, but you had to pick your poison.Sheeri: Yeah. In fact, I learned on Postgres in university because you know, that was freely available. And you know, you'd like, “Well, why not MySQL? Isn't that kind of easier to learn?” It's like, yeah, but I went to college from '96 to 2001. MySQL 1.0 or whatever was released in '95. By the time I graduated, it was six years old.Corey: And academia is not usually the early adopter of a lot of emerging technologies like that. That's not a dig on them any because otherwise, you wind up with a major that doesn't exist by the time that the first crop of students graduates.Sheeri: Right. And they didn't have, you know, transactions. They didn't have—they barely had replication, you know? So, it wasn't a full-fledged database at the time. And then I became a MySQL DBA. But yeah, as a systems administrator, you know, we did websites, right? We did what web—are they called web administrators now? What are they called? Web admins? Webmaster?Corey: Web admins, I think that they became subsumed into sysadmins, by and large and now we call them DevOps, or SRE, which means the exact same thing except you get paid 60% more and your primary job is arguing about which one of those you're not.Sheeri: Right. Right. Like we were still separated from network operations, but database stuff that stuff and, you know, website stuff, it's stuff we all did, back when your [laugh] webmail was your Horde based on PHP and you had a database behind it. And yeah, it was fun times.Corey: I worked at a whole bunch of companies in that era. And that's where basically where I formed my early opinion of a bunch of DBA-leaning sysadmins. Like the DBA in and a lot of these companies, it was, I don't want to say toxic, but there's a reason that if I were to say, “I'm writing a memoir about a career track in tech called The Legend of Surly McBastard,” people are going to say, “Oh, is it about the DBA?” There's a reason behind this. It always felt like there was a sense of elitism and a sense of, “Well, that's not my job, so you do your job, but if anything goes even slightly wrong, it's certainly not my fault.” And to be fair, all of these fields have evolved significantly since then, but a lot of those biases that started early in our career are difficult to shake, particularly when they're unconscious.Sheeri: They are. I'd never ran into that person. Like, I never ran into anyone who—like a developer who treated me poorly because the last DBA was a jerk and whatever, but I heard a lot of stories, especially with things like granting access. In fact, I remember, my first job as an actual DBA and not as a sysadmin that also the DBA stuff was at an online gay dating site, and the CTO rage-quit. Literally yelled, stormed out of the office, slammed the door, and never came back.And a couple of weeks later, you know, we found out that the customer service guys who were in-house—and they were all guys, so I say guys although we also referred to them as ladies because it was an online gay dating site.Corey: Gals works well too, in those scenarios. “Oh, guys is unisex.” “Cool. So's ‘gals' by that theory. So gals, how we doing?” And people get very offended by that and suddenly, yeah, maybe ‘folks' is not a terrible direction to go in. I digress. Please continue.Sheeri: When they hired me, they were like, are you sure you're okay with this? I'm like, “I get it. There's, like, half-naked men posters on the wall. That's fine.” But they would call they'd be, like, “Ladies, let's go to our meeting.” And I'm like, “Do you want me also?” Because I had to ask because that was when ladies actually might not have included me because they meant, you know.Corey: I did a brief stint myself as the director of TechOps at Grindr. That was a wild experience in a variety of different ways.Sheeri: Yeah.Corey: It's over a decade ago, but it was still this… it was a very interesting experience in a bunch of ways. And still, to this day, it remains the single biggest source of InfoSec nightmares that kept me awake at night. Just because when I'm working at a bank—which I've also done—it's only money, which sounds ridiculous to say, especially if you're in a regulated profession, but here in reality where I'm talking about it, it's I'm dealing instead, with cool, this data leaks, people will die. Most of what I do is not life or death, but that was and that weighed very heavily on me.Sheeri: Yeah, there's a reason I don't work for a bank or a hospital. You know, I make mistakes. I'm human, right?Corey: There's a reason I work on databases for that exact same reason. Please, continue.Sheeri: Yeah. So, the CTO rage-quit. A couple of weeks later, the head of customer service comes to me and be like, “Can we have his spot as an admin for customer service?” And I'm like, “What do you mean?” He's like, “Well, he told us, we had, like, ten slots of permission and he was one of them so we could have have, like, nine people.”And, like, I went and looked, and they put permission in the htaccess file. So, this former CTO had just wielded his power to be like, “Nope, can't do that. Sorry, limitations.” When there weren't any. I'm like, “You could have a hundred. You want every customer service person to be an admin? Whatever. Here you go.” So, I did hear stories about that. And yeah, that's not the kind of DBA I was.Corey: No, it's the more senior you get, the less you want to have admin rights on things. But when I leave a job, like, the number one thing I want you to do is revoke my credentials. Not—Sheeri: Please.Corey: Because I'm going to do anything nefarious; because I don't want to get blamed for it. Because we have a long standing tradition in tech at a lot of places of, “Okay, something just broke. Whose fault is it? Well, who's the most recent person to leave the company? Let's blame them because they're not here to refute the character assassination and they're not going to be angling for a raise here; the rest of us are so let's see who we can throw under the bus that can't defend themselves.” Never a great plan.Sheeri: Yeah. So yeah, I mean, you know, my theory in life is I like helping. So, I liked helping developers as a DBA. I would often run workshops to be like, here's how to do an explain and find your explain plan and see if you have indexes and why isn't the database doing what you think it's supposed to do? And so, I like helping customers as a product manager, right? So…Corey: I am very interested in watching how people start drifting in a variety of different directions. It's a, you're doing product management now and it's an ETL lineage product, it is not something that is directly aligned with your previous positioning in the market. And those career transitions are always very interesting to me because there's often a mistaken belief by people in their career realizing they're doing something they don't want to do. They want to go work in a different field and there's this pervasive belief that, “Oh, time for me to go back to square one and take an entry level job.” No, you have a career. You have experience. Find the orthogonal move.Often, if that's challenging because it's too far apart, you find the half-step job that blends the thing you do now with something a lot closer, and then a year or two later, you complete the transition into that thing. But starting over from scratch, it's why would you do that? I can't quite wrap my head around jumping off the corporate ladder to go climb another one. You very clearly have done a lateral move in that direction into a career field that is surprisingly distant, at least in my view. How'd that happen?Sheeri: Yeah, so after being on call for 18 years or so, [laugh] I decided—no, I had a baby, actually. I had a baby. He was great. And then I another one. But after the first baby, I went back to work, and I was on call again. And you know, I had a good maternity leave or whatever, but you know, I had a newborn who was six, eight months old and I was getting paged.And I was like, you know, this is more exhausting than having a newborn. Like, having a baby who sleeps three hours at a time, like, in three hour chunks was less exhausting than being on call. Because when you have a baby, first of all, it's very rare that they wake up and crying in the midnight it's an emergency, right? Like they have to go to the hospital, right? Very rare. Thankfully, I never had to do it.But basically, like, as much as I had no brain cells, and sometimes I couldn't even go through this list, right: they need to be fed; they need to be comforted; they're tired, and they're crying because they're tired, right, you can't make them go to sleep, but you're like, just go to sleep—what is it—or their diaper needs changing, right? There's, like, four things. When you get that beep of that pager in the middle of the night it could be anything. It could be logs filling up disk space, you're like, “Alright, I'll rotate the logs and be done with it.” You know? It could be something you need snoozed.Corey: “Issue closed. Status, I no longer give a shit what it is.” At some point, it's one of those things where—Sheeri: Replication lag.Corey: Right.Sheeri: Not actionable.Corey: Don't get me started down that particular path. Yeah. This is the area where DBAs and my sysadmin roots started to overlap a bit. Like, as the DBA was great at data analysis, the table structure and the rest, but the backups of the thing, of course that fell to the sysadmin group. And replication lag, it's, “Okay.”“It's doing some work in the middle of the night; that's normal, and the network is fine. And why are you waking me up with things that are not actionable? Stop it.” I'm yelling at the computer at that point, not the person—Sheeri: Right,right.Corey: —to be very clear. But at some point, it's don't wake me up with trivial nonsense. If I'm getting woken up in the middle of the night, it better be a disaster. My entire business now is built around a problem that's business-hours only for that explicit reason. It's the not wanting to deal with that. And I don't envy that, but product management. That's a strange one.Sheeri: Yeah, so what happened was, I was unhappy at my job at the time, and I was like, “I need a new job.” So, I went to, like, the MySQL Slack instance because that was 2018, 2019. Very end of 2018, beginning of 2019. And I said, “I need something new.” Like, maybe a data architect, or maybe, like, a data analyst, or data scientist, which was pretty cool.And I was looking at data scientist jobs, and I was an expert MySQL DBA and it took a long time for me to be able to say, “I'm an expert,” without feeling like oh, you're just ballooning yourself up. And I was like, “No, I'm literally a world-renowned expert DBA.” Like, I just have to say it and get comfortable with it. And so, you know, I wasn't making a junior data scientist's salary. [laugh].I am the sole breadwinner for my household, so at that point, I had one kid and a husband and I was like, how do I support this family on a junior data scientist's salary when I live in the city of Boston? So, I needed something that could pay a little bit more. And a former I won't even say coworker, but colleague in the MySQL world—because is was the MySQL Slack after all—said, “I think you should come at MongoDB, be a product manager like me.”Corey: This episode is sponsored in part by Honeycomb. When production is running slow, it's hard to know where problems originate. Is it your application code, users, or the underlying systems? I've got five bucks on DNS, personally. Why scroll through endless dashboards while dealing with alert floods, going from tool to tool to tool that you employ, guessing at which puzzle pieces matter? Context switching and tool sprawl are slowly killing both your team and your business. You should care more about one of those than the other; which one is up to you. Drop the separate pillars and enter a world of getting one unified understanding of the one thing driving your business: production. With Honeycomb, you guess less and know more. Try it for free at honeycomb.io/screaminginthecloud. Observability: it's more than just hipster monitoring. Corey: If I've ever said, “Hey, you should come work with me and do anything like me,” people will have the blood drain from their face. And like, “What did you just say to me? That's terrible.” Yeah, it turns out that I have very hard to explain slash predict, in some ways. It's always fun. It's always wild to go down that particular path, but, you know, here we are.Sheeri: Yeah. But I had the same question everybody else does, which was, what's a product manager? What does the product manager do? And he gave me a list of things a product manager does, which there was some stuff that I had the skills for, like, you have to talk to customers and listen to them.Well, I've done consulting. I could get yelled at; that's fine. You can tell me things are terrible and I have to fix it. I've done that. No problem with that. Then there are things like you have to give presentations about how features were okay, I can do that. I've done presentations. You know, I started the Boston MySQL Meetup group and ran it for ten years until I had a kid and foisted it off on somebody else.And then the things that I didn't have the skills in, like, running a beta program were like, “Ooh, that sounds fascinating. Tell me more.” So, I was like, “Yeah, let's do it.” And I talked to some folks, they were looking for a technical product manager for MongoDB's sharding product. And they had been looking for someone, like, insanely technical for a while, and they found me; I'm insanely technical.And so, that was great. And so, for a year, I did that at MongoDB. One of the nice things about them is that they invest in people, right? So, my manager left, the team was like, we really can't support someone who doesn't have the product management skills that we need yet because you know, I wasn't a master in a year, believe it or not. And so, they were like, “Why don't you find another department?” I was like, “Okay.”And I ended up finding a place in engineering communications, doing, like, you know, some keynote demos, doing some other projects and stuff. And then after—that was a kind of a year-long project, and after that ended, I ended up doing product management for developer relations at MongoDB. Also, this was during the pandemic, right, so this is 2019, until '21; beginning of 2019, to end of 2020, so it was, you know, three full years. You know, I kind of like woke up from the pandemic fog and I was like, “What am I doing? Do I want to really want to be a content product manager?” And I was like, “I want to get back to databases.”One of the interesting things I learned actually in looking for a job because I did it a couple of times at MongoDB because I changed departments and I was also looking externally when I did that. I had the idea when I became a product manager, I was like, “This is great because now I'm product manager for databases and so, I'm kind of leveraging that database skill and then I'll learn the product manager stuff. And then I can be a product manager for any technical product, right?”Corey: I like the idea. Of some level, it feels like the product managers likeliest to succeed at least have a grounding or baseline in the area that they're in. This gets into the age-old debate of how important is industry-specific experience? Very often you'll see a bunch of job ads just put that in as a matter of course. And for some roles, yeah, it's extremely important.For other roles it's—for example, I don't know, hypothetically, you're looking for someone to fix the AWS bill, it doesn't necessarily matter whether you're a services company, a product company, or a VC-backed company whose primary output is losing money, it doesn't matter because it's a bounded problem space and that does not transform much from company to company. Same story with sysadmin types to be very direct. But the product stuff does seem to get into that industry specific stuff.Sheeri: Yeah, and especially with tech stuff, you have to understand what your customer is saying when they're saying, “I have a problem doing X and Y,” right? The interesting part of my folly in that was that part of the time that I was looking was during the pandemic, when you know, everyone was like, “Oh, my God, it's a seller's market. If you're looking for a job, employers are chomping at the bit for you.” And I had trouble finding something because so many people were also looking for jobs, that if I went to look for something, for example, as a storage product manager, right—now, databases and storage solutions have a lot in common; databases are storage solutions, in fact; but file systems and databases have much in common—but all that they needed was one person with file system experience that had more experience than I did in storage solutions, right? And they were going to choose them over me. So, it was an interesting kind of wake-up call for me that, like, yeah, probably data and databases are going to be my niche. And that's okay because that is literally why they pay me the literal big bucks. If I'm going to go niche that I don't have 20 years of experience and they shouldn't pay me as big a bucks right?Corey: Yeah, depending on what you're doing, sure. I don't necessarily believe in the idea that well you're new to this particular type of role so we're going to basically pay you a lot less. From my perspective it's always been, like, there's a value in having a person in a role. The value to the company is X and, “Well, I have an excuse now to pay you less for that,” has never resonated with me. It's if you're not, I guess, worth—the value-added not worth being paid what the stated rate for a position is, you are probably not going to find success in that role and the role has to change. That has always been my baseline operating philosophy. Not to yell at people on this, but it's, uh, I am very tired of watching companies more or less dunk on people from a position of power.Sheeri: Yeah. And I mean, you can even take the power out of that and take, like, location-based. And yes, I understand the cost of living is different in different places, but why do people get paid differently if the value is the same? Like if I want to get a promotion, right, my company is going to be like, “Well, show me how you've added value. And we only pay your value. We don't pay because—you know, you don't just automatically get promoted after seven years, right? You have to show the value and whatever.” Which is, I believe, correct, right?And yet, there are seniority things, there are this many years experience. And you know, there's the old caveat of do you have ten years experience or do you have two years of experience five times?Corey: That is the big problem is that there has to be a sense of movement that pushes people forward. You're not the first person that I've had on the show and talked to about a 20 year career. But often, I do wind up talking to folks as I move through the world where they basically have one year of experience repeated 20 times. And as the industry continues to evolve and move on and skill sets don't keep current, in some cases, it feels like they have lost touch, on some level. And they're talking about the world that was and still is in some circles, but it's a market in long-term decline as opposed to keeping abreast of what is functionally a booming industry.Sheeri: Their skills have depreciated because they haven't learned more skills.Corey: Yeah. Tech across the board is a field where I feel like you have to constantly be learning. And there's a bit of an evolve-or-die dinosaur approach. And I have some, I do have some fallbacks on this. If I ever decide I am tired of learning and keeping up with AWS, all I have to do is go and work in an environment that uses GovCloud because that's, like, AWS five years ago.And that buys me the five years to find something else to be doing until a GovCloud catches up with the modern day of when I decided to make that decision. That's a little insulting and also very accurate for those who have found themselves in that environment. But I digress.Sheeri: No, and I find it to with myself. Like, I got to the point with MySQL where I was like, okay, great. I know MySQL back and forth. Do I want to learn all this other stuff? Literally just today, I was looking at my DMs on Twitter and somebody DMed me in May, saying, “Hi, ma'am. I am a DBA and how can I use below service: Lambda, Step Functions, DynamoDB, AWS Session Manager, and CloudWatch?”And I was like, “You know, I don't know. I have not ever used any of those technologies. And I haven't evolved my DBA skills because it's been, you know, six years since I was a DBA.” No, six years, four or five? I can't do math.Corey: Yeah. Which you think would be a limiting factor to a DBA but apparently not. One last question that [laugh] I want to ask you, before we wind up calling this a show. You've done an awful lot across the board. As you look at all of it, what is it you would say that you're the most proud of?Sheeri: Oh, great question. What I'm most proud of is my work with WildAid. So, when I was at MongoDB—I referenced a job with engineering communications, and they hired me to be a product manager because they wanted to do a collaboration with a not-for-profit and make a reference application. So, make an application using MongoDB technology and make it something that was going to be used, but people can also see it. So, we made this open-source project called o-fish.And you know, we can give GitHub links: it's github.com/wildaid, and it has—that's the organization's GitHub which we created, so it only has the o-fish projects in it. But it is a mobile and web app where governments who patrol waters, patrol, like, marine protected areas—which are like national parks but in the water, right, so they are these, you know, wildlife preserves in the water—and they make sure that people aren't doing things they shouldn't do: they're not throwing trash in the ocean, they're not taking turtles out of the Galapagos Island area, you know, things like that. And they need software to track that and do that because at the time, they were literally writing, you know, with pencil on paper, and, you know, had stacks and stacks of this paper to do data entry.And MongoDB had just bought the Realm database and had just integrated it, and so there was, you know, some great features about offline syncing that you didn't have to do; it did all the foundational plumbing for you. And then the reason though, that I'm proud of that project is not just because it's pretty freaking cool that, you know, doing something that actually makes a difference in the world and helps fight climate change and all that kind of stuff, the reason I was proud of it is I was the sole product manager. It was the first time that I'd really had sole ownership of a product and so all the mistakes were my own and the credit was my own, too. And so, it was really just a great learning experience and it turned out really well.Corey: There's a lot to be said for pitching in and helping out with good causes in a way that your skill set winds up benefitting. I found that I was a lot happier with a lot of the volunteer stuff that I did when it was instead of licking envelopes, it started being things that I had a bit of proficiency in. “Hey, can I fix your AWS bill?” It turns out as some value to certain nonprofits. You have to be at a certain scale before it makes sense, otherwise it's just easier to maybe not do it that way, but there's a lot of value to doing something that puts good back into the world. I wish more people did that.Sheeri: Yeah. And it's something to do in your off-time that you know is helping. It might feel like work, it might not feel like work, but it gives you a sense of accomplishment at the end of the day. I remember my first job, one of the interview questions was—no, it wasn't. [laugh]. It wasn't an interview question until after I was hired and they asked me the question, and then they made it an interview question.And the question was, what video games do you play? And I said, “I don't play video games. I spend all day at work staring at a computer screen. Why would I go home and spend another 12 hours till three in the morning, right—five in the morning—playing video games?” And they were like, we clearly need to change our interview questions. This was again, back when the dinosaurs roamed the earth. So, people are are culturally sensitive now.Corey: These days, people ask me, “What's your favorite video game?” My answer is, “Twitter.”Sheeri: Right. [laugh]. Exactly. It's like whack-a-mole—Corey: Yeah.Sheeri: —you know? So, for me having a tangible hobby, like, I do a lot of art, I knit, I paint, I carve stamps, I spin wool into yarn. I know that's not a metaphor for storytelling. That is I literally spin wool into yarn. And having something tangible, you work on something and you're like, “Look. It was nothing and now it's this,” is so satisfying.Corey: I really want to thank you for taking the time to speak with me today about where you've been, where you are, and where you're going, and as well as helping me put a little bit more of a human angle on Twitter, which is intensely dehumanizing at times. It turns out that 280 characters is not the best way to express the entirety of what makes someone a person. You need to use a multi-tweet thread for that. If people want to learn more about you, where can they find you?Sheeri: Oh, they can find me on Twitter. I'm @sheeri—S-H-E-E-R-I—on Twitter. And I've started to write a little bit more on my blog at sheeri.org. So hopefully, I'll continue that since I've now told people to go there.Corey: I really want to thank you again for being so generous with your time. I appreciate it.Sheeri: Thanks to you, Corey, too. You take the time to interview people, too, so I appreciate it.Corey: I do my best. Sheeri Cabral, Senior Product Manager of ETL lineage at Collibra. I'm Cloud Economist Corey Quinn, and this is Screaming in the Cloud. If you've enjoyed this podcast, please leave a five-star review on your podcast platform of choice or smash the like and subscribe buttons on the YouTubes, whereas if you've hated it, do exactly the same thing—like and subscribe, hit those buttons, five-star review—but also leave a ridiculous comment where we will then use an ETL pipeline to transform it into something that isn't complete bullshit.Corey: If your AWS bill keeps rising and your blood pressure is doing the same, then you need The Duckbill Group. We help companies fix their AWS bill by making it smaller and less horrifying. The Duckbill Group works for you, not AWS. We tailor recommendations to your business and we get to the point. Visit duckbillgroup.com to get started.Announcer: This has been a HumblePod production. Stay humble.

A draft bipartisan bill was released last week by congressional leaders, and if it is adopted, the bill will go on to establish a comprehensive privacy law federally for the first time in the history of the nation. It is named the American Data Privacy and Protection Act, and its shortened version is the ADPPA, which will be providing people in America with several rights that relate to data collected from them. It would include rights for accessing this data, deleting the data, correcting the data, and also preventing using this data without acquiring consent from the individual in question. The response would be that businesses in numerous sectors will be facing new consequences related to the data they are collecting from the individuals they are serving. The best part is that the ADPPA is already sharing most of its features with other comprehensive privacy laws that are active on the state level, like the CCPA or the California Consumer Privacy Act, which have been adopted in recent years. It has also borrowed several elements from the health privacy law in America and the regulations that have been adopted from HIPAA or the Health Insurance Portability and Accountability Act. However, in many respects, it is more sophisticated than these laws, and it will be America's answer to the GDPR or General Data Protection Regulation, which is the governing privacy framework for Europe. Releasing the draft legislation signals a crucial compromise between the Republican and Democratic leaders from the Commerce and House Energy Committee. They managed to come together on important issues like the private right of action and state law preemption. There has been some criticism about the draft bill in some quarters. Some advocates of privacy hold the view that the legislation isn't as comprehensive as it should be and representatives of various industries viewing some provisions, like allowing the private right of action, believe it to be an unacceptable measure. Hence, it's still not clear if the ADPPA will get enough support from everyone to be enacted as a new law. How Will the ADPPA Be Applicable to Different Entities? The ADPPA will be applied in broad terms to ‘covered data', which is collected by ‘covered entities.' The meaning of covered data is any information that can be linked to an individual or identifies an individual. The only thing excluded from covered data is information that is available publicly, de-identified data, and employee data. On the other hand, covered entities involve a party or an entity that processes, collects, and transfers covered data, which comes under the Federal Trade Commission or FTC's jurisdiction. Unlike some privacy laws that are applied state-wide, the ADPPA will also apply to small businesses that don't have much revenue as well as nonprofit businesses. There are also no exceptions made for government entities, even though the courts interpret other laws that have used the same language as not being applicable to state and federal agencies. However, most businesses in the financial services, healthcare, and education sector won't be required to follow the law for all the data that they collect and hold. Apart from that, those small businesses which don't have any interstate commerce will be outside the jurisdiction of the FTC and would also be exempted from following the law. Additionally, organizations with at least $41 million or less in annual revenue won't be required to follow some parts of the law, according to the ‘small data exception.' The Duties When the ADPPA is adopted as a law, it will place numerous duties and other requirements, especially on covered entities regarding covered data. These will include the following: Data Minimization Covered data can't be unnecessarily used or collected by covered entities. Prohibited and Restricted Practices Some practices will be completely prohibited or restricted. There will be significant limits on allowing covered entities to allow t...

On Friday May 27, 2022, the California Privacy Protection Agency (CPPA) Board announced its next public meeting will be on June 8, 2022. The announcement simply stated the date of the meeting, that there are “some discussion items [that] will be relevant to the Agency's rulemaking work,” and that information on how to attend the meeting and the meeting agenda could be found on the CPPA's site. It did not take too many Internet sleuths to review the posted agenda, and note that Agenda Item No. 3 was “Discussion and Possible Action Regarding Proposed Regulations, Sections 7000–7304, to Implement, Interpret, and Make Specific the California Consumer Privacy Act of 2018, as Amended by the California Privacy Rights Act of 2020, Including Possible Notice of Proposed Action,” and that the posted meeting materials included a copy of the “Draft Proposed CCPA Regulations.” In addition, Agenda Item No. 4 provides for “Delegation of Authority to the Executive Director for Rulemaking Functions.” Full stop, June will be an active month for California privacy rulemaking. www.adlawaccess.com/2022/05/articles/new-california-draft-privacy-regulations-how-they-would-change-business-obligations-and-enforcement-risk/ Alysa Z. Hutnik ahutnik@kelleydrye.com www.kelleydrye.com/Our-People/Alysa-Z-Hutnik Aaron Burstein aburstein@kelleydrye.com www.kelleydrye.com/Our-People/Aaron-J-Burstein Laura Riposo VanDruff lvandruff@kelleydrye.com www.kelleydrye.com/Our-People/Laur…Riposo-VanDruff Alexander Schneider aschneider@kelleydrye.com www.kelleydrye.com/Our-People/Alex…der-I-Schneider Hosted by Simone Roach Produced by Jeff Scurry

In this episode, Natasha Kohne and Michelle Reed, who head Akin Gump's cybersecurity, privacy and data protection practice, and counsel Lauren York discuss the firm's new CCPA Litigation Annual Report – 2021 Trends and Developments, which reviews the findings from their analysis of the second year of litigation and class actions under the California Consumer Privacy Act. Among the topics covered: ·         2021 CCPA litigation overview. ·         Major increase in data breach cases. ·         Surprising findings. ·         Litigation deterrence strategies. To learn more, visit akingump.com and search for “CCPA.”

In this episode of the Faegre Drinker on Law and Technology Podcast, Jason G. Weiss sits down with former Faegre Drinker associate Michael Jaeger, an authority on the California privacy landscape, to take a deeper look at the California Consumer Privacy Act and the California Privacy Rights Act, how they are being enforced and the effect they have had on impacted businesses.

Hosted by Simone Roach In the first formal written opinion interpreting CCPA compliance obligations, California Attorney General Rob Bonta concludes that the CCPA grants consumers the right to know and access internally generated inferences that businesses generate about them, but that the CCPA does not require businesses to disclose trade secrets. The 15-page opinion, issued on March 10, responds to a question posed by Sacramento area Assemblyman Kevin Kiley (R): “Under the California Consumer Privacy Act, does a consumer's right to know the specific pieces of personal information that a business has collected about that consumer apply to internally generated inferences the business holds about the consumer from either internal or external information sources?” Blog Post - https://www.adlawaccess.com/2022/03/articles/california-ags-first-ccpa-opinion-takes-a-broad-view-of-the-right-to-access-inferences/ Contacts Aaron Burstein aburstein@kelleydrye.com www.kelleydrye.com/Our-People/Aaron-J-Burstein Alexander Schneider aschneider@kelleydrye.com www.kelleydrye.com/Our-People/Alexander-I-Schneider Produced by Jeff Scurry

Local, state, national, and international—everyone is getting in on the privacy game. But what does the future hold for harmonization? And where does the new USMCA (the new NAFTA) fit in? More on Stuart Brotman. SPEAKERS Wayne Stacy, Stuart Brotman Wayne Stacy 00:00 Welcome, everyone to the Berkeley Center for Law and Technology's Expert Series Podcast. I'm the Executive Director of BCLT, and your host Wayne Stacey. Today, we have the second part of a discussion with Professor Stuart Brotman. If you recall, Professor Brotman is a professor of Media Management law at the University of Tennessee, and is pioneering a new model for addressing privacy issues. Today, we're going to actually focus on something a little different than the model we discussed last time that the carrot and stick and really start addressing some of the competition between different jurisdictions on how they're trying to regulate privacy and related issues. So Stuart, let me start with just the first question is, why is federal preemption such a contentious issue in the development of federal digital privacy legislation? Stuart Brotman 00:53 Thanks, Wayne, it's a pleasure to be here. Well, federal preemption remains a sticking point, I think, particularly because it is a sticking point in the federal discussion, which means on one side of the aisle, you have the Republicans and the other, the Democrats and to the extent that they do not want to move closer to enacting legislation, preemption gives an obvious point of division between the two parties. Generally, you can characterize the Democrats as being favorable to preemption. And you can characterize the Republicans as not being favorable to preemption based on states rights and the ability of states to handle things. But we have a really interesting moving mix of players here, particularly because California in enacting the California Privacy Rights Act. And then, of course, before that the California Legislature enacting the California Consumer Privacy Act. So So there we have, essentially, particularly with the CPRA, which was enacted as a ballot proposition, we have the voters who have now essentially said, this is the type of privacy legislation that we want. And it's the only legislation so far that essentially has faced voters at the ballot box. And as you know, California has about 40 million people not that many voted, but certainly it represents us, the largest state in the union. And of course, two of the critical players are the Speaker of the House, Nancy Pelosi represents a congressional district in the San Francisco area. And, of course, Vice President and Kamala Harris, who of course, was the attorney general, when CCPA, the California Consumer Protection Act was adopted and obviously was a strong proponent of that. So even though they are Democrats, they also have the interests of California. And those interests, obviously, are to make the California laws as workable as possible, and not have the federal government come in, and essentially preempt them prematurely. And of course, then we have other states who have been added to the mix. So we have both Virginia and Colorado, which now have laws which have been enacted by the legislature and signed by the governor. And if you look a little bit at the political makeup of those states, Virginia, as you know, is what's characterized now as a purple state. And in the recent gubernatorial election, we saw it flipped pretty dramatically from the Democrats to Republicans. And so it's a very interesting state is a bellwether, but clearly in Virginia, there was enough popular support and a Democratic legislature, which passed this. So there are two Democratic legislators California and Virginia, which have favore

McGuireWoods healthcare attorneys Kate Hardey, Royce DuBiner and Janice Suchyta discuss issues pertaining to cannabis and privacy laws, such as HIPAA and the California Consumer Privacy Act. Join the edibles team as they unpack the complexities of federal and state requirements, medical versus adult use obligations and duty to protect consumer information in this space.TopicsLack of federal privacy legislation outside of HIPAAPrivacy issues dominated by state lawCalifornia Consumer Privacy ActIncrease in data breachesHow sensitive consumer information is definedLack of consistency in state lawsWhen HIPAA appliesExpanding scope of consumer privacy issuesHow to protect consumer informationHow to create a privacy compliance programFood for thought

Each week we look at the most recent events and trends related to data security and privacy. On our last episode we talked about the dramatic rise in data compromises so far this year. Today we're going to talk about the one-year anniversary of the state law that gives consumers a way to push back against data breaches – the California Consumer Privacy Act or CCPA. Our podcast today is possible thanks to support from Experian and Sentilink. Learn more about the CCPA: https://www.idtheftcenter.org/california-consumer-privacy-act-ccpa-goes-into-effect/ Follow on LinkedIn: www.linkedin.com/company/idtheftcenter/ Follow on Twitter: twitter.com/IDTheftCenter

Each week we take a look at the most recent and interesting events and trends related to data security and privacy. Back in the early days of infomercials, there would invariably come a point in a television ad selling the latest knife or blender when the person making the pitch would stop, look earnestly into the camera…and shout, “but wait- there's more!” And that's the title of our episode today where we look at the latest changes to the California Consumer Privacy Act or CCPA and update you on a major data breach from 2019. Learn more about the CCPA here: http://idtheft.center/PrivacyAct Follow on LinkedIn: www.linkedin.com/company/idtheftcenter/ Follow on Twitter: twitter.com/IDTheftCenter

In this SPECIAL EDITION episode, Mary talks with Mark Lowery, Editorial Director at October Research, who lends his expertise in unpacking their 2021 State of the Industry report. This free download offers key insight about what 2021's story will be. You can reach Mark via email at mlowery@octoberresearch.com.During the interview, Mary and Mark mention:October Research recently published their 2021 State of the Industry report.Industry underwriters, Old Republic Title, Fidelity National Title Group, and First American Title recently published their earnings reports. The newly appointed, but not yet confirmed, CFPB director is expected to be Rohit Chopra. Read more about him in this article.The CFPB filed a lawsuit against Townstone Financial Inc., a Chicago-based nonbank retail-mortgage creditor.RON and RIN are key points of interest in this year's report. ALTA has created a Digital Closing Resource Library, including information on Federal and State legislation. You'll also want to check out this eClosing article from RamQuest!The Federal Housing Finance Agency released an eMortgages Report in September of 2020.Data Privacy is a major industry topic. Mark mentions the California Consumer Privacy Act, which you can read about in this article.Mark highlighted October Research's RESPA News publication.If you're following student loan reform, like Mark, here's a recent article on the subject.Redfin recently reported a record 52% of homes are under contract within 2 weeks.On the topic of forbearance and foreclosure, Mark mentions reading they are at an all time low. Here's an article confirming the same and this report from the FHFA speaks to the impact of pandemic-relate Forbearance and Foreclosure relief for single-family mortgages.Mary and Mark discuss the CLOSINGCORP/STRATMOR SURVEY regarding pandemic-period remote loan closings. Mark references a report that HUD is working to reallocate commercial real estate for residential space. This article offers an overview of this adaptive concept. Mark and Mary talk briefly about the Detroit Home Mortgage project, launched after the early aught recession, as a collaborative effort of local and national banks, foundations, and nonprofit groups. Read more about that here.If you'd like to contact the Pandemic Podcast, email podcasts@ramquest.com. Don't forget to subscribe, rate, and review this podcast on Apple Podcast, Spotify, or wherever you listen to podcasts, or visit RamQuest.com/pandemicpodcast to download the latest episode. Lastly, we love to see when and how you're listening. Share our posts, or create your own and tag them: #PandemicPracticesPodcast

What trends can marketers expect within display and paid social in 2021? How will these trends differ from 2020? Andreah and Gaia discuss marketing trends with Merkle's Emily Roe and they get her thoughts on what's up next for these channels. Emily's 2021 predictions for display and paid social: • Expect to see a continuation of trends that started as big shifts in 2020 from the pandemic, but will see some reversions to pre-COVID-19 behavior in 2021 as vaccines become more widely available • Brands will lean into innovative ways to interact with their customers, such as social commerce and virtual reality • Going to see a continued increase in spend for display and paid social Emily's 2021 predictions for digital marketing: • Privacy will transpire into targetability and measurement conversations and marketers will really start to feel the impact of these privacy changes *Please note that CCPA stands for California Consumer Privacy Act

Over the last few weeks, months, and years, there have been a lot of developments in the privacy world. For instance, Californians voted to replace the California Consumer Privacy Act with the California Privacy Rights Act (CPRA) in November. Additionally, the new administration is likely to be more privacy-minded, and they'll also need to renegotiate legal transfers of personal data from the EU to the US.  COVID-19 has also resulted in significant changes, largely due to the movement towards work-from-home arrangements. People are now handling and processing confidential information on their own home networks, posing some serious security risks. So, how do we continue to protect privacy where workforces are distributed?  With all these recent developments, CGL privacy counsel Jessica Clark joins the podcast to help us navigate the privacy ecosystem. She talks about what these changes mean and what to expect in 2021.  We also tackle the biggest question: what should companies be doing moving forward given the risks involved?  In this episode, you will hear: Why privacy is such a hot topic on the global stage The drivers behind recent privacy developments Some of the more significant developments Details about CPRA and how companies can become CPRA-compliant Some tips for early-stage companies in managing data What enforcement looks like in California under the new Data Protection Agency What we expect from the Biden administration in 2021 Some important definitions Subscribe and Review Have you subscribed to our podcast? We'd love for you to subscribe if you haven't yet. Each week, we share authentic discussions with business leaders where they flesh out substantive issues while also getting deeper into their stories. We'll dive into conversations on the fusion of business and humanity, success and authenticity, and the challenges of balancing life and work, in addition to regularly sharing legal updates and substantive content. We'd love it even more if you could drop a review or 5-star rating over on Apple Podcasts. Simply select “Ratings and Reviews” and “Write a Review” then a quick line with your favorite part of the episode. It only takes a second and it helps spread the word about the podcast.  If you really enjoyed this episode, we've created a PDF that has all of the key information for you from the episode. Just go to our podcast page at https://cgl-llp.com/podcast/ to download it.  Supporting Resources: https://cgl-llp.com/ Episode Credits If you like this podcast and are thinking of creating your own, consider talking to my producer, Danny Ozment. He helps thought leaders, influencers, executives, HR professionals, recruiters, lawyers, realtors, bloggers, coaches, and authors create, launch, and produce podcasts that grow their business and impact the world. Find out more at https://emeraldcitypro.com

Littler employment shareholders Bruce Sarchet and Emily Patajo join XpertHR Legal Editor David Weisenfeld for an in-depth look at the many new developments affecting California employers in 2021. Some of the more notable developments include the: Expansion of the California Family Rights Act to apply to employers with five or more employees; New pay data-reporting requirements for employers with 100 or more employees; Emergency COVID-19 workplace safety regulations; Changes to the California Consumer Privacy Act; and Added diversity requirements for the boards of publicly held corporations.

Alex Alben is a professor of Internet Law, Media & Society at UCLA School of Law and as senior executive, he worked for pioneering internet companies RealNetworks and Starwave Corporation. Alex also worked for an alternative energy company founded by Bill Gates and served as Washington State's first Chief Privacy Officer from 2015-2019.   Alex is currently engaged with research and policy development relating to Artificial Intelligence, with a focus on AI ethics, and he is also working on the implementation of California's new privacy law, The California Consumer Privacy Act. With his presence in the field of technology and data privacy, we will be speaking about matters such as to what level of detail companies like Amazon, Apple, Facebook and Google possess intricate data about you and your personal life and how these companies align their business models towards obtaining and reselling vast amounts of data. We will also be talking about how we as a generation can stay more aware of the influence of big data on our online lives, and what tools and techniques start-ups and established businesses can deploy to find the right balance between maintaining a competitive edge whilst ensuring adequate privacy measures. For more engaging and inspiring talks like these or if you'd simply like to reach out, visit www.themillennicast.buzzsprout.com. 

COVID-19 has had a dramatic impact on nearly all aspects of organizations nationwide. In this episode Alan Winchester, leader of the Harris Beach Cybersecurity Protection and Response Practice Group; Michael Montagliano, Chief Technology Officer of iV4; and Michael Compisi, President of Caetra.io discuss the data privacy and security landscape. They touch on cybersecurity strategy; the increase in cybercrime during the pandemic; and the latest developments with regulations such as HIPAA, the NYS SHIELD Act, California Consumer Privacy Act and the U.S. Department of Defense's Cybersecurity Maturity Model Certification (CMMC). Related Links: Alan Winchester Bio - https://bit.ly/2YZWcU5Michael Montagliano Bio - https://bit.ly/3192148Michael Compisi Bio - https://bit.ly/3192148Cybersecurity Protection and Response Practice Group - https://bit.ly/2NB55ydiV4 - https://bit.ly/382AxicCaetra.io - https://bit.ly/2NqjwooDownload Episode Transcript

Angela discusses California Consumer Privacy Act, recent consumer class action lawsuits, Apple not giving you all of your data and more with Kenan Weaver. Kenan spent time working with companies with implementation and compliance in the European Union with GDPR. He gives us a glimpse of what to expect with CCPA.The article referenced in this discussion can be found here:https://news.bloomberglaw.com/privacy-and-data-security/insight-first-ccpa-related-case-foreshadows-five-issues-5You can watch video of this podcast on YouTube: https://youtu.be/0V7MI8u1pB0

The pharmaceutical industry is probably more privacy minded than most. The California Consumer Privacy Act, which came into full effect as of 2020 (retroactive to January of 2019), has been in the spotlight for a couple of years already and is not new to global pharma companies, although not everyone is fully versed in its content and the implications of its policies. Holly Henry and Kamran Shah from Klick Health joined the Pharma Marketing Podcast to kick off the new year and offer their perspectives on CCPA, what compliance with CCPA entails, what the intent of the law is, and how it impacts pharma marketers. CCPA is forcing pharma and healthcare marketers to get back to marketing fundamentals to create stronger relationships with brands.

The California Consumer Privacy Act goes into effect January 1st, 2020, but what does this mean? This episode we address what CCPA is, how it is challenging businesses and the customer experience today and in the future, and what you can do to prepare. Presented by The Future of Customer Engagement and Experience, providing thought leadership and analysis on topics both consumer-facing and business-to-business, from sales, marketing, customer experience, data management, and more.

On January 1, 2020, companies will be facing a compliance requirement established by the California Consumer Privacy Act. In practice, California's CCPA will create a new “national” standard.   The CCPA is designed to give consumers more information and control over their personal information. Specifically, businesses will be required to be more transparent in their handling of personal information and to provide robust disclosures to consumers about how their information is being used.   Many businesses raced to the finish line to meet GDPR requirements. Certain requirements imposed by GDPR will have applicability in the CCPA context; however, there are significant differences in scope and intent that require careful attention. Companies that conduct business in California, collect personal information from California residents, process (or have third party process) such personal information, and meets certain revenue thresholds are subject to the CCPA.   In this Episode, Michael Volkov discusses the CCPA, outlines its requirements and describes necessary steps for compliance.

TechGC Website SUBSCRIBE to Good Counsel Newsletter Follow on Twitter Follow on LinkedIn

The recent “Russia is stealing your photos” meme highlights both the fear of data privacy (or just Russians perhaps) and the truth around most app Terms of Service (which nobody ever really reads, do they?). The real issue here isn't Russia (as memes and certain fear-driven news networks might suggest) but the granting of “perpetual, royalty-free” rights to data that we share with *many* popular apps, from “social quizzes” to “here's what I'll look like in 10 years if I ever go missing and you need a picture for the milk carton” craze. And it's not just FaceApp, it's *most* apps. And that poses a challenge for both consumers and brands as they grapple with the future of data privacy (and the economy that a laissez-faire, caveat emptor posture has created). How can we fix this issue? To start, users need to stop using apps they just don't need, and ease up on dubious quizzes and surveys that reveal almost nothing about ourselves except that we like to take meaningless surveys and quizzes. But we also need some responsible legislation, and the California Consumer Privacy Act just might be the ticket. THIS WEEK's FAST FIVE > Huawei phones are likely to still be Androids for a long time, at least according to Huawei execs. We're not sure what that portends for the users of Huawei phones or if Google and the US government intend to continue to put Huawei in the cross-hairs of a tech embargo. But we do know the ongoing US-China trade war isn't likely to stop any time soon and that the US government isn't always firing at the right target. > The very real dangers of deep fake videos go well beyond their initial use to create fake porn. These new AI-infused videos can influence stock prices, elections, careers, and more. And now they can be made using a single image and a technique called one-shot learning. > Twitter is testing new in-tweet labels for how replies, authors and commentators are identified. Yes, there is a problem that needs to be fixed. No, we're not sure this is the right approach. > Amazon says “For $10, let us track you all over the web” and consumers reply “Yay, let's do it!” Futurum's analysts just shake their heads at this one. > Intel falls behind AMD in an interesting twist in the battle for nanometer bragging rights that highlights how Moore's Law just might be circumvented as chip manufacturers finally figure out how to bake the silicon equivalent of a seven-layer cake. This week's Tech Bites Winner: This week we give a much-needed smack to companies that geo-track to excess and those that abuse the technology. In this case that includes Steve Bannon and the GOP who thought the idea of using geolocation data from mobile phones to identify and track voters who visited houses of worship would be a great way to influence an election. Our Crystal Ball: Will the California Consumer Privacy Act actually result in better security for the country? We're hopeful, but far from certain on this one. INFORMATION: This Futurum Podcast features Fred McClimans (@fredmcclimans), Olivier Blanchard (@OABlanchard) and Shelly Kramer (@ShellyKramer). If you haven't already, please subscribe to our show on iTunes or SoundCloud. For inquiries or more information on the show, email the team at podcast@futurumresearch.com or follow @FuturumPodcast on Twitter. To learn more about Futurum Research please visit www.futurumresearch.com. DISCLOSURE: Futurum Research is a research and analysis provider, not an investment advisor. The Futurum Tech Podcast (and all related written notes and materials) is a newsletter/podcast intended for entertainment and informational purposes only. Futurum Research does not provide personalized investment advice and no investment advice is offered or implied by this podcast.

The California Consumer Privacy Act of 2018 (the “Act”) was signed into law by California Governor Jerry Brown on June 28, 2018, after being hastily introduced in the California Legislature just a few days prior. The Act is effective January 1, 2020. In this episode, Michael Volkov interviews Teresa Troester-Falk, Chief Global Privacy Strategist at Nymity, concerning the Act and the compliance implications for businesses. The Act provides “consumers” (defined as natural persons who are California residents) four basic rights in relation to their personal information: the right to know, through a general privacy policy and with more specifics available upon request, what personal information a business has collected about them, where it was sourced from, what it is being used for, whether it is being disclosed or sold, and to whom it is being disclosed or sold; the right to “opt out” of allowing a business to sell their personal information to third parties (or, for consumers who are under 16 years old, the right not to have their personal information sold absent their, or their parent's, opt-in); the right to have a business delete their personal information, with some exceptions; and the right to receive equal service and pricing from a business, even if they exercise their privacy rights under the Act.

I spoke with Josh Hass, the Head of eDiscovery and Information Governance at Charles River Associates, a global consulting firm focused on forensics. We discussed the first anniversary of the GDPR implementation date, how that regulation has changed the way organizations approach privacy and information governance, similar state-specific requirements, such as the California Consumer Privacy Act, ways that the European restrictions compare to the various U.S. initiatives, the e-discovery advantages to an organization that proactively focuses on its portfolio of data, and where the intersection of e-discovery and data privacy is headed.

CCPA SB 561 - Discussing the CCPA Senate Bill 561 (SB 561) amendment to The California Consumer Privacy Act. I'll dive into the bill, what it was trying to do and what its demise means. Show Notes