Podcasts about california consumer privacy act ccpa

Edwin Mays is a Chartered Retirement Planning Counselor-CRPC™ – MaysGroup Advisors is an independent financial services firm, specializing in helping individuals and families prepare for, plan, and live in retirement. Their approach focuses on tailored retirement planning strategies and insurance solutions to provide our clients with guaranteed lifetime income, asset protection, and achieve tax efficiencies in support of a holistic approach to their finances.With over 30 years in the financial services industry—including leadership roles at firms like Thomson Reuters, Merrill Lynch, Smith Barney, and Transamerica—Edwin Mays brings deep institutional experience and unmatched insight to every client engagement. As a Chartered Retirement Planning Counselor™ (CRPC), Edwin specializes in designing retirement strategies that guarantee lifetime cash flow and protect against the most serious threats retirees face today: market risk, longevity, and rising costs.At MaysGroup Advisors, Edwin's mission is simple: replace uncertainty with strategy and give clients the confidence to retire on their terms—with income they can count on, no matter what the market does.Learn more: https://maysgroupadvisors.com/The content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-edwin-mays-with-maysgroup-advisors-discussing-market-risk

Edwin Mays is a Chartered Retirement Planning Counselor-CRPC™ - MaysGroup Advisors is an independent financial services firm, specializing in helping individuals and families prepare for, plan, and live in retirement. Their approach focuses on tailored retirement planning strategies and insurance solutions to provide our clients with guaranteed lifetime income, asset protection, and achieve tax efficiencies in support of a holistic approach to their finances. With over 30 years in the financial services industry—including leadership roles at firms like Thomson Reuters, Merrill Lynch, Smith Barney, and Transamerica—Edwin Mays brings deep institutional experience and unmatched insight to every client engagement. As a Chartered Retirement Planning Counselor™ (CRPC), Edwin specializes in designing retirement strategies that guarantee lifetime cash flow and protect against the most serious threats retirees face today: market risk, longevity, and rising costs.At MaysGroup Advisors, Edwin's mission is simple: replace uncertainty with strategy and give clients the confidence to retire on their terms—with income they can count on, no matter what the market does.Learn more: https://maysgroupadvisors.com/The content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-edwin-mays-with-maysgroup-advisors-discussing-sequence-of-returns-risk

Edwin Mays is a Chartered Retirement Planning Counselor-CRPC™ – Maysgroup Advisors is an independent financial services firm, specializing in helping individuals and families prepare for, plan, and live in retirement. Their approach focuses on tailored retirement planning strategies and insurance solutions to provide our clients with guaranteed lifetime income, asset protection, and achieve tax efficiencies in support of a holistic approach to their finances.With over 30 years in the financial services industry—including leadership roles at firms like Thomson Reuters, Merrill Lynch, Smith Barney, and Transamerica—Edwin Mays brings deep institutional experience and unmatched insight to every client engagement. As a Chartered Retirement Planning Counselor™ (CRPC), Edwin specializes in designing retirement strategies that guarantee lifetime cash flow and protect against the most serious threats retirees face today: market risk, longevity, and rising costs.At MaysGroup Advisors, Edwin's mission is simple: replace uncertainty with strategy and give clients the confidence to retire on their terms—with income they can count on, no matter what the market does.Learn more: https://maysgroupadvisors.com/The content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-edwin-mays-with-maysgroup-advisors-discussing-longevity-risk

Curtis Cottle is a Certified Financial Fiduciary, visionary growth strategist and cofounder of one of Michigan's fastest-scaling financial services firms. He specializes in retirement planning, estate planning, and strategic tax strategies designed to help families and business owners protect and grow their wealth.At the core of his firm's approach is a deep emphasis on strategic tax planning as it relates to retirement, helping clients keep more of what they've earned and build long-term financial confidence.He's the creator of the Wealth Wellness Checkup, a planning experience that uncovers hidden financial blind spots and helps people make smart, informed decisions. The firm is built to simplify complexity, bring structure to planning, and deliver personalized strategies that work in the real world.With nearly two decades of experience, Curtis is known for cutting through the noise, building lasting relationships, and helping people create long-term security without the guesswork.When he's not driving growth or designing new campaigns, you'll find him investing in his team, building partnerships, or spending time with his family, living the same values his business is built on: fun, unity, and getting things done.Learn more: http://www.gosbc.net/DISCLAIMERThe content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information. SBC Financial Advisory services are only offered to clients or prospective clients where SBC Financial and its representatives are properly licensed or exempt from licensure. This website is solely for informational purposes. Past performance is no guarantee of future returns. Investing involves risk and possible loss of principal capital. No advice may be rendered by SBC Financial unless a client service agreement is in place.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-curtis-cottle-founder-of-sbc-financial-discussing-social-security-timing-strategy

Curtis Cottle is a Certified Financial Fiduciary, visionary growth strategist and cofounder of one of Michigan's fastest-scaling financial services firms. He specializes in retirement planning, estate planning, and strategic tax strategies designed to help families and business owners protect and grow their wealth.At the core of his firm's approach is a deep emphasis on strategic tax planning as it relates to retirement, helping clients keep more of what they've earned and build long-term financial confidence.He's the creator of the Wealth Wellness Checkup, a planning experience that uncovers hidden financial blind spots and helps people make smart, informed decisions. The firm is built to simplify complexity, bring structure to planning, and deliver personalized strategies that work in the real world.With nearly two decades of experience, Curtis is known for cutting through the noise, building lasting relationships, and helping people create long-term security without the guesswork.When he's not driving growth or designing new campaigns, you'll find him investing in his team, building partnerships, or spending time with his family, living the same values his business is built on: fun, unity, and getting things done.Learn more: http://www.gosbc.net/DISCLAIMERThe content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information. SBC Financial Advisory services are only offered to clients or prospective clients where SBC Financial and its representatives are properly licensed or exempt from licensure. This website is solely for informational purposes. Past performance is no guarantee of future returns. Investing involves risk and possible loss of principal capital. No advice may be rendered by SBC Financial unless a client service agreement is in place.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-curtis-cottle-founder-of-sbc-financial-discussing-taxes-eating-up-iras-and-401ks

Curtis Cottle is a Certified Financial Fiduciary, visionary growth strategist and cofounder of one of Michigan's fastest-scaling financial services firms. He specializes in retirement planning, estate planning, and strategic tax strategies designed to help families and business owners protect and grow their wealth.At the core of his firm's approach is a deep emphasis on strategic tax planning as it relates to retirement, helping clients keep more of what they've earned and build long-term financial confidence.He's the creator of the Wealth Wellness Checkup, a planning experience that uncovers hidden financial blind spots and helps people make smart, informed decisions. The firm is built to simplify complexity, bring structure to planning, and deliver personalized strategies that work in the real world.With nearly two decades of experience, Curtis is known for cutting through the noise, building lasting relationships, and helping people create long-term security without the guesswork.When he's not driving growth or designing new campaigns, you'll find him investing in his team, building partnerships, or spending time with his family, living the same values his business is built on: fun, unity, and getting things done.Learn more: http://www.gosbc.net/DISCLAIMERThe content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information. SBC Financial Advisory services are only offered to clients or prospective clients where SBC Financial and its representatives are properly licensed or exempt from licensure. This website is solely for informational purposes. Past performance is no guarantee of future returns. Investing involves risk and possible loss of principal capital. No advice may be rendered by SBC Financial unless a client service agreement is in place.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-curtis-cottle-founder-of-sbc-financial-discussing-social-security-timing-strategy

Curtis Cottle is a Certified Financial Fiduciary, visionary growth strategist and cofounder of one of Michigan's fastest-scaling financial services firms. He specializes in retirement planning, estate planning, and strategic tax strategies designed to help families and business owners protect and grow their wealth.At the core of his firm's approach is a deep emphasis on strategic tax planning as it relates to retirement, helping clients keep more of what they've earned and build long-term financial confidence.He's the creator of the Wealth Wellness Checkup, a planning experience that uncovers hidden financial blind spots and helps people make smart, informed decisions. The firm is built to simplify complexity, bring structure to planning, and deliver personalized strategies that work in the real world.With nearly two decades of experience, Curtis is known for cutting through the noise, building lasting relationships, and helping people create long-term security without the guesswork.When he's not driving growth or designing new campaigns, you'll find him investing in his team, building partnerships, or spending time with his family, living the same values his business is built on: fun, unity, and getting things done.Learn more: http://www.gosbc.net/DISCLAIMERThe content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information. SBC Financial Advisory services are only offered to clients or prospective clients where SBC Financial and its representatives are properly licensed or exempt from licensure. This website is solely for informational purposes. Past performance is no guarantee of future returns. Investing involves risk and possible loss of principal capital. No advice may be rendered by SBC Financial unless a client service agreement is in place.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-curtis-cottle-founder-of-sbc-financial-discussing-social-security-timing-strategy

Curtis Cottle is a Certified Financial Fiduciary, visionary growth strategist and cofounder of one of Michigan's fastest-scaling financial services firms. He specializes in retirement planning, estate planning, and strategic tax strategies designed to help families and business owners protect and grow their wealth.At the core of his firm's approach is a deep emphasis on strategic tax planning as it relates to retirement, helping clients keep more of what they've earned and build long-term financial confidence.He's the creator of the Wealth Wellness Checkup, a planning experience that uncovers hidden financial blind spots and helps people make smart, informed decisions. The firm is built to simplify complexity, bring structure to planning, and deliver personalized strategies that work in the real world.With nearly two decades of experience, Curtis is known for cutting through the noise, building lasting relationships, and helping people create long-term security without the guesswork.When he's not driving growth or designing new campaigns, you'll find him investing in his team, building partnerships, or spending time with his family, living the same values his business is built on: fun, unity, and getting things done.Learn more: http://www.gosbc.net/DISCLAIMERThe content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information. SBC Financial Advisory services are only offered to clients or prospective clients where SBC Financial and its representatives are properly licensed or exempt from licensure. This website is solely for informational purposes. Past performance is no guarantee of future returns. Investing involves risk and possible loss of principal capital. No advice may be rendered by SBC Financial unless a client service agreement is in place.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-curtis-cottle-founder-of-sbc-financial-discussing-taxes-eating-up-iras-and-401ks

Curtis Cottle is a Certified Financial Fiduciary, visionary growth strategist and cofounder of one of Michigan's fastest-scaling financial services firms. He specializes in retirement planning, estate planning, and strategic tax strategies designed to help families and business owners protect and grow their wealth.At the core of his firm's approach is a deep emphasis on strategic tax planning as it relates to retirement, helping clients keep more of what they've earned and build long-term financial confidence.He's the creator of the Wealth Wellness Checkup, a planning experience that uncovers hidden financial blind spots and helps people make smart, informed decisions. The firm is built to simplify complexity, bring structure to planning, and deliver personalized strategies that work in the real world.With nearly two decades of experience, Curtis is known for cutting through the noise, building lasting relationships, and helping people create long-term security without the guesswork.When he's not driving growth or designing new campaigns, you'll find him investing in his team, building partnerships, or spending time with his family, living the same values his business is built on: fun, unity, and getting things done.Learn more: http://www.gosbc.net/DISCLAIMERThe content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information. SBC Financial Advisory services are only offered to clients or prospective clients where SBC Financial and its representatives are properly licensed or exempt from licensure. This website is solely for informational purposes. Past performance is no guarantee of future returns. Investing involves risk and possible loss of principal capital. No advice may be rendered by SBC Financial unless a client service agreement is in place.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-curtis-cottle-founder-of-sbc-financial-discussing-social-security-timing-strategy

Edwin Mays is a Chartered Retirement Planning Counselor-CRPC™ – Maysgroup Advisors is an independent financial services firm, specializing in helping individuals and families prepare for, plan, and live in retirement. Their approach focuses on tailored retirement planning strategies and insurance solutions to provide our clients with guaranteed lifetime income, asset protection, and achieve tax efficiencies in support of a holistic approach to their finances.With over 30 years in the financial services industry—including leadership roles at firms like Thomson Reuters, Merrill Lynch, Smith Barney, and Transamerica—Edwin Mays brings deep institutional experience and unmatched insight to every client engagement. As a Chartered Retirement Planning Counselor™ (CRPC), Edwin specializes in designing retirement strategies that guarantee lifetime cash flow and protect against the most serious threats retirees face today: market risk, longevity, and rising costs.At MaysGroup Advisors, Edwin's mission is simple: replace uncertainty with strategy and give clients the confidence to retire on their terms—with income they can count on, no matter what the market does.Learn more: https://maysgroupadvisors.com/The content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-edwin-mays-with-maysgroup-advisors-discussing-longevity-risk

Edwin Mays is a Chartered Retirement Planning Counselor-CRPC™ - MaysGroup Advisors is an independent financial services firm, specializing in helping individuals and families prepare for, plan, and live in retirement. Their approach focuses on tailored retirement planning strategies and insurance solutions to provide our clients with guaranteed lifetime income, asset protection, and achieve tax efficiencies in support of a holistic approach to their finances. With over 30 years in the financial services industry—including leadership roles at firms like Thomson Reuters, Merrill Lynch, Smith Barney, and Transamerica—Edwin Mays brings deep institutional experience and unmatched insight to every client engagement. As a Chartered Retirement Planning Counselor™ (CRPC), Edwin specializes in designing retirement strategies that guarantee lifetime cash flow and protect against the most serious threats retirees face today: market risk, longevity, and rising costs.At MaysGroup Advisors, Edwin's mission is simple: replace uncertainty with strategy and give clients the confidence to retire on their terms—with income they can count on, no matter what the market does.Learn more: https://maysgroupadvisors.com/The content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-edwin-mays-with-maysgroup-advisors-discussing-sequence-of-returns-risk

Edwin Mays is a Chartered Retirement Planning Counselor-CRPC™ – MaysGroup Advisors is an independent financial services firm, specializing in helping individuals and families prepare for, plan, and live in retirement. Their approach focuses on tailored retirement planning strategies and insurance solutions to provide our clients with guaranteed lifetime income, asset protection, and achieve tax efficiencies in support of a holistic approach to their finances.With over 30 years in the financial services industry—including leadership roles at firms like Thomson Reuters, Merrill Lynch, Smith Barney, and Transamerica—Edwin Mays brings deep institutional experience and unmatched insight to every client engagement. As a Chartered Retirement Planning Counselor™ (CRPC), Edwin specializes in designing retirement strategies that guarantee lifetime cash flow and protect against the most serious threats retirees face today: market risk, longevity, and rising costs.At MaysGroup Advisors, Edwin's mission is simple: replace uncertainty with strategy and give clients the confidence to retire on their terms—with income they can count on, no matter what the market does.Learn more: https://maysgroupadvisors.com/The content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. Please consult legal or tax professionals for specific information regarding your individual situation. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. We take protecting your data and privacy very seriously. As of January 1, 2020 the California Consumer Privacy Act (CCPA) suggests the following link as an extra measure to safeguard your data: Do not sell my personal information.Influential Entrepreneurs with Mike Saundershttps://businessinnovatorsradio.com/influential-entrepreneurs-with-mike-saunders/Source: https://businessinnovatorsradio.com/interview-with-edwin-mays-with-maysgroup-advisors-discussing-market-risk

In this special episode of the MadTech Podcast, ExchangeWire's head of content John Still is joined by Nikki Bhargava, partner at Reed Smith LLP, to discuss the convergence between privacy and ad tech in the US. They look at the California Consumer Privacy Act (CCPA) and the AB566 bill recently signed by governor Gavin Newsom, and what the implementation of opt-out preference signals might look like for both businesses and consumers.

In this episode of the Measure Success Podcast, Carl J. Cox talks with Jenny Sheridan, attorney and founder of JL Sheridan Law, about how changing data privacy laws are shaping the way companies operate. Jenny shares insights on how businesses can stay compliant with the California Consumer Privacy Act (CCPA) and similar state laws, the real risks of ignoring them, and how privacy can become a competitive advantage when managed strategically. Listen to learn how to protect your business, reputation, and customers in a data-driven world.

Welcome to a special series on Life with GDPR. Over the next five episodes, Tom Fox and Alyssa DeSimone, a legal/compliance & risk management expert, with an extensive background in HR,  will discuss the complex topic of a Compliance Roadmap for ADS/ADMT. In this second episode, Tom Fox and Alyssa DeSimone review the opt-in and opt-out requirements introduced in the recent updates to the California Consumer Privacy Act (CCPA). They discuss what opting in and out entails, the concept of anti-retaliation in this context, and how disparate impact analysis can help regulators assess compliance. Additionally, they explore the importance of clear communication and training for HR departments on the use of AI in hiring, as well as the role of vendors in ensuring compliance. The episode wraps up with a discussion on the ambiguous term 'significant decision making' and its potential for litigation. Key highlights: Understanding Opt-In and Opt-Out Requirements Anti-Retaliation Measures Disparate Impact Analysis Applicant Rights and Training Vendor Collaboration and Compliance Significant Decision Making Resources: Connect with Tom Fox LinkedIn Connect with Alyssa DeSimone LinkedIn Website Life with GDPR was recently honored as a Top Data Security Podcast Learn more about your ad choices. Visit megaphone.fm/adchoices

We map the data, policy, and funding failures that created the women's health gap and lay out a California-led plan to fix it with research built for women, agile AI governance, and voter-backed capital. The goal: better outcomes, lower costs, and a template to repair healthcare at large.• two percent venture funding and underpowered trials• AI amplifying bias without sex-specific datasets• misdiagnosis, adverse drug reactions, and cost burden• why subgroup analysis must be mandated• ballot initiatives as a research funding engine• learning from California's stem cell model• WHIC's scope: basic science to real‑world translation• agile governance for AI and data privacy• workforce constraints versus knowledge deficits• value‑based care's attribution math problem• women's health as a system-wide blueprint• tangible moonshot: closing the measured gapIf anyone is out there is interested in becoming the part of future healthcare for women in California, we welcome your input. We welcome your views, your time, and your treasure to be part of this campaign that's going to change the course of history for women's health in California, if not the United States.  Please reach out to Bhairavi or Rick on LinkedinThe numbers are brutal: women receive a fraction of research attention, a sliver of venture funding, and face later diagnoses with higher adverse drug reactions—then AI threatens to accelerate the bias baked into that history. We take this on head‑first with Bhairavi Parikh, a serial medtech founder behind the proposed Women's Health Institute of California (WHIC), and Rick Arney, co-author of California's landmark privacy laws and a strategist who knows how to turn public will into policy.We unpack why clinical trials still fail to power for sex differences, how underrepresentation turns into misdiagnosis and higher costs, and what it will take to build datasets and decision tools that actually work for women. From agile AI governance to rigorous privacy protections, we explore how to enable research without sacrificing trust, and why California's ballot initiative model—proven in the state's stem cell program—offers a practical way to fund the missing science and speed real-world translation. Bhairavi Parikh: https://www.linkedin.com/in/bhairavi-parikh-9732071/Founder of the Women's Health Institute of California (WHIC), a proposed statewide research initiative which we'll be discussing in depth today.  She is also the Founder and CEO of Clarity Health Alliance.  Previously Bhairavi served as COO at Health Rhythms and Wildflower Health. As a serial founder, Bhairavi has built multiple med tech companies, including CellScape and Apieron, collectively raising over $75 millionRichard Arney: https://www.linkedin.com/in/richard-arney-3a23731a/A recognized authority on privacy, having co-authored the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). Rick previously served as BlackRock's Global Head of Alternatives Distribution and led BlackRock's hedge fund product strategy and served as Head of Investment Strategy for the Global Market Strategies Group, which managed BlackRock's largest ($10B AUM) hedge fund.  Website: https://www.position2.com/podcast/Rajiv Parikh: https://www.linkedin.com/in/rajivparikh/Sandeep Parikh: https://www.instagram.com/sandeepparikh/Email us with any feedback for the show: sparkofages.podcast@position2.com

Daniel M. Goldberg is the Partner and Chair of the Data Strategy, Privacy & Security Group at Frankfurt Kurnit Klein & Selz PC. He advises on a wide range of privacy, security, and AI matters. His expertise spans from handling high-stakes regulatory enforcement actions to shaping the application of privacy and AI laws. Earlier this year, the California Privacy Lawyers Association named him the "California Privacy Lawyer of the Year." In this episode… California is reshaping privacy compliance with its latest updates to the California Consumer Privacy Act (CCPA). These sweeping changes introduce new obligations for businesses operating in California, notably in the areas of Automated Decision-Making Technology (ADMT), cybersecurity audits, and risk assessments. So, what can companies do now to get ahead?  Companies can prepare by understanding the scope of the new rules and whether or not they apply to their business, as the regulations are set to take effect on October 1, 2025, if they are filed with the Secretary of State by August 31. If that filing happens later, the next effective date will shift to January 1, 2026. The rules around ADMT are especially complex, with broad definitions that could apply to any tool or system that processes personal data to make significant decisions about consumers. Beyond ADMT, certain companies will also need to conduct comprehensive cybersecurity audits through an independent auditor, a process that may be challenging for smaller organizations. Risk assessments impose an additional obligation by requiring reviews of activities such as processing, selling, or sharing sensitive data, and using ADMT for significant decision-making, among others, with attestations submitted to regulators. The new rules make it clear that California regulators also expect companies to maintain detailed documentation and demonstrate accountability through governance. In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels talk with Daniel Goldberg, Partner and Chair of the Data Strategy, Privacy & Security Group at Frankfurt Kurnit Klein & Selz PC, about how companies can navigate the CCPA's new requirements. From ADMT to mandatory cybersecurity audits and risk assessments, Daniel provides a detailed overview of the complex requirements, explaining the scope and its impact on companies. He also outlines how these new rules set the tone for future privacy and AI regulations, why documentation and governance are central to compliance, and shares practical tips on the importance of reviewing AI tool settings to ensure sensitive data and confidential information are not used for AI model training.

Aaron J. Burstein, Meaghan M. Donahue On July 1, 2025, California Attorney General Rob Bonta announced a $1.55 million proposed settlement order with Healthline Media – the largest California Consumer Privacy Act (CCPA) settlement to date. The proposed settlement resolves allegations that Healthline violated the CCPA by 1) failing to honor consumer requests to opt-out of the sale and sharing of personal information, 2) violating the CCPA's purpose limitation principle, and 3) failing to include required data protection provisions in contracts with service providers and third parties.

Imagine if the tiny tracking code behind personalized ads and website recommendations were suddenly considered unlawful.   That's exactly what's happening in the growing legal battle over cookies and tracking pixels across the country with new fronts opening.   In this episode of The Data Chronicles, we examine plaintiffs' efforts to expand the web tracking litigation battleground by claiming that unconsented use of web trackers constitutes a data breach under the California Consumer Privacy Act (“CCPA”), which entitles comes with statutory damages and a private right of action.   Scott Loughlin is joined by Hogan Lovells litigators Aidan Coleman and Jay Ettinger to break down the legal implications of new case law on this issue and discuss what's at stake for the internet as we know it.

Hosted by Simone Roach from a blog post from Aaron J. Burstein, Alysa Z. Hutnik, Alexander I. Schneider, and Meaghan M. Donahue On March 12, 2025, the California Privacy Protection Agency (CPPA) announced a settlement with American Honda Motor Co., resolving allegations that the company violated the California Consumer Privacy Act (CCPA) and requiring Honda to pay a $632,500 fine. The announcement marks the Agency's most far-reaching enforcement action, and the first to stem from the CPPA's July 2023 announcement that it was reviewing the data privacy practices of connected vehicle manufacturers and related technologies.

In today's podcast, we discussed the critical area of consumer protection law, focusing on consumer privacy. Consumer protection law covers a broad range of areas including product safety, false advertising, fair credit reporting, debt collection practices, warranties, consumer contracts, and unfair trade practices. Due to the increasing importance of protecting personal data in the digital age, we concentrated on consumer privacy.Consumer privacy is centered on protecting individuals' personal information from unauthorized collection, use, and disclosure. This information, known as Personally Identifiable Information (PII), includes names, addresses, phone numbers, email addresses, social security numbers, credit card details, browsing history, and location data. Protecting this data is crucial to prevent identity theft, financial fraud, and other harms. Strong privacy measures empower consumers by giving them control over their data and fostering trust between individuals and businesses, which is essential for a healthy digital economy.Protecting consumer privacy is necessary for several reasons: to prevent identity theft and fraud, to safeguard sensitive information from being misused for discriminatory practices, to give consumers rights over their data, and to build trust between consumers and businesses.Key regulatory frameworks that shape consumer privacy law include the European Union's General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). The GDPR emphasizes principles such as data minimization, purpose limitation, and obtaining explicit consent before processing personal data. It also gives individuals rights to access, correct, and erase their data. The CCPA grants California residents the rights to know what data is collected, to request its deletion, and to opt out of its sale. These regulations show a global trend toward stricter controls over how personal data is handled.Despite these regulations, challenges remain, including data breaches, pervasive tracking and surveillance of online activities, targeted advertising practices, complexities of cross-border data transfers, and emerging technologies.Enforcement mechanisms, such as regulatory bodies and judicial remedies, are essential for effective consumer privacy protection.Consumer privacy law will continue to evolve in response to technological advancements and the increasingly global nature of data flows. Enhanced consumer empowerment tools and ongoing regulatory innovation will likely shape future legal developments.

In this episode of French Insider, Sheppard Mullin partners Jonathan Meyer, Liisa Thomas and Carolyn Metnick join host and French Desk Co-Chair, Valérie Demont, to explore the evolving landscape of cybersecurity and privacy under a new Trump administration.   What We Discussed in This Episode: What is CISA and what is its role in cybersecurity? What can we expect from the Trump administration regarding cybersecurity? Could we see less regulation but greater enforcement? Might there be more stringent regulation with respect to cyber attacks and private ransomware? Where does the United States currently stand in terms of privacy law? What is the current status of state and federal privacy laws in relation to the healthcare industry? In terms of privacy, where could enforcement be headed under the incoming administration? How do the various state attorneys general and federal agencies coordinate on enforcement? What enforcement trends should businesses be aware of, and what do they need to focus on? What specific enforcement trends are we seeing in the healthcare space? Generally speaking, what types of penalties could result from enforcement actions?  Could a company's officers and directors face personal liability, either criminal or civil? How might class action litigation originate from a cybersecurity or privacy incident? What should businesses prioritize in terms of cybersecurity and privacy compliance?   About Jonathan Meyer As a partner in Sheppard Mullin's Governmental Practice Group and leader of the firm's National Security team, Jonathan E. Meyer counsels clients on their interactions with federal and state government, as well as national and homeland security, Congressional oversight, cybersecurity, AI, high tech, and transportation security, among other issues. Prior to returning to Sheppard Mullin, Jon served as the Sixth General Counsel of the U.S. Department of Homeland Security from 2021 to 2024. His decades of experience in Congress, the Justice Department and DHS position him to bring an insider's perspective to interactions between private companies and the government. He has defended scores of Congressional investigations and has prepared witnesses for over 100 hearings, including Supreme Court nomination hearings, impeachment hearings, oversight hearings, high tech and antitrust investigations, and civil rights investigations, among others. He has also represented defendants and witnesses in high-stakes Justice Department criminal investigations. The media – including CBS News, NPR, The Wall Street Journal, The New York Times, The Washington Post and Politico – regularly turn to Jon for insight into issues regarding national security, homeland security, government investigations, cybersecurity, immigration, politics and Congress. He has twice been honored with the Secretary of Homeland Security's Outstanding Service Medal, the highest civilian award bestowed by DHS, among numerous other prestigious accolades recognizing his exceptional service.   About Liisa Thomas Liisa M. Thomas, a partner in Sheppard Mullin's Chicago and London offices, serves as the Leader of the firm's Privacy and Cybersecurity Team and as the Office Managing Partner for Chicago. As a member of the Intellectual Property Practice, she focuses on privacy, advertising, and unfair competition law.  Liisa frequently coordinates global privacy, data security and digital advertising matters for her clients. They value her global insights and familiarity with business systems outside the U.S. With Liisa's assistance, her clients – including major consumer brands, advertising agencies and consumer research companies – are able to navigate thorny data breach disclosure issues, use emerging interactive advertising techniques and create compliant security programs, all while effectively managing their legal risks. Clients praise Liisa's ability to add real value to their businesses, and describe her as "keeping [clients] one step ahead of where [they] need to be." Liisa is the author of two treatises: Thomas on Data Breach: A Practical Guide to Handling Worldwide Data Breach Notification, which has been described as "a no-nonsense roadmap for in-house and external practitioners alike;" and Thomas on Big Data, praised for being a "comprehensive and detailed analysis of the complex and rapidly changing world of privacy law." Recognized as an industry leader in privacy, data security and advertising law, she has been honored by Best Lawyers in America, Leading Lawyers Network, Chambers, Super Lawyers, and The Legal 500, for her "broad depth of privacy knowledge."    About Carolyn Metnick Carolyn V. Metnick is a partner in Sheppard Mullin's Corporate Practice Group in the firm's Chicago office and a member of the Healthcare and Privacy & Cybersecurity Teams. She represents a range of healthcare industry clients, including hospitals and health systems, physician organizations and digital health companies. Carolyn's practice focuses on healthcare regulatory and transactional matters, with an emphasis on health information privacy and security. In addition to providing guidance on various privacy and security laws, including HIPAA and the California Consumer Privacy Act (CCPA), she also counsels businesses in data breach investigations and compliance with federal and state breach notification laws. Carolyn also advises healthcare clients on issues related to AI, including governance, contractual matters, and data related issues. Additionally, she represents healthcare industry clients in transactional matters, including joint ventures, mergers and acquisitions. Her background as a former litigator helps inform her transactional work. Carolyn is a Certified Information Privacy Professional/United States (CIPP/US) and a Certified Information Privacy Professional/Europe (CIPP/E). She is also the founder and leader of Sheppard Mullin Healthy AI, an initiative focused on legal issues related to the use of AI in healthcare.    About Valérie Demont Based in the firm's New York office, Valérie Demont is a partner in Sheppard Mullin's Corporate Practice Group, where she focuses primarily on U.S. and cross-border mergers and acquisitions and corporate governance matters. As a leader of the firm's French Desk team, she advises foreign companies on the establishment and growth of their operations in the United States, acting as de facto "outside general counsel" for non-U.S. companies in the United States.  Valérie has been involved in numerous mergers, acquisitions, joint ventures and dispositions for corporations and private equity funds in the U.S., Europe (including France) and Asia (including India). Not only is she a frequent speaker at events focused on cross-border trade, but she is also an outside pro bono counsel to Girls Who Invest, a nonprofit organization dedicated to increasing the number of women in portfolio management and executive leadership in the asset management industry.   Contact Info: Jonathan E. Meyer Liisa M. Thomas Carolyn V. Metnick  Valérie Demont   Thank you for listening! Don't forget to SUBSCRIBE to the show to receive every new episode delivered straight to your podcast player every week. If you enjoyed this episode, please help us get the word out about this podcast. Rate and Review this show in Apple Podcasts, Deezer, Amazon Music, or Spotify. It helps other listeners find this show. This podcast is for informational and educational purposes only. It is not to be construed as legal advice specific to your circumstances. If you need help with any legal matter, be sure to consult with an attorney regarding your specific needs.  

Alan L. Friel is Chair of Squire Patton Boggs' Data Privacy, Cybersecurity & Digital Assets Practice. He is tier-1 ranked by Chambers, and BTI Consulting Group has named Alan a Client Service All-Star, recognizing lawyers who stand above all others in delivering exceptional client service. In this episode… Evolving privacy regulations like the California Consumer Privacy Act (CCPA) are reshaping the way companies approach data management and compliance. CCPA's proposed draft regulations would require certain businesses to conduct cybersecurity audits, privacy risk assessments, and implement governance surrounding automated decision-making and AI technologies. While these frameworks help protect consumer data, they also introduce operational challenges and increased expenses for companies. How can companies prepare for compliance while effectively managing data and reducing costs? Privacy compliance is more than a legal requirement — it's a vital part of sound business strategy. Navigating compliance obligations requires companies to adopt a proactive approach to data governance. Businesses need to implement good data hygiene practices and conduct privacy risk assessments to identify and mitigate risks. These processes help businesses maintain their data inventory, respond to consumer privacy rights requests, and manage information assets. However, the legal landscape remains complicated, with questions about whether some regulatory requirements may conflict with First Amendment protections. In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels speak with Alan Friel, Chair of the Data Privacy, Cybersecurity & Digital Assets Practice at Squire Patton Boggs, about the costs, benefits, and legal implications of regulatory compliance. Alan explains why businesses should adopt privacy risk assessments as a best practice, regardless of ongoing legal uncertainties, and discusses the intersection of privacy regulations with free speech rights under the First Amendment. He emphasizes the importance of proactive data management practices and governance to navigate compliance challenges and position businesses for long-term success in a shifting regulatory environment.

In Episode 3 of The Marketing Corner, we had very special guest, Marc Enzor, founder of Geeks 2 You and co-host, Roger LaFaye of LaFaye processing. The Marketing Corner is proudly sponsored by: David Bradley Insurance, Medicare A to Z C Eaton Photography LaFaye Processing dba MiCamp Last Bridge Media Mark Weiss | Sales Performance Strategies In this episode, we'll dive deep into why marketing and cybersecurity are essential for small businesses, how they intersect, and what strategies you can implement to protect and grow your business in the digital age. Why Marketing Matters for Small Businesses Marketing is the lifeblood of any small business. It's the key to building brand awareness, attracting new customers, retaining loyal clients, and driving sales. For many small businesses, particularly those that don't have the luxury of a massive advertising budget, marketing can be the most efficient way to reach target audiences and stand out in the marketplace. 1. Building Brand Awareness One of the most significant benefits of marketing is that it helps establish brand awareness. In a world where consumers are bombarded with options, making your business known is critical. Through consistent branding, targeted content, and customer engagement, small businesses can build a reputation and gain recognition within their industries. 2. Connecting with Customers Effective marketing enables businesses to connect with their audience on a personal level. With the right strategies, small businesses can create a sense of community, respond to customer needs, and build trust. Personalized marketing messages, customer reviews, and interactive social media campaigns help foster relationships that are the backbone of small business success. 3. Driving Sales and Growth At the end of the day, every small business needs marketing to drive sales. Whether it's through online ads, content marketing, or direct outreach, a smart marketing plan ensures you reach potential customers where they are, increasing the likelihood of conversions. The more visibility your business has, the more opportunities you create for growth. The use of tools like Google Analytics, Facebook Insights, and email marketing software helps small businesses track the effectiveness of their marketing campaigns. By understanding what works and what doesn't, businesses can make data-driven decisions that maximize return on investment (ROI). The Growing Threat of Cybersecurity Risks for Small Businesses While marketing helps businesses grow, cybersecurity ensures that growth is not derailed by digital threats. Cybersecurity has become a critical concern for small businesses, as they are increasingly targeted by cybercriminals. The misconception that small businesses are too small to be attacked is one of the main reasons they fall victim to cyber threats. In fact, small businesses often have weaker security systems, making them an easier target for hackers. 1. Data Protection Small businesses often handle sensitive customer information, including payment details, personal data, and confidential communications. Protecting this data is paramount, not only for maintaining trust but also for complying with regulations such as the General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA). A data breach can have devastating effects, leading to financial losses, reputational damage, and even legal repercussions. Implementing strong cybersecurity measures, such as encryption, secure payment gateways, and firewalls, is critical to ensure customer data is safe from cybercriminals. Educating employees about phishing attacks and password security can also greatly reduce the risk of breaches.

Welcome to another edition of Brand Stories, part of our On Location coverage of Black Hat Conference 2024 in Las Vegas. In this episode, Sean Martin and Marco Ciappelli chat with Jeswin Mathai, Chief Architect at SquareX, one of our esteemed sponsors for this year's coverage. Jeswin brings his in-depth knowledge and experience in cybersecurity to discuss the innovative solutions SquareX is bringing to the table and what to expect at this year's event.Getting Ready for Black Hat 2024The conversation kicks off with Marco and Sean sharing their excitement about the upcoming Black Hat USA 2024 in Las Vegas. They fondly recall their past experiences and the anticipation that comes with one of the most significant cybersecurity events of the year. Both hosts highlight the significance of the event for ITSP Magazine, marking ten years since its inception at Black Hat.Introducing Jeswin Mathai and SquareXJeswin Mathai introduces himself as the Chief Architect at SquareX. He oversees managing the backend infrastructure and ensuring the product's efficiency and security, particularly as a browser extension designed to be non-intrusive and highly effective. With six years of experience in the security industry, Jeswin has made significant contributions through his work published at various conferences and the development of open-source tools like AWS Goat and Azure Goat.The Birth of SquareXSean and Marco delve deeper into the origins of SquareX. Jeswin shares the story of how SquareX was founded by Vivek Ramachandran, who previously founded Pentester Academy, a cybersecurity education company. Seeing the persistent issues in consumer security and the inefficacy of existing antivirus solutions, Vivek decided to shift focus to consumer security, particularly the visibility gap in browser-level security.Addressing Security GapsJeswin explains how traditional security solutions, like endpoint security and secure web gateways, often lack visibility at the browser level. Attacks originating from browsers go unnoticed, creating significant vulnerabilities. SquareX aims to fill this gap by providing comprehensive browser security, detecting and mitigating threats in real time without hampering user productivity.Innovative Security SolutionsSquareX started as a consumer-based product and later expanded to enterprise solutions. The core principles are privacy, productivity, and scalability. Jeswin elaborates on how SquareX leverages advanced web technologies like WebAssembly to perform extensive computations directly on the browser, ensuring minimal dependency on cloud resources and optimizing user experience.A Scalable and Privacy-Safe SolutionMarco raises the question of data privacy regulations like GDPR in Europe and the California Consumer Privacy Act (CCPA). Jeswin reassures that SquareX is designed to be highly configurable, allowing administrators to adjust data privacy settings based on regional regulations. This flexibility ensures that user data remains secure and compliant with local laws.Real-World Use CasesTo illustrate SquareX's capabilities, Jeswin discusses common use cases like phishing attacks and how SquareX protects users. Attackers often exploit legitimate platforms like SharePoint and GitHub to bypass traditional security measures. With SquareX, administrators can enforce policies to block unauthorized credential entry, perform live analysis, and categorize content to prevent phishing scams and other threats.Looking Ahead to Black Hat and DEF CONThe discussion wraps up with a look at what attendees can expect from SquareX at Black Hat and DEF CON. SquareX will have a booth at both events, and Jeswin previews some of the talks on breaking secure web gateways and the dangers of malicious browser extensions. He encourages everyone to visit their booths and attend the talks to gain deeper insights into today's cybersecurity challenges and solutions.ConclusionIn conclusion, the conversation with Jeswin Mathai offers a comprehensive look at how SquareX is revolutionizing browser security. Their innovative solutions address critical gaps in traditional security measures, ensuring both consumer and enterprise users are protected against sophisticated threats. Join us at Black Hat Conference 2024 to learn more and engage with the experts at SquareX.Learn more about SquareX: https://itspm.ag/sqrx-l91Note: This story contains promotional content. Learn more.Guest: Jeswin Mathai, Chief Architect, SquareX [@getsquarex]On LinkedIn | https://www.linkedin.com/in/jeswinmathai/ResourcesLearn more and catch more stories from SquareX: https://www.itspmagazine.com/directory/squarexView all of our Black Hat USA  2024 coverage: https://www.itspmagazine.com/black-hat-usa-2024-hacker-summer-camp-2024-event-coverage-in-las-vegasAre you interested in telling your story?https://www.itspmagazine.com/telling-your-story

Welcome to another edition of Brand Stories, part of our On Location coverage of Black Hat Conference 2024 in Las Vegas. In this episode, Sean Martin and Marco Ciappelli chat with Jeswin Mathai, Chief Architect at SquareX, one of our esteemed sponsors for this year's coverage. Jeswin brings his in-depth knowledge and experience in cybersecurity to discuss the innovative solutions SquareX is bringing to the table and what to expect at this year's event.Getting Ready for Black Hat 2024The conversation kicks off with Marco and Sean sharing their excitement about the upcoming Black Hat USA 2024 in Las Vegas. They fondly recall their past experiences and the anticipation that comes with one of the most significant cybersecurity events of the year. Both hosts highlight the significance of the event for ITSP Magazine, marking ten years since its inception at Black Hat.Introducing Jeswin Mathai and SquareXJeswin Mathai introduces himself as the Chief Architect at SquareX. He oversees managing the backend infrastructure and ensuring the product's efficiency and security, particularly as a browser extension designed to be non-intrusive and highly effective. With six years of experience in the security industry, Jeswin has made significant contributions through his work published at various conferences and the development of open-source tools like AWS Goat and Azure Goat.The Birth of SquareXSean and Marco delve deeper into the origins of SquareX. Jeswin shares the story of how SquareX was founded by Vivek Ramachandran, who previously founded Pentester Academy, a cybersecurity education company. Seeing the persistent issues in consumer security and the inefficacy of existing antivirus solutions, Vivek decided to shift focus to consumer security, particularly the visibility gap in browser-level security.Addressing Security GapsJeswin explains how traditional security solutions, like endpoint security and secure web gateways, often lack visibility at the browser level. Attacks originating from browsers go unnoticed, creating significant vulnerabilities. SquareX aims to fill this gap by providing comprehensive browser security, detecting and mitigating threats in real time without hampering user productivity.Innovative Security SolutionsSquareX started as a consumer-based product and later expanded to enterprise solutions. The core principles are privacy, productivity, and scalability. Jeswin elaborates on how SquareX leverages advanced web technologies like WebAssembly to perform extensive computations directly on the browser, ensuring minimal dependency on cloud resources and optimizing user experience.A Scalable and Privacy-Safe SolutionMarco raises the question of data privacy regulations like GDPR in Europe and the California Consumer Privacy Act (CCPA). Jeswin reassures that SquareX is designed to be highly configurable, allowing administrators to adjust data privacy settings based on regional regulations. This flexibility ensures that user data remains secure and compliant with local laws.Real-World Use CasesTo illustrate SquareX's capabilities, Jeswin discusses common use cases like phishing attacks and how SquareX protects users. Attackers often exploit legitimate platforms like SharePoint and GitHub to bypass traditional security measures. With SquareX, administrators can enforce policies to block unauthorized credential entry, perform live analysis, and categorize content to prevent phishing scams and other threats.Looking Ahead to Black Hat and DEF CONThe discussion wraps up with a look at what attendees can expect from SquareX at Black Hat and DEF CON. SquareX will have a booth at both events, and Jeswin previews some of the talks on breaking secure web gateways and the dangers of malicious browser extensions. He encourages everyone to visit their booths and attend the talks to gain deeper insights into today's cybersecurity challenges and solutions.ConclusionIn conclusion, the conversation with Jeswin Mathai offers a comprehensive look at how SquareX is revolutionizing browser security. Their innovative solutions address critical gaps in traditional security measures, ensuring both consumer and enterprise users are protected against sophisticated threats. Join us at Black Hat Conference 2024 to learn more and engage with the experts at SquareX.Learn more about SquareX: https://itspm.ag/sqrx-l91Note: This story contains promotional content. Learn more.Guest: Jeswin Mathai, Chief Architect, SquareX [@getsquarex]On LinkedIn | https://www.linkedin.com/in/jeswinmathai/ResourcesLearn more and catch more stories from SquareX: https://www.itspmagazine.com/directory/squarexView all of our Black Hat USA  2024 coverage: https://www.itspmagazine.com/black-hat-usa-2024-hacker-summer-camp-2024-event-coverage-in-las-vegasAre you interested in telling your story?https://www.itspmagazine.com/telling-your-story

On this episode of Ropes & Gray's California Law for Asset Managers podcast series, asset management partner Catherine Skulan is joined by data, privacy & cybersecurity partner Ed McNicholas to discuss recent developments in California privacy law. California's privacy laws can implicate a wide range of managers—from those based in the state to those that simply have California investors. Catherine and Ed delve into the implications for asset managers of the California Consumer Privacy Act (CCPA) of 2020 and its amending legislation, the California Privacy Rights Act (CPRA), which became enforceable for violations after July 1, 2023. 

By Adam Turteltaub There's no General Data Protection Regulation (GDPR) in the US. Absent a comprehensive, national privacy law, states have stepped in to fill the gap. As Adam Greene (LinkedIn), Partner at Davis Wright Tremaine explains in this podcast, that's creating some complications. The California Consumer Privacy Act (CCPA) already differs from subsequent laws in several states which use language reminiscent of the GDPR. And while there are many similarities, some differences are substantial. For example, some state laws are targeted at businesses, not non-profits. That's an important distinction for healthcare with so many non-profit institutions. Perhaps the greatest challenge for organizations is figuring out which standard to follow, if any. Do they take a state-by-state approach, or one national approach based on the toughest state laws? Whatever the choice, it's important to determine what data you have since there may be limits on collection and a requirement to share that data with consumers who want to see it. Listen in to learn more about what the states are requiring and what you need to do to meet their expectations.

Welcome to Health-e Law, Sheppard Mullin's podcast exploring the fascinating health-tech topics and trends of the day. In this episode, Sheppard Mullin partners Carolyn Metnick and Michael Orlando join Phil Kim to discuss the firm's experience at HIMSS Global Health Conference 2024 in Orlando. The conference is one of the leading health IT educational gatherings and draws visionary CIOs, top-level executives, dedicated healthcare providers, and health IT professionals to cover the latest trends in digital health, including AI and cybersecurity.     What We Discussed in this Episode: Were there any noticeable shifts in vendors from HIMSS 2024? What sort of role did AI play in this year's conference? How were conversations around AI different this year versus last year? How can AI help with healthcare equity and patient disparities? What was the discussion around cybersecurity? How can ocular imaging technology change the business model for healthcare delivery and patient care? About Carolyn Metnick Carolyn Metnick is a partner in Sheppard Mullin's Corporate Practice Group in the firm's Chicago office and a member of the Healthcare and Privacy & Cybersecurity Teams. Carolyn represents a range of healthcare industry clients, including hospitals and health systems, physician organizations and digital health companies. She advises on healthcare regulatory and transactional matters, focusing on health information privacy and security.  Carolyn advises clients on a range of privacy and security laws, including HIPAA and the California Consumer Privacy Act (CCPA). She also counsels businesses in data breach investigations and compliance with federal and state breach notification laws. Carolyn is a Certified Information Privacy Professional/United States (CIPP/US) and a Certified Information Privacy Professional/Europe (CIPP/E).  Carolyn also represents healthcare industry clients in transactional matters, guiding clients through joint ventures, mergers and acquisitions, and advising on healthcare regulatory issues. Her background as a former litigator helps inform her transactional work.    About Michael Orlando Michael Orlando is a corporate and intellectual property transactions partner in the firm's San Diego (Del Mar) office. He is Co-Team Leader of the firm's Technology Transactions Team, and a member of the Life Sciences and Digital Health teams. He founded a software-as-a-service (SaaS) business prior to attending law school, and worked at a publicly-traded biotechnology company on an in-house secondment, and uses that experience in bringing a practical, business-oriented approach to his engagements.  For over 20 years he has been assisting innovators, cutting-edge technology companies and other organizations develop, acquire, sell, and commercialize intellectual property assets, including technology licensing, commercial agreements, strategic partnerships, research, development and collaboration contracts, manufacturing and supply arrangements, outsourcing, and corporate transactions.   About Phil Kim A partner in the Corporate and Securities Practice Group in Sheppard Mullin's Dallas office and co-lead of its Digital Health Team, Phil Kim has a number of clients in digital health. He has assisted multinational technology companies entering the digital health space with various service and collaboration agreements for their wearable technology, along with global digital health companies bolstering their platform in the behavioral health space. He also assists public medical device, biotechnology, and pharmaceutical companies, as well as the investment banks that serve as underwriters in public securities offerings for those companies. Phil also assists various healthcare companies on transactional and regulatory matters. He counsels healthcare systems, hospitals, ambulatory surgery centers, physician groups, home health providers, and other healthcare companies on the buy- and sell-side of mergers and acquisitions, joint ventures, and operational matters, which include regulatory, licensure, contractual, and administrative issues. Phil regularly advises clients on matters related to healthcare compliance, including liability exposure, the Stark law, anti-kickback statutes, and HIPAA/HITECH privacy issues. He also provides counsel on state and federal laws, business structuring formation, employment issues, and involving government agencies, including state and federal agencies. Contact Information Carolyn Metnick Michael Orlando Phil Kim   Thank you for listening! Don't forget to SUBSCRIBE to the show to receive new episodes delivered straight to your podcast player every month. If you enjoyed this episode, please help us get the word out about this podcast. Rate and Review this show on Apple Podcasts, Amazon Music, or Spotify. It helps other listeners find this show. This podcast is for informational and educational purposes only. It is not to be construed as legal advice specific to your circumstances. If you need help with any legal matter, be sure to consult with an attorney regarding your specific needs.

In this episode of State of Identity, host Cameron D'Ambrosi welcomes Greg Leighton, Vice Chair of the Privacy and Incident Response Team at Polsinelli, for a deep dive into the evolving landscape of data privacy and security. Discover how technology's rapid advancement outpaces legal frameworks, prompting novel challenges for businesses and legal professionals, and how Polsinelli navigates this dynamic terrain. Find out how changes in laws like the California Consumer Privacy Act (CCPA) and the General Data Protection Regulation (GDPR) impact businesses, leading to innovative compliance and risk management strategies. From the implications of web-tracking lawsuits to the regulatory focus on AI and automated decision-making, this conversation sheds light on the key issues keeping clients at night and the complex interplay between technology, law, and privacy. Gain insights into Greg's thoughts on data governance and the future of digital identity, as well as the intriguing potential of generative AI in enhancing and complicating the privacy landscape.

Welcome to Health-e Law, Sheppard Mullin's podcast exploring the fascinating health-tech topics and trends of the day. Our digital health legal team, alongside brilliant experts and thought leaders, share how innovations can solve some of healthcare's (and maybe the world's) biggest problems if properly navigated.  In this special episode, partners Sara Shanti and Caroline Metnick join Phil Kim to discuss Sheppard Mullin's recent attendance at ViVE 2024, the premier conference for digital health innovators primarily focusing on optimizing patient care and improving the patient user experience.   What We Discussed in this Episode: What were some notable takeaways from ViVE 2024? How is AI poised to improve healthcare delivery? How might virtual care models help reduce burnout among clinicians and improve access to care? How were the perils of AI addressed, particularly its potential to perpetuate healthcare bias? Including automating bias. Why is ethical AI governance critical in healthcare? How is data driving both opportunity and risk in the healthcare sector? How stakeholders struggle with data fragmentation and data as a valued asset.    About Carolyn Metnick Carolyn Metnick is a partner in Sheppard Mullin's Corporate Practice Group in the firm's Chicago office and a member of the Healthcare and Privacy & Cybersecurity Teams. Carolyn represents a range of healthcare industry clients, including hospitals and health systems, physician organizations and digital health companies. She advises on healthcare regulatory and transactional matters, focusing on health information privacy and security.  Carolyn advises clients on a range of privacy and security laws, including HIPAA and the California Consumer Privacy Act (CCPA). She also counsels businesses in data breach investigations and compliance with federal and state breach notification laws. Carolyn is a Certified Information Privacy Professional/United States (CIPP/US) and a Certified Information Privacy Professional/Europe (CIPP/E).  Carolyn also represents healthcare industry clients in transactional matters, guiding clients through joint ventures, mergers and acquisitions, and advising on healthcare regulatory issues. Her background as a former litigator helps inform her transactional work.    About Sara Shanti A partner in the Corporate Practice Group in the Sheppard Mullin's Chicago office and co-lead of its Digital Health Team, Sara Shanti's practice sits at the forefront of healthcare technology by providing practical counsel on novel innovation and complex data privacy matters. Using her medical research background and HHS experience, Sara advises providers, payors, start-ups, technology companies, and their investors and stakeholders on digital healthcare and regulatory compliance matters, including artificial intelligence (AI), augmented and virtual reality (AR/VR), gamification, implantable and wearable devices, and telehealth. At the cutting edge of advising on "data as an asset" programming, Sara's practice supports investment in innovation and access to care initiatives, including mergers and acquisitions involving crucial, high-stakes and sensitive data, medical and wellness devices, and web-based applications and care.   About Phil Kim A partner in the Corporate and Securities Practice Group in Sheppard Mullin's Dallas office and co-lead of its Digital Health Team, Phil Kim has a number of clients in digital health. He has assisted multinational technology companies entering the digital health space with various service and collaboration agreements for their wearable technology, along with global digital health companies bolstering their platform in the behavioral health space. He also assists public medical device, biotechnology, and pharmaceutical companies, as well as the investment banks that serve as underwriters in public securities offerings for those companies. Phil also assists various healthcare companies on transactional and regulatory matters. He counsels healthcare systems, hospitals, ambulatory surgery centers, physician groups, home health providers, and other healthcare companies on the buy- and sell-side of mergers and acquisitions, joint ventures, and operational matters, which include regulatory, licensure, contractual, and administrative issues. Phil regularly advises clients on matters related to healthcare compliance, including liability exposure, the Stark law, anti-kickback statutes, and HIPAA/HITECH privacy issues. He also provides counsel on state and federal laws, business structuring formation, employment issues, and involving government agencies, including state and federal agencies.   Contact Information Carolyn Metnick Sara Shanti Phil Kim Thank you for listening! Don't forget to SUBSCRIBE to the show to receive new episodes delivered straight to your podcast player every month. If you enjoyed this episode, please help us get the word out about this podcast. Rate and Review this show on Apple Podcasts, Google Podcasts, Amazon Music, or Spotify. It helps other listeners find this show. This podcast is for informational and educational purposes only. It is not to be construed as legal advice specific to your circumstances. If you need help with any legal matter, be sure to consult with an attorney regarding your specific needs.

In this episode of GovTech Today, hosts Russell Lowery and Jennifer Saha delve into the complex topic of privacy and regulatory frameworks in California. They discuss European regulations influencing California legislation, such as the General Data Protection Regulation (GDPR), and discuss local laws such as the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). The hosts evaluate the roles of the CCPA and CPRA, especially pertaining to consumer rights, data brokers, and the wider implications for businesses and internet companies. They also outline the role of the California Privacy Protection Agency (CPPA) in enforcing these laws. The discussion concludes with reflections on the rapid pace of tech innovations like AI, the importance of understanding and managing these technologies' impact, and the necessity for businesses and individuals to keep abreast of regulatory changes.00:05 Introduction to the Episode00:26 Understanding Privacy Laws in California00:52 Exploring the California Consumer Privacy Act03:06 The Impact of CCPA on Data Brokers03:34 Introduction to the California Privacy Rights Act03:46 Understanding the Role of the California Privacy Protection Agency04:41 The Regulatory Process and Challenges06:54 The Impact of Privacy Laws on Businesses08:14 The Future of Privacy Regulations and AI12:33 The Importance of Compliance and Collaboration15:18 Looking Forward: Upcoming Legislation16:05 Conclusion and Final Thoughts

How US Companies Are Managing Privacy? What are the steps being taken for complying with privacy laws? What are the challenges that companies face? How is AI & ChatGPT creating new challenges? Odia Kagan and Punit Bhatia will discuss this and more in this episode.   KEY CONVERSATION POINTS  What is GDPR in one word?  How do US companies view GDPR?  What triggers privacy conversation?  How do you see the US federal law when it comes to AI regulation?  How organizations control legislations  ABOUT THE GUEST  Odia Kagan is a Partner and Chair of GDPR Compliance & International Privacy Practice at Fox Rothschild LLP, a US national law firm. Odia has advised more than 200 companies of varying industries and sizes on compliance with data related regulation including: AI and biometrics regulation, GDPR, the California Consumer Privacy Act (CCPA) and other US data protection laws. With an emphasis on assessing future trends and a pragmatic, risk based approach, Odia provides clients with practical advice on how to design and implement their products and services in a compliant manner. Odia holds 3 law degrees, 5 bar admissions and 7 privacy certifications (CIPP/US/E, CIPM, CDPO, C-GDPR/P, FIP, PLS). You can follow her on https://www.linkedin.com/in/odiakagan/ or X at @odiakagan.  ABOUT THE HOST  Punit Bhatia is one of the leading privacy experts who works independently and has worked with professionals in over 30 countries. Punit works with business and privacy leaders to create an organization culture with high AI & privacy awareness and compliance as a business priority by creating and implementing a AI & privacy strategy and policy.   Punit is the author of books “Be Ready for GDPR” which was rated as the best GDPR Book, “AI & Privacy – How to Find Balance”, “Intro To GDPR”, and “Be an Effective DPO”. Punit is a global speaker who has spoken at over 50 global events. Punit is the creator and host of the FIT4PRIVACY Podcast. This podcast has been featured amongst top GDPR and privacy podcasts.  As a person, Punit is an avid thinker and believes in thinking, believing, and acting in line with one's value to have joy in life. He has developed the philosophy named ‘ABC for joy of life' which passionately shares. Punit is based out of Belgium, the heart of Europe.     RESOURCES  Websites www.fit4privacy.com , www.punitbhatia.com,  https://www.linkedin.com/in/odiakagan/   Podcast https://www.fit4privacy.com/podcast Blog https://www.fit4privacy.com/blog YouTube http://youtube.com/fit4privacy        --- Send in a voice message: https://podcasters.spotify.com/pod/show/fit4privacy/message

California's data privacy regulations, primarily embodied in the California Consumer Privacy Act (CCPA) and its extension through the California Privacy Rights Act (CPRA), constitute a pioneering and influential framework. These regulations, effective from 2018 and further strengthened in 2020, set a standard for data protection not only within the state but also across the national and global economy. In this episode of Corruption, Crime and Compliance, Michael Volkov explores the nuances of the CCPA and CPRA, and the evolving data privacy landscape.You'll hear Michael talk about:The lack of a federal data privacy law in the United States has led to a complex patchwork of state laws. Businesses are faced with the challenge of navigating these varied regulations, which contributes to compliance complexities.California, through the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), is a leader in data privacy regulation in the United States, with implications for both the national and global economy. The CPRA, enacted in 2020, establishes the California Privacy Protection Agency (CPPA) to enforce the law robustly.The CPRA introduces critical changes, including: Protection of employee and business-to-business personal information, which is now subject to the same privacy protections as consumer personal information. Enhanced consumer rights, such as the right to access, delete, and correct their personal information, and the right to opt out of the sale of their personal information.Companies are now obligated to implement reasonable security precautions and undergo annual cybersecurity audits and risk assessments.In addition to California, other states such as Virginia, Colorado, Utah, Iowa, and Connecticut have also enacted data privacy laws that echo the GDPR. Businesses must stay up-to-date on evolving compliance requirements and adapt their systems accordingly.Compliance issues comprise risk assessments, impact assessments, adherence to data breach requirements, and compliance with notification standards. Companies are developing systems based on the most stringent set of laws to guarantee compliance.KEY QUOTES“We have a patchwork of laws that apply in the United States. Unfortunately, we continue to suffer from the absence of a federal data privacy and breach notification law. Congress has tried for years to broker a deal here, but it has never been able to overcome strong lobbying forces. Whether it's high tech trial lawyers, law enforcement, or other gadflies, the public continues to suffer.” - Michael Volkov“Many commentators have suggested that California's data privacy laws and regulations are starting to look closer and closer to the EU's GDPR regime.” - Michael Volkov“To me, we're getting into a more strict regulation. We already have, under the California Consumer Privacy Act, a requirement to have on your website: an ‘opt out' in terms of any information that you may provide to a website, that it can't be used by the entity for sharing or selling or whatever consumer products purposes. So keep tabs on the California events.” - Michael VolkovResourcesMichael Volkov on LinkedIn | TwitterThe Volkov Law Group

Brandon Wiebe, General Counsel and Head of Privacy at Transcend, offers tips about implementing data governance frameworks and how to utilize software in the process. Brandon's company is a privacy platform that helps legal and compliance teams automate data compliance tasks. Brandon explains that most data privacy laws, like the General Data Protection Regulation (GDPR) in the EU and U.S. state laws like the California Consumer Privacy Act (CCPA), generally require similar things of companies: notice at the time of customer data collection implementation of data security obligations that companies have a lawful basis for collecting information and that use of the information is consistent with the companies stated purpose for collecting it individuals have the right to opt out of data sale or sharing. Despite the many data privacy laws already enacted and new ones on the horizon, Brandon is quick to emphasize that data privacy teams should not let perfect be the enemy of good. They must get started somewhere in their data privacy policy journey. He says the best place to start is an organizational data map detailing all the places in a company's tech stack holding data subject to privacy regulations. Once a company has its data mapped, it can more easily comply with customer requests for information as permitted under data privacy laws and can also ensure it is not keeping more data than needed. Brandon also touches on why AI can complicate data privacy efforts, but also notes that artificial intelligence can also assist with data privacy efforts.

Startup Privacy Policies

Welcome to Barclay Damon Live: Cyber Sip™ episode 42, “‘California Emissions': Is the CCPA a Bellwether for the Rest of Us?” Michelle Merola, leader of Hodgson Russ's Cybersecurity & Privacy Practice, returns to talk with host Kevin Szczepanski about the changing landscape of privacy laws and specifically how California leads the way with its recently revised California Consumer Privacy Act (CCPA). Kevin and Michelle review the changes, which make the law even more consumer friendly, and touch on how other states across the country may follow suit (or not). Topics include the new regulatory agency the state has established as well as how even businesses based outside California may need to comply with the law. Listen now for this vital information.

The California Privacy Protection Agency (CPPA) and California Office of Attorney General (OAG) are publicly pressing ahead with enforcement now that they have the authority to enforce the California Consumer Privacy Act (CCPA) as of July 1st. While the agencies did not announce headline grabbing enforcement decisions at the start of the month, there were some notable developments. https://www.adlawaccess.com/2023/07/articles/ccpa-update-agencies-push-ahead-with-enforcement-as-superior-court-delays-new-regulations/ Alysa Hutnik ahutnik@kelleydrye.com (202) 342-8603 https://www.kelleydrye.com/Our-People/Alysa-Z-Hutnik Alexander Schneider aschneider@kelleydrye.com (202) 342-8634 https://www.kelleydrye.com/Our-People/Alexander-I-Schneider Subscribe to the Ad Law Access blog - www.adlawaccess.com/subscribe/ Subscribe to the Ad Law News Newsletter - https://www.kelleydrye.com/News-Events/Publications/Newsletters/Ad-Law-News-and-Views?dlg=1 View the Advertising and Privacy Law Resource Center - https://www.kelleydrye.com/Advertising-and-Privacy-Law-Resource-Center Find all of our links here linktr.ee/KelleyDryeAdLaw Hosted by Simone Roach

We are pleased to introduce a new Ropes & Gray podcast series, California Law for Asset Managers, which explores California state laws of importance to asset managers.This series will examine California state privacy, lobbying, fee disclosure and other laws that are relevant to asset managers that are, or are thinking about becoming, active in the state. California's privacy laws can implicate a wide range of managers—from those based in the state to those that simply have California investors. And given the importance to many sponsors of partnerships with state and local pension plans, two episodes will focus on lobbying and fee disclosure issues that asset managers must grapple with when dealing with these plans. We will look to provide updates on these matters and insights into other relevant California law matters for asset managers in later podcasts.On this opening episode, asset management counsel Catherine Skulan is joined by data, privacy & cybersecurity counsel Kevin Angle to discuss recent developments in California privacy law. Catherine and Kevin delve into the implications for asset managers of the California Consumer Privacy Act (CCPA) of 2020 and its amending legislation, the California Privacy Rights Act (CPRA), which becomes enforceable for violations on or after July 1, 2023.

How to manage challenge of multiple privacy laws with Nia Castelly and Punit Bhatia in The FIT4Privacy Podcast E087 (trailer)     Firstly, startups must understand the applicable privacy laws and regulations in their jurisdiction. For example, in the United States, the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) are two important regulations to be aware of. Startups must ensure that they are complying with the requirements of these regulations, such as providing clear and concise privacy notices, obtaining appropriate consent for data collection and processing, and implementing adequate data security measures.  Secondly, startups should consider adopting privacy best practices. This could include conducting regular privacy impact assessments, implementing privacy by design principles, appointing a data protection officer, and providing privacy training to staff. Startups should also regularly review and update their privacy policies and procedures to ensure they are keeping pace with changes in the regulatory landscape and their own data processing activities.  Finally, startups must be transparent with their customers about their data collection and processing practices. This means being clear about what data is being collected, how it will be used, who it will be shared with, and how long it will be retained. Startups must also provide customers with options for controlling their data, such as the ability to opt-out of marketing communications or to request deletion of their personal information.  Overall, privacy compliance is a critical consideration for startups, and should be integrated into all aspects of the business from the outset. By taking a proactive approach to privacy, startups can build trust with their customers, avoid legal and financial risks, and differentiate themselves from competitors.     This is an extract from the full episode of The FIT4PRIVACY Podcast. If you like this, you will enjoy the full episode.        RESOURCES   Websites: www.fit4privacy.com , www.punitbhatia.com , ⁠https://checks.google.com/⁠ Take advantage of our Free GDPR training: https://www.fit4privacy.com/course/free    Blog: www.fit4privacy.com/blog   Podcast: www.fit4privacy.com/podcast    YouTube: http://youtube.com/fit4privacy     Email: hello@fit4privacy.com    --- Send in a voice message: https://podcasters.spotify.com/pod/show/fit4privacy/message

We all know that privacy regulations are getting more strict. And that many of our users no longer believe that "privacy is dead". But for even medium-sized organizations, actually tracking how we are using personal info in our myriad of applications and services is very tricky and error prone. On this episode, we have Thomas La Piana from the Fides project to discuss privacy in our applications and how Fides can enforce and track privacy requirements in your Python apps. Links from the show California Consumer Privacy Act (CCPA): oag.ca.gov 30 Biggest GDPR Fines So Far: tessian.com Website fined for Google Fonts: theregister.com Fides on Github: github.com Fides: ethyca.com Bunny.net Fonts: fonts.bunny.net DBT: getdbt.com eBFP Kernel tools: ebpf.io nox: nox.thea.codes rich-click: github.com Watch this episode on YouTube: youtube.com Episode transcripts: talkpython.fm --- Stay in touch with us --- Subscribe to us on YouTube: youtube.com Follow Talk Python on Mastodon: talkpython Follow Michael on Mastodon: mkennedy Sponsors Microsoft Founders Hub 2023 Sentry Error Monitoring, Code TALKPYTHON Talk Python Training

Dr. Eric Cole from Theon Technology discussing how the rollout of The California Consumer Privacy Act (CCPA) could impact businesses, the latest developments, and what this means for future data breaches. Ben's story talks about a case of an overbroad warrant for Ring Doorbell data. Dave looks at software liability and whether it may see increased scrutiny from the Biden administration.  While this show covers legal topics, and Ben is a lawyer, the views expressed do not constitute legal advice. For official legal advice on any of the topics we cover, please contact your attorney.  The privacy loophole in your doorbell Cybersecurity's Third Rail: Software Liability Got a question you'd like us to answer on our show? You can send your audio file to caveat@thecyberwire.com. Hope to hear from you.

Tune in to the second episode of Ropes & Gray's podcast series The Data Day, brought to you by the firm's data, privacy & cybersecurity practice. This series focuses on the day-to-day effects that data has on all of our lives as well as other exciting and interesting legal and regulatory developments in the world of data, and will feature a range of guests, including clients, regulators and colleagues. On this episode, hosts Fran Faircloth, a partner in Ropes & Gray's Washington, D.C. office, and Edward Machin, a London-based associate, are joined by special guest Kevin Angle, a Boston-based counsel. Join us as we discuss recent enforcement by the California Attorney General, including a new round of enforcement sweeps, actions by the California Privacy Protection Agency, and the relationship between the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). 

Tune in to the second episode of Ropes & Gray's podcast series The Data Day, brought to you by the firm's data, privacy & cybersecurity practice. This series focuses on the day-to-day effects that data has on all of our lives as well as other exciting and interesting legal and regulatory developments in the world of data, and will feature a range of guests, including clients, regulators and colleagues. On this episode, hosts Fran Faircloth, a partner in Ropes & Gray's Washington, D.C. office, and Edward Machin, a London-based associate, are joined by special guest Kevin Angle, a Boston-based counsel. Join us as we discuss recent enforcement by the California Attorney General, including a new round of enforcement sweeps, actions by the California Privacy Protection Agency, and the relationship between the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). 

Today on That Tech Pod, Laura and Kevin speak with CCPA & CPRA Co-author Rich Arney and Boltive CEO Dan Frechtling. Dan Frechtling is CEO of Boltive, providing publishers and ad exchanges the tools they need to monitor and audit their programmatic ads, and the added benefit to identify the source & block the bad ones—setting a new standard for accountability & protection that our industry desperately needs. Frechtling has led B2B SaaS businesses since 1999. Prior to Ad Lightning, he was President of G2 Web Services, acquired by Verisk, where he expanded G2's cyber security solutions to detect brand damaging activity and transaction laundering. He was also GM/VP at Hibu, VP at Stamps.com and Sr. Associate for McKinsey. He has an MBA with Distinction from Harvard Business School and a BS with High Honors from Northwestern University. Follow Boltive on LinkedIn and Twitter.Rick Arney is a board member of Californians for Consumer Privacy and a co-author of the California Consumer Privacy Act (CCPA) and Proposition 24 - the California Privacy Rights Act (CPRA), the most comprehensive and groundbreaking consumer privacy laws in the United States. In addition to co-authoring both laws, Rick participated in all aspects of campaigning including signature gathering, media (both TV and Radio), finance and campaign strategy. He has an Economics BA with honors from Stanford and an MBA from Harvard and is a Fulbright Scholar.

By Adam Turteltaub The Gramm-Leach-Bliley Act (GLBA) is typically referred to in the context of financial institutions. It requires offerers of consumer financial products to explain how they share information and protect sensitive data. It's not, however, only banks that fall under GLBA's umbrella. New rules will affect retailers offering credit terms to their customers, higher education institutions that administer federal student aid and others a well, explains Kayne McGladrey, Field CISO for Hyperproof. The FTC, has set June 2023 as the deadline for compliance with the revised GLBA Safeguards Rule. It requires that affected organizations: Have a qualified individual to implement and enforce an information security plan Conduct a periodic cybersecurity risk assessment Implement cybersecurity controls to manage those risk Document who has access to customer data Assess the risks of applications that can access the data Securely destroy old data Periodically test the controls to verify their effectiveness In addition, staff needs to be trained, there must be a written incidence response plan and ongoing testing. It is a considerable commitment, Kayne points out, but since it overlaps with the requirements of the European General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA), many organizations may already have significant structures in place. Even so, it's important to conduct a gap analysis, he advises, to ensure all the requirements are being met. Listen in to learn more about what Gramm-Leach-Bliley now requires for your organization.

By Adam Turteltaub With enhanced concerns and vigilance over cybersecurity has come an increasing number of yardsticks that organizations much measure themselves against. As Troy Fine, Director, Risk and Compliance at Drata explains, in addition to legal requirements such as the European General Data Protection Regulation (GDPR), HIPAA and the California Consumer Privacy Act (CCPA) two key standards have emerged: SOC2: This standard was developed by the accounting body ISACA and is primarily of import to US-based technology companies and startups. Audits are performed by CPA firms on internal controls related to security ISO27001: More popular in Europe, it is a certification on information security management systems, examining how risks are identified and mediated and what control plans are in place To prepare for an audit he recommends first getting a good understanding of the relevant standard so you understand all the elements it requires and what it will take to meet those requirements. Next determine when you will need the certification in hand and start building a timeline backwards to determine when you need to start. Calculate, too, what it will cost in terms of time, people and everything else, including the price of the audit. How you work with the auditor will depend largely on which audit you pursue. He explains that SOC2 audits allow for more consultation than ISO27001 does. When hiring an auditor, it can be tempting to use the one with the lowest price. He recommends, though, being careful before going down that route since the auditor is likely to have less time to give. Be sure also to ensure that the auditor has the necessary expertise to be able to evaluate your technology. Some may not be as well versed on various elements, including cloud services, as they should. Once the audit begins, compliance teams can be helpful by ensuring that all the data and people the auditor needs are available. And, he advises, be transparent, even about your gaps. Listen in to learn more about having a successful data security standard audit.

To anyone hoping that California's updated privacy law would help to simplify privacy compliance in the U.S., sorry. That doesn't seem to be the case. Instead, the California Privacy Rights Act (CPRA), which takes effect on Jan. 1, seems set to muddy the privacy landscape even more. “CPRA is this unique kind of beast that has complicated privacy significantly for organizations in the U.S.,” said Sarah Bruno, a partner at the law firm Reed Smith, on the latest Digiday Podcast. One aspect of the CPRA needing clarification is the difference between the law's “contractor” and “service provider” labels. “A contractor is a company that you make data available to, and a service provider's a company that processes the data on your behalf. That's not super clear, is it? We need more clarity on that,” Bruno said. The CPRA does clarify some aspects of California's existing privacy law, the California Consumer Privacy Act (CCPA), which took effect in 2020. It covers the sharing of data for cross-contextual behavioral advertising purposes, which helps to resolve the CCPA's Rorschach-esque definition of sale that caught Sephora in the crosshairs of California's attorney general. The CPRA's addition of sharing data has “eliminated the question that we had with [the CCPA's definition of] sale,” said Bruno. Besides, for as much as the CPRA may mix up the U.S. privacy picture for companies, the more prominent complicating factor remains the absence of a comprehensive federal privacy law. “We're still going to have these nuances until there's a federal law that addresses this,” Bruno said.

In this episode of Commitment Matters, Mary speaks with Sylvia Smith Turk, Division President at Stewart Title Company, and co-chair of ALTA's State Legislative and Regulatory Action Committee. During their conversation, Sylvia or Mary mentioned: AS co-chair of ALTA's State Legislative and Regulatory Action Committee (SLRAC), Sylvia gave a great update on its work, including how it has evolved in the past few years and recent speakers like PRIA and UNC (I couldn't quite tell if this was an M or N – to figure out who this was. Can you help?) The subject of Redaction is complex, as Sylvia explains – highlighting concerns from both the business and consumer perspective. Learn more about Data Redaction in Government Documents in this primer. ALTA also offers a number of resources on their Redaction and Record Shielding page.Discriminatory Covenants also remains a topic at the forefront in our industry. Sylvia talks about how these illegal and unenforceable restrictions can still do harm and this CLTA article offers a look at questions you may be askingSylvia reports that the Uniform Law Commission is drafting language around restrictive covenants and is a great way to get involved in the discussions. Here's a link to the Restrictive Covenants in Deeds Committee.Mary and Sylvia tag team to offer a brief 101 on the topic of Data Privacy and ALTA provides a number of educational tools to help you get up to speed on the subject.California passed the California Consumer Privacy Act (CCPA) back in 2020, with the basic posture that a consumer's data is their own, but both Sylvia and Mary talk about how much more in-depth this legislation – and its implementation - truly is; and how it has added pressure for a Federal bill.The Gramm-Leach-Bliley Act already requires the title and settlement industry to ensure privacy of consumer date and Data Privacy statements have been provided for years because of this.Wire Fraud continues to increase in our industry. Check out this helpful document from TLTA on how to avoid and respond. As Sylvia mentions, ALTA provides a number of resources as well. HELOC transactions are back in Sylvia world and HousingWire recently posted an article noting they are “raging back.” Read that here.Foreclosures are slowly increasing as well, but Sylvia notes they are nowhere near what had been the norm in the 2010's. ATTOM reports on the first six months of 2022's Foreclosure Activity here.As Sylvia mentioned, Cash Buys are still a thing, too. This article estimates almost a third of U.S Home purchases are this type of transaction right now.Mary and Sylvia recount their experiences with advocacy and legislation. The ALTA Advocacy Summit Is a great way to dip your toe in these waters and both host and guest encourage you to get involved!Got a topic or guest idea you want featured? Leave a voice message at 214.377.1807 or email podcasts@ramquest.com. Don't forget to subscribe, rate, and review this podcast on Apple Podcast, Spotify, or wherever you listen to podcasts, or visit RamQuest.com/podcast to download the latest episode. Lastly, we love to see when and how you're listening. Share our posts, or create your own and tag them: #CommitmentMattersPodcast

In this episode of The Workplace podcast, CalChamber employment law expert Matthew Roberts and CalChamber policy advocate Ashley Hoffman discuss the current state of the California Consumer Privacy Act (CCPA) and how it will affect employers starting January 1, 2023.