POPULARITY
The Data (Use and Access) Bill (DUAB) is set to transform data protection and privacy in the UK, bringing major updates to UK GDPR and the Data Protection Act 2018. These changes will impact how businesses manage data access, automate decision-making, and comply with evolving regulatory requirements. In this episode, our compliance experts break down the key provisions of DUAB, explore its potential impact on businesses, and share practical steps to help you stay ahead of the changes. Key topics include: What's changing? A deep dive into DUAB's impact on data processing, subject access rights, and automated decision-making Legitimate interests for data processing: Understanding the new lawful bases for data sharing and transfers AI and automated decision-making: How the bill introduces new rules for AI-driven personal data decisions and what safeguards are required The rise of smart data: Preparing for new "smart data" schemes and their effects on industries like finance and healthcare Compliance best practices: Updating privacy notices, re-evaluating AI processes, and ensuring effective complaint-handling mechanisms Stay ahead of the 2025 data landscape with expert insights and actionable strategies. Tune in to ensure your organisation is compliant with the latest data protection reforms!
House Democrats are making a push to secure data at the Treasury Department. A group of lawmakers have introduced the Taxpayer Data Protection Act. The bill seeks to add a layer of protection against anyone seeking to access the agency's systems. The legislation would bar anyone with conflicts of interest -- or without a security clearance from getting into the Treasury Department's data. The bill comes after billionaire Elon Musk and some of his employees gained access to Treasury Department data. House Democrats say they're expecting a Senate companion bill for the Taxpayer Data Protection Act shortly. Learn more about your ad choices. Visit podcastchoices.com/adchoices
Andy and Pedro discuss the current climate for tech companies and the impact of an administration change in the US. They also touch on the 2025 outlook for AI tools, privacy laws and how to advise clients in this environment.
Episode Overview:In this episode of the Friendly Troll Podcast, we tackle the pressing issue of Technology Facilitated Gender-Based Violence (TFGBV) in Kenya. Florence Ogonjo and Doreen Abiero, researchers at CIPIT, joined by Cherie Oyier from KICTANET, share their insights on the various forms of TFGBV, its prevalence in Kenya, and its impact on survivors. We also discuss the existing legal frameworks, the challenges faced by victims, and the role of technology companies in combating this issue. Join us for a comprehensive discussion aimed at raising awareness and fostering advocacy for change.Key Highlights:Definition and scope of TFGBV, including online harassment, cyberbullying, and non-consensual sharing of images.Current landscape and statistics on TFGBV in Kenya.Personal stories illustrating the psychological, social, and economic impacts on survivors.Overview of existing laws, including the Data Protection Act and Cyber Crimes Act, and their limitations.Current interventions by government and NGOs, along with best practices for supporting survivors.Evidence-based recommendations for policy changes and advocacy efforts.Resources:Safeguarding Women Online: Addressing TFGBV in KenyaThe National Gender-Based Violence Toll-Free Helpline - 1195National Gender and Equality Commission Hotline toll-free line 0800730999 Mombasa County Gender-Based Violence Technical Working Group phone line 0800720587Listen Now:Tune in to this critical conversation and learn how you can get involved in advocating against TFGBV. Don't forget to subscribe for more episodes! Music:Intro/Outro – https://pixabay.com/music/id-102694/
Transformative Technology Trends guest post by Padraig Callan, Head of Business Development at Lennox. Ireland is home to nine of the world's top ten pharmaceutical companies as well as a strong cluster of home-grown Irish ones. According to Enterprise Ireland, it's a strong "ecosystem that leverages top-tier talent and enterprise to foster innovation and shape global healthcare's future". However, transformative technology trends will have a significant impact on reshaping laboratory environments in the country, so it's essential that organisations are aware of these trends and navigate challenges before they arise. From AI and sustainability to data analytics, here are the top trends that laboratories should be aware of next year and beyond. 1. Automation - AI and robotics in labs Intelligent lab automation that utilises AI and robotics can help offer efficient and innovative lab environments for organisations. TechXplore suggests that robotics has the "potential to turn our everyday science labs into automated factories that accelerate discovery" but notes the importance of creative solutions on how to integrate this with researchers in the lab environment. For laboratories, the fast advance of AI can help provide real-time insights and visualisations for laboratories, which can in turn, enhance research, efficiency and resource management in the lab. Automation can help to process vast amounts of unstructured data that laboratories currently don't have the resources to facilitate. This will allow laboratories to make more data-driven decisions. Robotics can also improve consistency in labs, reducing the risk of contamination in areas such as handling tissue samples. 2. Sustainability As environmental concerns continue to rise worldwide, the importance of sustainable laboratories is more apparent than ever. Laboratories are not only looking for ways, but are expected to become more environmentally sustainable. From energy-efficient lab equipment, sourcing sustainable materials to implementing waste management systems, government legislation will impact the day-to-day processes for laboratories in many ways. For example, the proper recycling of hazardous waste is a legal requirement enforced by the Environmental Protection Agency in Ireland. For laboratories, sustainability also covers the workforce and its external reputation - how it's perceived by potential talent, partners, clients, competitors and external stakeholders. Implementing sustainable practices and complying with environmental regulations have been shown to enhance external reputation and be important in attracting talent. Now, companies such as My Green Lab are providing laboratory certifications, which showcase how labs uphold a worldwide standard for sustainable practices. Laboratories have already started to implement more sustainable practices including using reusable transport boxes, cloud-based systems and sharing equipment when possible. 3. Data Analytics and Predictive Modelling By utilising advanced data tools, laboratories can efficiently process vast datasets to forecast trends, improve diagnostic accuracy and optimise research outcomes and workflows. Additionally, compliance with the EU's Data Protection Act and other data protection laws in Ireland such as the Data Protection Act will also become important when organisations introduce these processes. Our business has seen the importance of rolling out Vendor Managed Inventory systems, which allow suppliers to efficiently manage supply chains. Within this process, predictive modelling has helped anticipate and address supply chain issues before they arise for customers. This process is extremely cost-effective, helping to track and record laboratory resources. Another aspect is anticipating equipment failures in the lab, that otherwise may have had an impact on productivity, timelines or efficiencies. 4. Augmented Reality (AR) for Training and Maintenance Another interesting trend that has bee...
Ryanair e l'identificazione dei viaggiatori con biglietti acquistati da terziSotto indagine per controllare la qualità del dato, dell'identificazione.Non sono noti gli aspetti veramente contestati.https://www.ryanair.com/it/it/lp/esplora/hub-di-verifica-clientehttps://www.ryanair.com/gb/en/lp/explore/verification-hubhttps://help.ryanair.com/hc/en-us/articles/12893353769489-How-do-I-use-the-online-verification-processhttps://help.ryanair.com/hc/en-gb/articles/12893493549329-How-do-I-verify-my-bookinghttps://corporate.ryanair.com/news/ryanair-launches-new-customer-account-verification-to-protect-customers-from-internet-scams/https://www.dataprotection.ie/en/news-media/press-releases/data-protection-commission-launches-inquiry-ryanairs-customer-verification-process#Ryanair%E2%80%99sData Protection Commission launches inquiry into Ryanair's Customer Verification Process04th October 2024The Data Protection Commission (DPC) has today announced that it has opened an inquiry into Ryanair's processing of personal data as part of the Customer Verification Processes for customers who book Ryanair flights from third party websites or Online Travel Agents.The DPC has received a number of complaints regarding Ryanair's practice of requesting additional ID verification from customers who book travel tickets via third party websites, as opposed to booking directly on Ryanair's website. Those verification methods may include biometric data [1].Graham Doyle, Deputy Commissioner with the DPC commented: “The DPC has received numerous complaints from Ryanair customers across the EU/EEA who after booking their flights were subsequently required to undergo a verification process. The verification methods used by Ryanair included the use of facial recognition technology using customers' biometric data. This inquiry will consider whether Ryanair's use of its verification methods complies with the GDPR.”The decision to conduct the inquiry under Section 110 of the Data Protection Act 2018[2], taken by the Commissioners for Data Protection, Dr. Des Hogan and Dale Sunderland, was notified to Ryanair earlier this week. The inquiry is cross-border[3] in nature and will consider whether Ryanair has complied with its various obligations under the GDPR, including the lawfulness and transparency of the data processing. NOTES TO EDITOR:[1] Article 4(14) of the GDPR‘Biometric data' means personal data resulting from specific technical processing relating to the physical, physiological or behavioural characteristics of a natural person, which allow or confirm the unique identification of that natural person, such as facial images or dactyloscopic data.[2] Section 110 of the Data Protection Act 2018:The Commission may conduct inquiry into suspected infringement of relevant enactment(1) The Commission, whether for the purpose of section 109 (5)(e), section 113 (2), or of its own volition, may, in order to ascertain whether an infringement has occurred or is occurring, cause such inquiry as it thinks fit to be conducted for that purpose.(2) The Commission may, for the purposes of subsection (1), where it considers it appropriate to do so, in particular do either or both of the following:(a) cause any of its powers under Chapter 4 (other than section 135) to be exercised;(b) cause an investigation under Chapter 5 to be carried out.[3] Article 4(23) of the GDPRCross-Border processing means either:processing of personal data which takes place in the context of the activities of establishments in more than one Member State of a controller or processor in the Union where the controller or processor is established in more than one Member State; orprocessing of personal data which takes place in the context of the activities of a single establishment of a controller or processor in the Union but which substantially affects or is likely to substantially affect data subjects in more than one Member State. Additional Information:The DPC is the Lead Supervisory Authority under the GDPR where cross-border processing of EU/ EEA data subjects occurs and where a company has its main establishment based in Ireland.The European Data Protection Board, in a recent Opinion 11/2024 , has recalled how the use of biometric data, and in particular facial recognition technology, entails heightened risks to data subjects' rights and freedoms. Accordingly, the impact on these fundamental rights and freedoms must, in the view of the Board, be carefully considered in the context of any use of such technologies.
There's no escaping it, AI is here to stay. Over the course of 2023 we've seen more general and public use of popular AI tools such as ChatGPT and Gemini (previously Google Bard). It's now even being integrated into everyday applications such as Microsoft Word and Teams. There is no doubt that there are a lot of benefits to using AI, however, with new technology comes new risks. So how do we address the growing concerns around AI development and use? That's where the new Standard for AI Management Systems, ISO 42001 comes in! Join Mel this week as she explains exactly what ISO 42001 is, who it's applicable to, why it was created and how ISO 42001 can help businesses manage AI risks. You'll learn · What ISO 42001 AI Management Systems is · Who it's applicable to · Why it was created · How ISO 42001 can help businesses manage AI risks Resources · Isologyhub · ISO 42001 Webinar registration In this episode, we talk about: [00:30] Join the isologyhub – To get access to a suite of ISO related tools, training and templates. Simply head on over to isologyhub.com to either sign-up or book a demo. [02:05] Episode summary: Today we're touching on a very topical subject – AI, and more specifically the brand new AI Management System Standard – IS0 42001. We'll also be exploring who it's applicable to, why it was created and how it can help businesses manage AI risks. [03:30] What is AI? – AI – otherwise known as Artificial intelligence, as it's most simplest description is the science of making machines think like humans. We've seen a lot of AI tools be released to the public over the last year or so, tools such as ChatGPT and Google Bard. It's already being integrated with some of the most commonly used apps and programs like Microsoft word and Teams. In short, AI integration is here to stay, so we may as well get to grips with it and make sure we're using it responsibly. [05:10] What is ISO 42001? – , ISO 42001 is the first International Standard for Artificial Intelligence Management Systems, designed to help organisations implement, maintain, and improve AI management practices. It was jointly published in December 2023 by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). The emphasis of ISO 42001 is on integrating an AI Management System with an organisations existing management system – i.e. ISO 9001 or ISO 27001 compliant management systems. Interestingly, a lot of the specific mentions of Artificial Intelligence and Machine Learning are within the Annexes rather than the body of the Standard. The Standard itself is very similar to ISO 27001 in that it's mostly about what organisations should be doing to manage computer systems regardless of any AI components. [08:00] The 4 Annexes of ISO 42001: Annex A: This acts as a Management guide for AI system development, with a focus on trustworthiness. Annex B: This provides implementation guidance for AI controls, with specific measures for Artificial intelligence and Machine Learning – if you'd like to learn more about the difference between the two, go back and listen to episode 135. Annex C: Which addresses AI-related organisational objectives and risk sources. Annex D: This one is about the domains and sectors in which an AI system may be used. It also addresses certification, and we're pleased to see that it actively encourages the use of third-party conformity assessment. This just ensures that your AI claims have more validity. [09:15] Who is ISO 42001 applicable to? – Those annex descriptions may have you assuming that this Standard is only applicable to organisations developing AI technology but in actuality it's applicable to any organisation who is involved in developing, deploying OR Using AI systems. So if you're a company who is only utilising AI in your day to day activities, it's still very much applicable to you! [10:20] Join the isologyhub and get access to limitless ISO resources – From as little as £99 a month, you can have unlimited access to hundreds of online training courses and achieve certification for completion of courses along the way, which will take you from learner to practitioner to leader in no time. Simply head on over to the isologyhub to sign-up or book a demo. [12:25] Why was ISO 42001 created?: · To address the unprecedented rapid growth of AI and all the risks that come with this new technology. · To ensure that AI development and use are trustworthy and above all, ethical. · The public are also reasonably wary of this new technology, so ISO 42001 aims to help build more public trust and confidence in the future use of AI . · ISO 42001 acts as guidance for organisations on exactly how to integrate AI Management controls with their existing systems. [14:05] AI risks you should be aware of – This isn't an exhaustive list, as the technology develops, more risks will become known. However, as of the start of 2024, you should be aware of: Inaccurate information – Many of the chat bots and public AI tools are trained on publicly available information, and as we all know, not everything on the internet is true. So the output from these chat bots will need to be checked and verified by a person before being used or published. AI bias – Studies have proven that AI results can still be bias. As all the data fed into it is all based on existing information, it still presents the issue of a lack of information from underrepresented groups, or existing bias based on existing data. Time sensitivity – Not all AI use live data sets. Google Bard does, however Chat GPT is only accurate up until 2021. So double check whichever tool you're using to make sure the information it produces is up-to-date. Plagiarism – Data gathered using AI came from somewhere! If you simply copy and paste information provided by AI platforms, there's a chance you may be plagiarising existing content. Be sure to just use AI as a starting point! Security risks – Use of AI can expose you to additional security risks, For example, malicious actors could send someone an email with a hidden prompt injection in it. If the receiver happened to use an AI virtual assistant, the attacker might be able to manipulate it into sending the attacker personal information from the victim's emails. Data Poisoning – AI uses large data sets to train its models, and we currently rely on these data sets being relatively accurate. However, researchers have found that it's possible to poison data sets – so in future, AI may not be very reliable if preventative measures aren't put in place by AI developers. [17:45] How can ISO 42001 help business manage these risks? – Above all, it provides a structured approach to identify, assess, and mitigate AI risks. ISO 42001 includes the guidance needed to put this in place from the start to ensure you don't fall prey to the risks mentioned, with a view to monitor and update to address new risks in future. It promotes transparency and accountability throughout the AI life cycle. It helps ensure fairness, non-discrimination, and respect for human rights in AI development and deployment. It will help minimise potential legal and ethical liabilities associated with AI. The UK's current GDPR and Data Protection Act can loosely cover aspects of AI, depending on how the terminology is applied, but there are already dedicated AI based regulations being developed within the EU which will likely be adopted by the UK. It can foster innovation and accelerate adoption of responsible AI practices. And lastly, it provides a common language and framework for collaboration on AI projects. [21:35] Don't miss out on our ISO 42001 webinar – We're partnering with PJR to bring you a 2-part webinar series on ISO 42001. Catch the first part on the 5th March 2024 at 3pm GMT, register your interest here. If you'd like to book a demo for the isologyhub, simply contact us and we'd be happy to give you a tour. We'd love to hear your views and comments about the ISO Show, here's how: ● Share the ISO Show on Twitter or Linkedin ● Leave an honest review on iTunes or Soundcloud. Your ratings and reviews really help and we read each one. Subscribe to keep up-to-date with our latest episodes: Stitcher | Spotify | YouTube |iTunes | Soundcloud | Mailing List
The UK's data privacy landscape has long come with strict responsibilities for businesses, requiring detailed justifications for all customer data stored and processed. After the UK formally exited the European Union in 2020, the UK retained regulations for controllers and processors via the UK GDPR which sits alongside the Data Protection Act 2018.Businesses have often criticized the red tape present within GDPR, arguing that it holds them back from carrying out the core functions of their business model. In response, the UK government has repeatedly backed the creation of a bill that would reform to UK data protection law and while this has been subject to some false starts, it is now underway as the Data Protection and Digital Information (DPDI) Bill.In this episode, Jane and Rory speak to Chris Combemale, CEO at the Data and Marketing Association and chair of the Government's Business Advisory Group on reforms, to learn how the DPDI could improve UK innovation and where it differs from other laws.
Kelly Molson: Welcome to Skip the Queue, a podcast for people working in or working with visitor attractions. I'm your host, Kelly Molson. In this new monthly slot, Rubber Cheese CEO Paul Marden joins me to discuss different digital related topics. In this episode, we're discussing personalisation and what attractions can do to make their websites feel more tailored to their audience. You can subscribe on all the usual channels by searching Skip the Queue. Kelly Molson: Hello, hello. Welcome back to the podcast. Paul Marden: Hello again. Good, isn't it? Back here for a third time. Kelly Molson: It is good. You're lucky. Right, let's start the podcast as we do with this one. What attraction have you visited most recently and what did you love about it? Paul Marden: Yeah, I was pretty lucky the other day because I went to the National Maritime Museum, because I'm a Trustee of Kids in Museums and we had our Family Friendly Museum Awards and we held it in their lecture theatre at the Maritime Museum up in Greenwich. And I'd been to the Greenwich Museums before. I'd been to the top of the hill where the observatory is, but I've never been to the bottom of the hill, which is where Maritime Museum is. And so I'm just there with all the great and good of all of the museums around the country that have been shortlisted for the awards, which was brilliant. Paul Marden: But the bit that I really loved was that I was there in the daytime during the midweek, so peak school trip season, and it was just amazing to be in this place with all these school kids there doing their school trips, which is something I'm really passionate about, the value of those school trips. It was something that really got the kids lost out on when COVID hit and everybody was working online and then they went back to schools, but the schools had to be really careful about what they did and there were no school trips. That's such a magical part of being in primary school that they were just robbed of. So seeing all those kids in that amazing place was just wonderful. I got to rub shoulders with the great and the good. Paul Marden: I met some Skip the Queue alumni at the event as well, and I had a lovely cup of tea and a piece of cake in the cafe with our Project Manager, Becs. Did you imagine a better day? Kelly Molson: No, it's a perfect day. I was just thinking as you were talking about the school trips, it's like a rite of passage at school, isn't it, to be walking around a museum with a clipboard to draw a picture of it? Go and find X and draw a picture of it. I just got really vivid memories of doing that . Paul Marden: They were all just herring around, doing exactly that and loving life and buying their little rubbers in the shop and things like that. Kelly Molson: You should collect rubbers, kids. All the cool people do. Okay, I need to give a big shout out to National Trust. We are really lucky where we live. So we've got like a triangle of National Trust venues near us. So we've got Wimpole, Ickworth and Anglesey Abbey, all within like 25 minutes, half an hour, a little bit longer for Ickworth. Each one of them is incredible. They all have a different adventure. They've got great play areas, beautiful historic houses and beautiful walks. And we have spent a lot of time in the last two years at National Trust venues, walking, pushing the pram. But now Edie's toddling around, we're into the activity areas and all of them are phenomenal. Wimpole has just redone their outdoor play area, which we're yet to visit. Kelly Molson: We're just waiting for a dry day to get back over to that one. But it's just the membership. So I think the membership is such superb value for money. Paul Marden: It really is.Kelly Molson: I cannot speak more highly of it. It is such good value for money and we get 45678 times the amount of value from it every single year we have this membership, so much so that we gift it to people as well. Kelly Molson: We were really lucky. We got given some money for a wedding gift and we said, rather than think when people give you money, it's lovely, but you can put it in the bank and you forget about it. Or it just gets spent on stuff. And were like, “Right, if we get given money, we'll spend it on a thing and we can say we bought this thing with it.” And so that we bought the National Trust membership with it. Paul Marden: That's a cracking idea. Kelly Molson: Yeah, it was really good. Really good idea. But then it's such good value that we've then bought membership for my parents. Paul Marden: Really?Kelly Molson: Yeah. So I think it was like a joint. I think Father's Day and my mum's birthday are quite close together, so it might have been a joint one for that. They go and they go on their own and then they go and then they take Edie as well. And it's absolutely brilliant. So, yeah, well done, National Trust. Well done, Wimpole. Especially because pigs. Someone, the tiny person in my house, is very happy about pigs there. I don't mean myself, I mean Edie. And also, I just want to give a big shout out to one of the volunteers. I'm really sorry I didn't get the volunteer's name at Wimpole. He is one of the volunteers in the farm. Kelly Molson: I am a little bit frightened of horses. I think they're beautiful but really big. I saw an old next to the neighbour get kicked by a horse once. Paul Marden: You've literally been scarred for life. Kelly Molson: There's a block up there, but I'm a little bit frightened of horses. And there's a huge Shire horse at Wimpole who's a big old gentle giant. I think he's called Jack. But I am a bit frightened and I don't want that fear to rub off on Edie. And so I very bravely took Edie over to meet the Shire horse. But the volunteer was wonderful. This guy know told us loads of stuff about the horse and he was really great with Edie and she managed to stroke his nose and even I managed to stroke Jack's nose. So, yeah, thank you man whose name I didn't get. It was a really lovely experience and you helped put me at ease and my daughter at ease. So there you go. National Trust and the value of volunteers. Paul Marden: And National Trust volunteers, we've talked about this before. I've been to a couple that are local to me and they just tell the most amazing stories and they engage people in a way that to be so passionate about the thing that you care about and that you want to do that for free to help people to enjoy their experience is just amazing. And there are some, I mean, there are diamonds all over the place in all the museums and places that we visit, but there's plenty of them. When you work that Natural Trust membership, you get to meet a lot of volunteers, don't you? And they are amazing.Kelly Molson: Working it hard. Okay, let's get on to what we're going to discuss today. So we are talking about personalisation and what attractions can do to make their websites feel more personal. So this is an interesting one and I think that we've probably got to put our hands up and make a bit of an apology here. Very few people who took part in the 2023 Visitor Attraction Website Survey actually implement personalisation, but there's a lot of evidence that personalisation improves conversion rates. So there's some stats that I want to read out from the report. Only 6% of respondents personalised their website experience for customers, yet 85% of respondents thought personalisation was highly important. So, question for you, why do you think so many people think it's important, but so few are actually implementing it? Paul Marden: This is where we hold our hands up, isn't it? And we say, I think the answer to that is because we didn't ask the question properly. I've touched base with it. There was a very small set of people, as you say, 6% of people said that they were personalising their websites. But the language that we used in the question was a little bit confusing. And when I reached out to a handful of that 6%, they were like, "Oh, no, that's not what we thought you meant. What we thought you meant was that". So one person said to me, "You could personalise your experience at the venue by buying different things, not personalise the website experience." Yeah. And when you read the language of the question again with that answer in your head, it's obvious why they answered it in the way that they did. Paul Marden: So there's a lesson to be learned there about trialing the questionnaire, making sure that people understand what it is that we're saying and that we agree with the language of what we've used. The fact is, I think a lot of people didn't understand us. So the answers that we got back, the disparity, is clearly confusion based. But even if weren't confused, even if we had the data, my instinct is that there would be a big difference between the two. And that boils down to the fact that I think that personalisation is hard to do and that actually the reason why a lot of people aren't doing it is because it's hard and costly in some cases. But we need to get into the guts of that and understand why. Kelly Molson: Okay, so lesson learned for next year. We need to give more clarity over the questions that we ask. So thanks for the feedback, everybody. We will do that. What do we actually mean by personalisation then? Paul Marden: Yeah, that's a good question. I think that what we mean by personalisation is developing the website in a way that means that you show different contents to different audience members depending on different things. There's lots of different ways in which you can do that. There's a very simple perspective which is around not automatically showing different content to different people, but writing content for your different audiences and making that easily discoverable. It doesn't have to be technically complex. Paul Marden: Yeah. It's really about writing the right content for the right people and making it so that they can get from where they are to where they want to get to and get that right answer. Most of us do that intuitively. Most of us, when we're writing content as marketers, we do personalise the content to the end audience, even if we're not doing that in an automated way. Kelly Molson: I think with this, though, my interpretation of it is the next level onto that, which is, that's true personalisation, because I think those things, yes, that's a very simple way of looking at it, but that for me is not enough when it comes to how we answer this question. So it's the tracking behaviour and showing personal content that to me truly personalises an experience. I can think of things that we've done in the past in terms of tracking where someone tracking the IP of the person that's looking at the website and offering them up content that is in English, UK English or in American English for example. Paul Marden: Absolutely. So it could be about time of day, it's trite. I'm not going to convert somebody but saying good morning, good afternoon, good evening, based on where they are. We did another site a few years ago which showed videos of an experience in the daytime or an experience at nighttime, depending on when you were looking at the website, and then you could switch in between them, which was pretty cool. Kelly Molson: I like that. Paul Marden: Yeah. So you could do time of day, you could do location, like you say, interesting is understanding, building an understanding of somebody fitting an audience profile based on what they've looked at across the site, which gets a little bit creepy, doesn't it? If you're tracking and you use that tracking information without lots of care, you could look really creepy. But if you use it really carefully, then you can adapt the content of the site based on the more that somebody looks at the Schools section of your website and they look at news articles that are related to schools, maybe they're a teacher or maybe they're interested in running a school trip to your venue and you can adapt the recommendations that you make to them based on that understanding, that they show more interest in the educational aspects of what you're doing. Kelly Molson: So this leads us to really to what some of the benefits are. And ultimately, I think the more personalised the site is, the easier it gets for users to meet their needs. You're kind of getting them from the start to their goal quicker and hopefully makes their lives easier as well. Paul Marden: Yeah, absolutely. So I found some data. No, as you know, this came out of the report. Actually 80% of consumers. This was a stat that we pulled out in the report. Kelly Molson: It's from Hubspot. Paul Marden: Yeah. 80% of consumers are more likely to make a purchase from brands that offer a personalised experience. So from that perspective, personalised sites are more likely to convert. There was other stats that we didn't put into the report itself, Boston Consulting Group, found that brands that create personalised experiences, combining digital with customer data, so that the true personalisation you were talking about, increased revenue by 6% to 10%. That's pretty impressive. Kelly Molson: It is pretty impressive. But then that brings us to risk, doesn't it? And that kind of creepy aspect of this and whether it's. Is it okay, hon? Paul Marden: Yeah, I mean, the obvious one is privacy isn't know. We live in an age where people value their privacy and there's laws around that as well. So in the UK we've got GDPR, there are laws all over the world in relation to personal information and tracking somebody's behaviour around your site, what they do and what they look at and being able to associate that back to an individual themselves is definitely data that would be in the scope of the Data Protection Act in the UK and GDPR across Europe. So you have to be really careful about what data you're collecting, how you attribute it back to a natural human, and then what do you do to protect that data? Kelly Molson: And then you've got complexity of managing multiple sites, managing large volumes and multiple sources of data on top of that as well. Paul Marden: I alluded to that earlier on as my kind of. The reason why I think a lot of people don't do this is when you get into the true personalisation, when you're managing a website, there's a lot of content on there, you've got to think about what everybody needs. You got lots of people in the organisation wanting their content put onto the website. You're the editor and you're responsible for that thing. And then somebody says to you, "I think it's a bright idea. We've got twelve audiences and we want to have personalised content for all of those audiences.". And now you don't have one website to manage, you've got twelve websites to manage. Paul Marden: And when it goes wrong for one particular person, when the CEO is looking at the website and it shows them something really weird and they report it to the editor and the editor is like, “Yeah, how do I know what it was that went wrong? Because I don't have one website. I've got twelve websites that I've got to manage.” The level of complexity and the effort that you go into this, if you're not careful, if you're not doing this in a sensible way, it can become quite hard to manage and get your head around. Kelly Molson: I'm just thinking of the horror of trying to support that from an agency perspective as well. When you've got support tickets coming in and the support ticket from the client is. So this person is not happy because they've seen content that isn't okay for them or oh God. Paul Marden: Yeah, if not managed properly, you got this potential explosion of content. You've also got the potential for all of that personal data about the people that are going around the website to be trapped. So now you've got to manage a load of data in volumes that you'd never really thought of before. Where does the customer data come from? If you've got, do we want to show personalised information for people that are members? Where do we hold our membership information? Do we hold that in a CRM system? Okay, so now we need to plumb the CRM system into the website so the website knows if the visitor is a member or not. Do we show different information to somebody that is not a member but they have visited before or how do we know that? Paul Marden: Oh, we need to plumb in data from the ticketing system now. And this can be amazing. And that's how you arrive at that high conversion rate, is that you've enriched the experience with loads of knowledge about the person. It's not like somebody's walking into the gates of the place and you know nothing about them. All of a sudden they're walking into your website, they're interacting with your website and they're not just the same as everyone else, they're special and everybody wants to be special, but to get them to that special place you have to know a lot about them. It can be amazing when it's done well, but it's not trivial. Kelly Molson: So we always at this point, talk about who is doing it well. And this is a really difficult one. Tricky one, because ultimately we haven't asked the question properly in the survey. And because of the nature of personalisation, we don't know who's doing it. We don't know really. So what would be great is if you are an attraction, listening to this episode and you're out there and you are doing it well, we'd really love to talk to you. So we have these little slots that we have between Paul and I. We've got a load of things that we can talk about, but if there's an attraction out there that is doing personalisation really well, we can open up one of these slots for you to come on and have a chat with us and just talk about some of the things that you're doing. Kelly Molson: We'd love to hear some really good success stories for this and some case studies. So yeah, feel free to drop me an email and kelly@rubbercheese.com and let me know. So skipping over the fact that we've got no one to talk about who does it well. Hopefully we will soon. What are the steps that people can take? So what's the starting point? If you are thinking about personalisation, what does that journey look like? Paul Marden: Yeah, first of all, you need to understand the audience, don't you? Or the audience is. And just talking from our own perspective and our process that we follow, that's an early part of the kind of research that we do when we're building a new site is to dig into who the audience is and trying to understand them in as many ways as you possibly can. There's loads of stuff written about this online. There's some brilliant examples that I've looked at before far TfL, who share their audience personas and how much detail they've gone into understanding who the different people are that interact with the TfL website and what their goals are and what makes them special from the perspective of an attraction. You could think of families with young kids that are coming. Paul Marden: You could be thinking of maybe if you were a museum, the people that are running school trips, the teachers and so forth, that could be running it. Maybe the volunteers for your organisation or another audience member that you need to think about and understand who they are, what they look like in terms of their demographic information, the way they think and what they do and how they interact with the world, markers that you could use to be able to help target that. So figuring out that audience persona for each of the people that you want to target, I think, is a crucial job.Kelly Molson: Definitely the starting point. And sometimes that's done internally and sometimes we support with that externally. I think then you have to kind of think about the tools that you've got, what is available to you and how you can use them. And we focus on three main ones at Rubber Cheese, don't we? Paul Marden: Yeah, absolutely. So we focus on WordPress, Umbraco and HubSpot. And it's interesting because each of them have different functionalities in terms of personalisation. And it's been weird, isn't it, to try and think about the tool before you think about what you want to do, but really it's about not trying to put the cart before the horse. If you know what the tool can do, then you can figure out how you can use it. Kelly Molson: Yeah, and I think from a cost perspective as well, it's thinking about what you already have in place that you can manipulate rather than starting from scratch. Paul Marden: HubSpot is a good one to talk about because straight out of the box it's the most capable in terms of personalisation. And it's a bit obscure because a lot of people think of HubSpot as being a CRM package. They don't think of it as being a content management system website tool, but it has that functionality and that's kind of evolved over the last five years into a fully formed content management system.Paul Marden: But because you've got this bolted together CRM and content management system, they've obviously spotted that an opportunity for them and they've put those two things together. And so straight out of the box you can build out personalisation, you can create these what they call smart rules. To say in this section, I want to show this content dependent on this particular factor. So that's pretty awesome to get that straight out of the box I think. Kelly Molson: I struggle to get my head around that just because I do view HubSpot as our CRM. I'm in it constantly. It's my source of truth for all of my clients and networking contacts and suppliers. It's where my sales pipeline is. I can't get my head around it. It's a content management system as well. Paul Marden: Completely. But you can think of, when you're building out a website and it doesn't have to be built out in HubSpot itself. Sorry. In HubSpot's own content management system you can still do a lot of this using their CRM system bolted onto other content management systems. But you can create contacts as somebody becomes a real person. Then you could create that contact inside HubSpot and use the knowledge about that person on the website. You can use the deal functionality inside HubSpot to track when somebody has bought tickets for a place and when they've actually completed the deal. You end up with lots and lots of data going through HubSpot when you do all of that order information going through there. Paul Marden: But that's how you enrich it with the ability to target your existing customers with different content to prospective customers that have never bought from you before. Kelly Molson: What about Umbraco and WordPress? Because this is not something that they do like out of the box. Is it off the shelf? Paul Marden: No, absolutely. So Umbraco doesn't have it straight out of the box. There is a really capable personalisation system called uMarketingSuite which you can buy. It's like annual subscription product that bolts into Umbraco itself. It's been built so that when you're in there and managing all of your audience personas and the content that you want to adapt, it's all in that one package. So once you've got it in there, it does feel like it's all Umbraco because it's been designed in a really neat way. The challenge is you've got to buy it. It's a paid for add on, but the benefit that you get is well worth the investment. But it's not a cheap investment to make in that tooling. And also there's elements of the site needs to be built with that in mind. Kelly Molson: You can't just plug it on at the end and hope for the best. You've got to think about that long. Paul Marden: No, it's not a plug it on. You can retrospectively add it into a site. Yeah, but it will probably cost you more to add it afterwards than if you'd have thought about it at the beginning and done it. So it definitely can be added on later on. But if you think about it in advance and you do it all at the same time, the total cost of the project will probably be lower. Kelly Molson: Okay, so that's a good one to think about. If you are planning new website projects for the new year, you are really happy with the Umbraco platform. There's something to have a conversation around that. And then WordPress plugins. Paul Marden: Exactly. So as with everything WordPress related, hundreds of people have solved this problem. So there are lots and lots of plugins out there. There's a couple that I would mention that came up when I was doing some research around this. There's one called if so dynamic content. There's one called Logic Hop, both of which enable you to adapt your content based on certain rules that you define. So, pretty much like the smart rule functionality that's in HubSpot, you can achieve that natively inside WordPress once you add these plugins. And the cost of those plugins was negligible. Yeah, you're talking under 100 quid for a year worth of setting that up. Kelly Molson: Well, that's good to know. So what are we talking about in terms of budgets for stuff then? So there's effort involved in understanding your audiences first. So that's going to be something that you talk to your agency or you bring in an external or you do internally. You carry out your persona work, you really understand who your audience is. That cost is really variable. It could be workshop based. You might have all of this information internally anyway that you just kind of need the time to pull it all together. Paul Marden: Yeah, absolutely. And you can imagine that could be a day's effort to just pull together a few things that already exist. It could be several weeks worth of effort spread over a longer period of time. I was having a chat with Matt, our Creative Director, about this the other day and literally just scribbled on a piece of paper. But he was like, “Paul, you need to understand this.” At the one end of the spectrum you could spend a little time researching this stuff. At the other end of the spectrum you could spend a lot of time. And what do you get when you go in between the two? You make less assumptions the further down the road you go. So if you can deal with kind of a minimal research and making some broad assumptions, then that's a sensible thing to do.Paul Marden: But if you want the confidence of knowing that you're not making too many assumptions and there's lots of data underlying the things that you're saying, then obviously you need to invest more effort into that research to be able to find that out. Yeah, kind of obvious, but it helped when you drew me that kind of framer. Kelly Molson: So let's look at the tools then. So let's do HubSpot. We talked about HubSpot first. What's the cost involved in that? Because my assumption, I mean, I've used the free version of HubSpot for years. There's a paid version of HubSpot. My assumption was the paid version of HubSpot was really expensive. Paul Marden: So costing HubSpot is a complex thing because there's lots of different variables involved. There's lots of features. The more features you add, the more it costs. But in order to do this personalisation you need a pro version of their content management system and you're looking at about 350 quid a month to be able to do that. So what's that, about four and a half, 5000 pounds a year to buy that in? That is not just for that feature, that is for the whole of that HubSpot content management system and all of its hosting included as well. And it is top grade, highly secure or highly available infrastructure that you get bolted in that. So the cost of personalisation is not just the 350 quid a month, that is, the all in to get that pro package is 350 quid a month. Kelly Molson: And then there'll be dev costs on top of that to implement it. Paul Marden: Yeah, to a certain extent, actually a lot of the personalisation, because it's core to HubSpot, you can achieve a lot in a normally designed and built HubSpot site and then just manage the content in that. So let's say, you've got a panel where you want to show a particular piece of content that says, "Hey, you're back again." Because you're a returning user, you wouldn't necessarily need a developer to be able to make that available to you. Those smart rules would be built in by the content management system. So there's obviously going to be things that you want to do that. You will need to have a developer to be able to do that. Kelly Molson: You need someone that understands logic. This is not a job for me. Paul Marden: Well, in the right hands, you don't need a developer to be able to do a lot of the personalisation in HubSpot. Kelly Molson: All right, what about Umbraco? Paul Marden: Yeah, there are some free tools. There's something called personalisation groups. But if you want to go for uMarketingSuite, which I think is where you're getting into, really see it would be a proper personalisation territory with lots of great functionality, you're looking at about 400 quid a month for the package to be added into your Umbraco instance. So that's not comparing apples with apples when we look at the HubSpot cost, because that was an all in cost for the whole of the platform for HubSpot. Whereas for Umbraco uMarketingSuite is 400 quid a month to add it to your instance. And that depends on the amount of traffic on your site that does vary. Kelly Molson: And then WordPress is cheapest chips in comparison. So plugins, you're looking at costs of around about 150 pounds per year depending on what one you go to. Obviously you've either got somebody internally that can integrate that for you or you've got your dev costs on top of that. But if you've already got an existing website in WordPress, then actually could be something relatively inexpensive that you could start to try out. Paul Marden: Yeah, absolutely. And then on top of that you've got other personalisation systems that you could plug into any of these systems with your kind of Lamborghini style sets of functionality. These are starting costs for the packages we're talking about. Yeah, we're talking 150 quid a year for WordPress, but that would be basic personalisation. Kelly Molson: Yeah. Okay, good chat. So just to reiterate what we said earlier, sorry, we were idiots about the question and of course some confusion. Apologies, we'll do much better next time. But now you've listened to this episode, if you do have a story to share and you are doing some really interesting things, we would love to give you the platform to share that. So do drop me a line, kelly@rubbercheese.com and we will make that happen. All right, great. Same time next month. Paul Marden: Awesome. Kelly Molson: Thanks for listening to Skip The Queue. If you've enjoyed this podcast, please leave us a five star review. It really helps others find us. And remember to follow us on Twitter for your chance to win the books that have been mentioned. Skip the queue is brought to you by Rubber Cheese, a digital agency that builds remarkable systems and websites for attractions that helps them increase their visitor numbers. You can find show notes and transcriptions from this episode and more over on our website, rubbercheese.com/podcast.
Episode 1: The Current State of Data Protection in Asia The new Digital Personal Data Protection Bill sets out the first comprehensive data protection law for India. However, questions on how the new law will be implemented in practice remain at the forefront of organisations' minds. In this episode, partner Alex Roberts is joined by Deepa Christopher, partner from TT&A, to discuss this long-awaited bill, touching on its main ideas, which key provisions to look out for and future developments to be expected. Tune in now to stay on top of the exciting developments in India. To watch all episodes in The Current State of Data Protection in Asia, visit our website.
Linklaters – Payments Monthly – Our view on payments law and regulation
Episode 1: The Current State of Data Protection in Asia The new Digital Personal Data Protection Bill sets out the first comprehensive data protection law for India. However, questions on how the new law will be implemented in practice remain at the forefront of organisations' minds. In this episode, partner Alex Roberts is joined by Deepa Christopher, partner from TT&A, to discuss this long-awaited bill, touching on its main ideas, which key provisions to look out for and future developments to be expected. Tune in now to stay on top of the exciting developments in India. To watch all episodes in The Current State of Data Protection in Asia, visit our website.
Jamaica's Data Protection Act will be coming into effect on 1 December 2023, but myths and misconceptions have persisted. With Grace Lindo, an attorney at law at Carter Lindo in Jamaica, we tackle some of the misconceptions along with exploring compliance in a variety of different scenarios. Among other things, Grace also discusses the potential implications and obligations under the new dispensation: * When using certain technologies and platforms, such as WhatsApp, Artificial Intelligence and ChatGPT in the workplace; * In the ethical use of data, particularly for research; * In direct marketing; and * When data breaches occur. The episode, show notes and links to some of the things mentioned during the episode can be found on the ICT Pulse Podcast Page (www.ict-pulse.com/category/podcast/) Enjoyed the episode? Do rate the show and leave us a review! Also, connect with us on: Facebook – https://www.facebook.com/ICTPulse/ Instagram – https://www.instagram.com/ictpulse/ Twitter – https://twitter.com/ICTPulse LinkedIn – https://www.linkedin.com/company/3745954/admin/ Join our mailing list: http://eepurl.com/qnUtj Music credit: The Last Word (Oui Ma Chérie), by Andy Narrell Podcast editing support: Mayra Bonilla Lopez ---------------- Also, Sponsorship Opportunities! The ICT Pulse Podcast is accepting sponsors! Would you like to partner with us to produce an episode of the podcast, or highlight a product or service to our audience? Do get in touch at info@ict-pulse.com with “Podcast Sponsorship” as the subject, or via social media @ictpulse, for more details. _______________
Just about a month ago, Rescurity, an American cyber security firm, said that personal information of 815 million Indians was being sold on the dark web. This included details such as Aadhar numbers and passport details. The persons selling this information claimed that it was from the Indian Council of Medical Research or ICMR, the country's premier scientific research body. This is not the first time ICMR has been subject a cyber attack – 6,000 such attempts were reported just last year. The All India Institute of Medical Sciences – AIIMS in Delhi has also been hit by cyber attacks – in one ransomware case, the hackers took over the servers, encrypted the data, and made it impossible for the hospital to access its own systems. Health data consists of sensitive, personal information and once stolen, can increase the risk of digital identity theft, online banking thefts, tax frauds and other financial crimes. India was ranked fourth across the world in all malware detection in the first of 2023, as per a survey from Resucurity. Even as this is going on, the Central government launched an ambitious Ayushman Bharat Digital Initiative in 2021. During the Covid-19 pandemic, our Aadhar and other details were used for both testing and vaccination services. So how safe is our health data with the government or private health organisations? How well does the Data Protection Act, that came into force this year protect this sensitive information? Is our right to privacy over our personal information being adequately safeguarded in India?
A discussion on the provisions in the Zimbabwe Cyber and Data Protection Act of 2021 together with a look at what online violence against women really entails.
Discover the world of CISSP Cyber Training in a thrilling exploration that unravels the complex web of cybersecurity legislation, contractual law, and computer crimes acts. We'll begin our journey by studying recent cybercrimes, with a focus on the Singapore government and the US pledge to fight scams through cross-border cooperation. With the alarming statistic of scam losses in the US reaching around $10.3 billion last year, we aim to illuminate the critical importance of understanding these laws for your CISSP exam.Intrigued about how various laws affect the protection of intellectual property? We've got you covered. We'll decipher the intricacies of civil, criminal, administrative and contractual law, and their implications on protecting trademarks, patents, and trade secrets. You'll be privy to in-depth conversations about working with attorneys when drafting contracts, and understand the legal recourse available if a vendor misplaces information. We'll also guide you through the steps to tackle issues such as domain name scams.But that's not all. We venture into computer crime laws and their implications, focusing on the Computer Fraud and Abuse Act (CFA) and the Electronic Communications Privacy Act (ECPA). We'll examine the Electronic Funds Transfer Act of 1978, the Stored Communications Act, and discuss their impact on privacy and legal considerations related to accessing or disclosing electronic data. We'll also probe the Data Protection Act in the UK and the Identity Theft and Assumption Deterrence Act. To top it off, we have a unique segment on career coaching for CISSP Cyber Training. We'll share with you, invaluable tips on acing the CISSP exam, crafting compelling resumes and acing interviews. So, get ready to embark on a thrilling journey that will equip you with the essential training to excel in your cybersecurity career!Gain access to 30 FREE CISSP Exam Questions each and every month by going to FreeCISSPQuestions.com and sign-up to join the team for Free.
1. Rahul Matthan, “Get on with data protection now that the law's enacted,” Mint, August 15, 2023.2. Rahul Matthan, “Companies must work hard to ensure data protection,” Mint, August 7, 2023.3. Rahul Matthan, “The draft data privacy law surprises with its simplicity,” Mint, July 18, 2023.4. Anirudh Burman, “Resisting the Leviathan: The Key Change in India's New Proposal to Protect Personal Data,” Carnegie India, November 28, 2022.
Hello, and welcome to episode 74 of the Financial Crime Weekly Podcast, I'm Chris Kirkbride. After my first break from the podcast in almost a year-and-a-half, and the successful negotiation of mountains with the family, I get back to an enormous pile of financial crime news. Guys, summer is well and truly over. The wealth of the news comes from sanctions and money laundering, but the failure to prevent fraud issue in the UK has also come back to the news this week. Of course, I'll also round up this week's cyber-attack news. As usual, I have linked the main stories flagged in the podcast in the description. These are: European Commission, Guidance for EU Operators: Implementing Enhance Due Diligence to Shield Against Russian Sanctions Circumvention.European Parliament, Committee on Constitutional Affairs.European Parliament, Implementation of the 14 point Reform plan ‘Strengthening Integrity, Independence and Accountability'.Financial Conduct Authority, Sanctions systems and controls: firms' response to increased sanctions due to Russia's invasion of Ukraine.Financial Conduct Authority, Speech by Sarah Pritchard: Calibrating controls to build confident markets.Financial Conduct Authority, FCA launches review of treatment of Politically Exposed Persons (press release).Financial Conduct Authority, Review of the treatment of domestic politically exposed persons (PEPs): terms of reference.Gambling Commission, £6.1m fine for online operator In Touch Games (press release).Gambling Commission, Suspension of licences – In Touch Games Limited.His Majesty's Revenue and Customs, HMRC internal manual: Economic Crime Levy.His Majesty's Revenue and Customs, Policy paper: Get ready for the Economic Crime Levy.Information Commissioner's Office, Data Protection Act 2018 and UK General Data Protection Regulation Reprimand.International Monetary Fund, Money Laundering Poses a Risk to Financial Sector Stability: Curbing cross-border illicit proceeds demands a united global effort and innovative approaches.Joint Money Laundering Steering Group, JMLSG publishes new Guidance on cryptoasset transfers.National Crime Agency, Dutch financial crime agency to join International Anti-Corruption Coordination Centre.National Defense, Algorithmic Warfare: NATO Ponders Using Article Five for Cyber Attacks.Office of Financial Sanctions Implementation, Report Concerning Breach of Financial Sanctions Regulations (section 149(3) PACA 2017 report) – Wise Payments Limited.Office of Financial Sanctions Implementation, OFSI uses disclosure power for first time.Office of Financial Sanctions Implementation, Guidance: Monetary penalties for breaches of financial sanctions.Office of Financial Sanctions Implementation, Guidance: Annual frozen asset review and reporting form.Office of Financial Sanctions Implementation, Financial Sanctions Notice: Cyber (07/09/2023).Office of Financial Sanctions Implementation, Guidance on Ransomware and Financial Sanctions.Office of Financial Sanctions Implementation, Consolidated List of Financial Sanctions Targets in the UK: Cyber.Office of Foreign Assets Control, Treasury Sanctions Sudanese Paramilitary Leader.Office of Foreign Assets Control, Treasury Targets Individuals and Entity Supporting the Democratic People's Republic of Korea's Weapons of Mass Destruction Program.Serious Fraud Office, SFO Chief Capability Officer delivers keynote speech at 2023 Cambridge Symposium.Transparency International, Impact Report and Accounts 2022-23.Transparency International, Transparency Campaigners Urge Government to back Lords Amendments and Close Dirty Money Loopholes.UKFIU, SARs Reporter Booklet (August 2023).UK Parliament, House of Commons, Votes and Proceedings: Monday 4 September 2023.UK Parliament Public Accounts Committee, Local authority administered COVID support schemes in England.
Here is another episode of LKS' all Law., where Mr. Prashant Pratyay and Mr. Gaurav Tiwari discuss the topic “Digital Personal Data Protection Act – Implications for financial entities and fin-tech sector”The Digital Personal Data Protection Act, 2023 introduces a comprehensive framework on data protection applicable to entities processing personal data across all sectors. Some of the key obligations include notice, consent requirements, relying on legitimate purposes (where applicable), implementation of technical and organizational measures and security measures for preventing data breach. Link to the article: Digital Personal Data Protection Act – Implications for financial entities and fin-tech sector Authors: Prashant Phillips and Sameer Avasarala
In this episode, we dive deep into the world of Artificial Intelligence and its ethical implications. We explore how AI is transforming businesses and what ethical considerations come into play. We also discuss the Data Protection Act in Jamaica and its significance in the age of AI. Don't miss this enlightening conversation!One Great Studio Prospectus
The Data Protection Act: The Implementation Challenge, In Partnership With MSK | S0EP05
What Is The Purpose Of The Data Protection Act? S03E04
The past week has been momentous for those awaiting the enactment of a legal framework for data protection in India. India's parliament passed the Digital Personal Data Protection Act, 2023, and the law has now also received the assent of the President of India. This law has been enacted after multiple rounds of deliberations and consultations. Multiple committees have submitted reports on the proposed legislation, and three previous drafts of the legislation have been circulated for public consultation. What changes has this law undergone? How will the cost of data protection and privacy compliance impact Indian businesses?In this episode of Interpreting India, Rahul Matthan joins Anirudh Burman to give us insights into these questions and more.Episode ContributorsRahul Matthan is a partner at Trilegal, one of India's leading law firms, and heads the technology, media, and telecommunications (TMT) practice of the firm. He has extensive experience advising on high-value TMT transactions in the country. Rahul's expertise spans several sectors in the technology space, including data protection, digital finance, cryptocurrencies, e-commerce, and more. Rahul has advised the government on the data privacy law and has served on the Kris Gopalakrishnan Committee on Non-Personal Data. He has authored numerous articles and thought pieces on various topical issues relating to computers, the internet, and other new technologies.Anirudh Burman is an associate research director and fellow at Carnegie India. He works on key issues relating to public institutions, public administration, the administrative and regulatory state, and state capacity. He has also worked extensively on financial regulation and regulatory governance.He has published works related to parliamentary oversight in India, the freedom of movement and residence, measuring the responsiveness of independent regulators in India, the design of insolvency professionals as a regulated profession, and the right to information.Additional ReadingsGet On with Data Protection Now That the Law's Enacted by Rahul MatthanCompanies Must Work Hard to Ensure Data Protection by Rahul MatthanResisting the Leviathan: The Key Change in India's New Proposal to Protect Personal Data by Anirudh BurmanWill India's Proposed Data Protection Law Protect Privacy and Promote Growth? by Anirudh Burman—-Key Moments:(0:00); Introduction (3:00); Chapter 1: The Journey of This Act(7:03); Chapter 2: Data Protection in India(10:58); Chapter 3: Key Components of the Data Protection Act (14:19); Chapter 4: Applying GDPR Compliance in India(22:00); Chapter 5: Right to Data Portability(27:57); Chapter 6: Consent Manager Framework (32:44); Chapter 7: The Indian Government's Data Accessing Powers(37:30); Chapter 8: Restrictions on Data Fiduciaries(42:46); Chapter 9: Blocking Data Fiduciaries' Access to Public Information (45:18); Chapter 10: Data Localization(46:56); Chapter 11: Establishing a Data Protection Board(49:48); Closing Comments(52:40); Outro
NASSBER was established in 2016 to drive engagement between the legislature and private sector, for a framework that will make the economy business-friendly for all.Since inception, the Roundtable has achieved significant legislative milestones, including the Companies and Allied Matters Act (CAMA), Arbitration and Mediation Act, and more recently, the Data Protection Act, 2023. But NASSBER is not resting on its oars. The Roundtable is gearing up for even more measurable outcomes as it engages the 10th Assembly for transformative legislation that will impact both the business community and generality of Nigerians.
NASSBER was established in 2016 to drive engagement between the legislature and private sector, for a framework that will make the economy business-friendly for all.Since inception, the Roundtable has achieved significant legislative milestones, including the Companies and Allied Matters Act (CAMA), Arbitration and Mediation Act, and more recently, the Data Protection Act, 2023. But NASSBER is not resting on its oars. The Roundtable is gearing up for even more measurable outcomes as it engages the 10th Assembly for transformative legislation that will impact both the business community and generality of Nigerians.
Indiana's Consumer Data Protection Act advanced in the state legislature last week and now heads to Governor Eric J. Holcomb's desk. The bill mirrors comprehensive privacy legislation enacted in Virginia, Utah, and Iowa, further extending the reach of privacy protections in the United States but without the complex mandates found in laws in California, Colorado, and Connecticut. Following on the heels of Iowa's Act Relating to Consumer Data Protection, Indiana's law is expected to be the second state privacy law enacted this year, and the seventh comprehensive state privacy law overall. https://www.adlawaccess.com/2023/04/articles/whats-in-the-indiana-consumer-data-protection-act/ Aaron Burstein aburstein@kelleydrye.com (202) 342-8453 https://www.kelleydrye.com/Our-People/Aaron-J-Burstein Alex Schneider aschneider@kelleydrye.com (202) 342-8634 https://www.kelleydrye.com/Our-People/Alexander-I-Schneider Rod Ghaemmaghami rghaemmaghami@kelleydrye.com (213) 547-4912 https://www.kelleydrye.com/Our-People/Rod-Ghaemmaghami Subscribe to the Ad Law Access blog - www.adlawaccess.com/subscribe/ Subscribe to the Ad Law News Newsletter - https://www.kelleydrye.com/News-Events/Publications/Newsletters/Ad-Law-News-and-Views?dlg=1 View the Advertising and Privacy Law Resource Center - https://www.kelleydrye.com/Advertising-and-Privacy-Law-Resource-Center Find all of our links here linktr.ee/KelleyDryeAdLaw Hosted by Simone Roach
India has been waiting for data protection laws for a long time. Privacy advocates want to know how authorities are currently collecting and processing data about the population.
Discover The Secrets To Build A Credible Personal Brand From An Award Winning Privacy WriterJoin us on today's episode as we sit down with Robert Bateman, Head of Content at GRC World Forums. Robert shares his unique career path from a postgraduate degree in psychotherapeutic counselling to finding his niche as a privacy writer. He shares his insight on the future of GDPR and some of his most memorable interview experiences with well-known privacy figures like Max Schrems. Tune in for actionable tips on how to establish a credible personal brand and find your voice in the privacy industry. Hi, my name is Jamal Ahmed and I'd like to invite you to listen to this special episode of the #1 ranked Data Privacy podcast.In this episode, discover:How to stay ahead of changing privacy lawsWhat the future holds for GDPRHow to build a credible personal brand with social mediaThe best practices for writing effective and engaging privacy contentWhether you're considering a career in privacy or looking to build your personal brand, don't miss this opportunity to learn from a respected privacy writer!Robert Bateman is a respected voice on data protection, privacy, and security law. He built his profile creating in-depth reports on legislation, compliance guidance documents for organizations, and news articles about the latest sectoral developments worldwide. Robert's passion for privacy and security began while studying for a postgraduate law degree. His dissertation, on the compatibility of the U.K.'s Data Protection Act with the European Convention on Human Rights, won the DMH Stallard Prize for best research project. Since then, Robert has worked with privacy and security-focused tech firms and startups, creating detailed guidance and policy documents to help organizations comply with their data protection and security compliance obligations. A passionate advocate for digital rights, Robert has also worked as a journalist reporting on the latest developments in digital privacy, tech policy, and state surveillance.Follow Jamal on LinkedIn: https://www.linkedin.com/in/kmjahmed/Follow Robert on LinkedIn: https://www.linkedin.com/in/protectionofdata/Take your career to the next level with The Privacy Pros Ultimate CIPPE Certification Programme: http://bit.ly/3ZmiJZzGet Exclusive Insights, Secret Expert Tips & Actionable Resources For A Thriving Privacy Career That We Only Share With Email Subscribers► https://newsletter.privacypros.academy/sign-upSubscribe to the Privacy Pros Academy YouTube Channel► https://www.youtube.com/c/PrivacyProsJoin the Privacy Pros Academy Private Facebook Group for:Free LIVE TrainingFree Easy Peasy Data Privacy GuidesData Protection Updates and so much moreApply to join here whilst it's still free: https://www.facebook.com/groups/privacypro
In this episode, Francis Monyango and Mutua Mutuku discuss the Data Protection Act turning 3 years, the Office of the Data Protection Commissioner and the digital lenders' enforcement notice.Resources:1. The Data Protection Act http://kenyalaw.org/kl/fileadmin/pdfdownloads/Acts/2019/TheDataProtectionAct__No24of2019.pdf2. The Data Protection (General) Regulations https://www.dataguidance.com/sites/default/files/the_data_protection_regulations_2021fin._1.pdfThis episode was edited by Tevin Sudi.Intro/Outro - https://pixabay.com/music/id-102694/Transition music - https://pixabay.com/music/id-6575/
Jon and Sean talk about the Virginia Consumer Data Protection Act and how it could affect your business.
The Ministry of Electronics and Information Technology (MeitY) issued the Digital Personal Data Protection Bill, 2022, on Friday, 18 November. It is a 24-page concise Bill created after analyzing the data privacy laws of the European Union (EU), Singapore, Australia, and the United States. The most recent iteration of India's Data Protection Bill is the country's fourth attempt to enact this law. It only addresses personal data and concentrates on safeguards for digital personal data. The government is anticipated to present the Bill in Parliament during the 2023 budget session now that it is available for public feedback. Read the article and find out more about the Digital Personal Data Protection Bill, 2022. Let us discuss the impact the Bill will bring on the Data Principals and Data Fiduciary. What is a Data Protection Act? The Data Protection Act seeks to provide guidelines for the processing of digital personal data. It focuses on all digital personal data processing in a way that acknowledges the necessity to process personal data for legitimate reasons and matters related to or incidental to those goals, as well as the right of persons to have their personal data protected. Overview of the Digital Personal Data Protection Bill, 2022: The goal of the Digital Personal Data Protection Bill 2022 is to establish a balance between Data Principals' rights to secure their digital personal data and Data Fiduciaries' obligations to process that data. Let us provide you with an overview of “The Digital Personal Data Protection Bill, 2022.”
In this episode of the Security Insider Podcast, we speak with Anna Harris about “Why Standards Matter”. Anna is a Principal Advisor Information Security, within the Office of the Victorian Information Commissioner (OVIC). OVIC administers the Privacy and Data Protection Act (2014) and the Freedom of Information Act (1982) regulating three main areas:• Protective data security / Information Security• Privacy• Freedom of InformationAnna has worked with OVIC and the former offices of the Commissioner for Privacy and Data Protection (CPDP) and the Commissioner for Law Enforcement Data Security (CLEDS) for the past 9 years, leading the delivery of the first regulated information security regime across the Victorian Government. This is more commonly referred to as the Victorian Protective Data Security Framework (VPDSF), and the Victorian Protective Data Security Standards (VPDSS).Anna's extensive experience in information security stems from working at the Department of Defence, and various Victorian departments such as Justice as well as Human Services. In addition, Anna holds numerous information security certifications and is a member of two Standards Australia committees MB-025 Security and Resilience and IT-012 Information security, cybersecurity and privacy protection working alongside co-presenter Jason Brown.This knowledge has provided a solid background on information security and assisted with the development of the Framework and Standards.
This episode of Serious Privacy, co-host Ralph O'Brien joins Dr. K Royal of Outschool while Paul Breitbarth is on vacation for the last of his 3 weeks. This week, Dr. K and Ralph chat with Barry Moult, Director at BJM IG Privacy Ltd. Barry is well known in the data protection industry, especially in the UK, where he has been recognized for his tremendous work and efforts. His awards include: ICO Excellence in DP Award winner 2020, the NHS SIGN IG Professional of the Year Award 2021, named an IRMS Fellow, and recognized with the AMIRMS & Life Time Achievement 2020. Barry entered the privacy world as the Data Protection Act was passed and was a nurse at the time. We discuss how privacy grew and the IG apprenticeship program that just launched.Join us as we discuss some boots on the ground work and hopes for the future.. As always, if you have comments or questions, let us know - LinkedIn, Twitter @podcastprivacy @euroPaulB @heartofprivacy @trustArc Ralph as @IGrobrien and email seriousprivacy@trustarc.com. Please do like and write comments on your favorite podcast act so other professionals can find us easier.
With the rise of Big Tech and social media, privacy advocates have rung the alarm on how these large organizations treat their users' data. Outside of a few lawmakers, this issue never gained traction on Capitol Hill or in the White House, until now. The introduction of the bipartisan American Privacy and Data Protection Act, as well as new regulatory interest in privacy policy, signal possible progress. In this podcast, the Brownstein Government Relations team discusses what these policy moves entail, why it has become an issue now and possible roadblocks new legislation and regulation faces.
Produced by Internews. Data politics have played an immense role in Kenya's tumultuous election history. In part, this is due to the centrality that ethnicity has played in Kenyan politics, and the ways in which data about ethnicity has been used, misused, and manipulated. Kenya is again headed to the polls in August 2022 for the first general election since the Data Protection Act (2019) came into effect. The question in most Kenyans' minds is - will this law protect the integrity of Kenyan elections in this election cycle and moving forward? How can the Office of the Data Protection Commissioner protect against misuse of data in party politics and elections and the downstream effects of this data manipulation on legitimacy, trust in democratic politics, and stability? What can civil society and the general public do to push for the protection of data in electoral processes? Kenyan lawyers, Mugambi Laibuta, Grace Mutungu, Hashim Mude and Tevin Gitonga join us on this episode to talk more about Kenya's history of data's use and misuse in elections and the role of Kenya's new Data Protection Act in the 2022 election. And yes, we'll touch on the boogeyman, Cambridge Analytica!
Elon Musk is getting sued again, U.S. Senator Elzabeth Warren wants to stop data brokers from selling user location and health data, and iPhone users could be eligible for payouts following legal claims.
In this episode, Dr. Melissa Omino and Mugambi Laibuta discuss the recently published data regulations under the Data Protection Act 2019 of Kenya.Resources:1. The Friendly Troll Podcast: https://podcasts.apple.com/ke/podcast/the-friendly-troll/id14885738832. Ole Law Podcast https://anchor.fm/lexole/episodes/Privacy-and-Personal-Data-Protection-eh9qu63. Mugambi Laibuta's Blog: https://www.laibuta.com/blog/4. The Data Protection (General) Regulations: https://www.dataguidance.com/sites/default/files/the_data_protection_regulations_2021fin._1.pdf 5. CIPITs Data Protection Course Details: https://cipit.strathmore.edu/data-protection-course/#1595996061441-4b3a1c2b-c718 This episode was edited by Tevin Sudi Music: Intro/Outro - https://pixabay.com/music/id-102694/Transition music - https://pixabay.com/music/id-6575/
The Personal Data Protection Act (PDPA), Thailand's first law on data protection, is set to come into full effect on June 1 2022 and is designed to address key issues regarding the collection, use, or disclosure of personal data. With its extraterritorial reach, the PDPA is expected to significantly affect an increasingly global tech sector. In this episode, Lothar Determann, Kritiyanee Buranatrevedhya, Nam-ake Lekfuangfu, and Wasin Lertwalaipong go into detail about the compliance, employment, and enforcement aspects of the PDPA and provide their insights into what tech companies need to know and do in preparation for this new law.
Today on the show we tackle the complex subject surrounding the ‘right to be forgotten.' This is the regulation that offers various online protections to EU citizens but is not something that is widely adopted outside of Europe. You might think that the laws and legislations around your online rights would be simple but as you will hear this is actually a complex issue as rules can easily cross boundaries of morality and freedom of speech. For this episode we have brought in two guests to discuss different points of their experience around these rules. The first is Intellectual Property expert Elizabeth Ward who shares just what a minefield the regulations can be to in a legal context. Our second guest is sports presenter Amy Christophers who has personal experience of enacting the right to be forgotten in order to have materials removed from the internet and shares the personal and professional cost of the process. What is the Right to be Forgotten Legislation in relation to the right to be forgotten The challenges of taking down information from the internet What is the process of delisting How the Data Protection Act is used in law Lawful processing to protect your IP The personal and professional tool of elicit materials being illegally shared For more information on the subject covered today head to https://www.shieldyourbody.com/ for resources, in-depth articles, free tips and PDF guides to learn all about EMF, health and protection. The Healthier Tech Podcast is the show bringing you a practical solutions-based approach to understanding how best to live in balance with our increasing reliance on tech. The show from Shield Your Body brings you expert voices that clearly explain the science that matters to you, and the usable tips that you can use to live healthier, while defending against the health risks of modern day technologies.
Photo: An example of an attack helo firing rockets, such as is being done now in Ukraine. #Ukraine: The Cold War air, land and sea. @JerryHendrixII @SagamoreInst @NRO https://www.ft.com/content/07bbc5c7-e620-4734-83b5-7bb261363c35 Captain Jerry Hendrix, @JerryHendrixII @SagamoreInst @NRO Sagamore Institute, National Review Online, & USN [ret]. .. Permission s: This file is licensed under the Open Government Licence version 1.0 (OGL v1.0). You are free to: copy, publish, distribute and transmit the Information;adapt the Information;exploit the Information commercially for example, by combining it with other Information, or by including it in your own product or application.You must, where you do any of the above: acknowledge the source of the Information by including any attribution statement specified by the Information Provider(s) and, where possible, provide a link to this licence;ensure that you do not use the Information in a way that suggests any official status or that the Information Provider endorses you or your use of the Information;ensure that you do not mislead others or misrepresent the Information or its source;ensure that your use of the Information does not breach the Data Protection Act 1998 or the Privacy and Electronic Communications (EC Directive) Regulations 2003.
Businesses without data protection license may not be able to bid for government contracts, a directive from the Data Protection Commission in collaboration with the Public Procurement Authority has indicated. The Data Protection Act mandates all firms to obtain data protection license before beginning operations.
APMG International presents our popular weekly panel Q&A show. Level Up your Cyber Resilience with the host: Nick Houlton and Question Master: Charlotte Miller. Answering your questions are panellists: Gary Hibberd, Sarbojit Bose, Nigel Mercer, Darren Conway and Lynnette Kelly. An opportunity to have your real-life questions answered, driving the panel discussion before moving on to the focus topic on Data Protection and Data Privacy by Darren Conway.
Photo: 10 Downing Street #LondonCalling: Scrooge and Marley Party at No. 10, 2020. @JosephSternberg @WSJOpinion https://www.thetimes.co.uk/article/downing-street-christmas-party-hosted-by-officials-kcqz6kmhp .. .. .. Permissions: Number 10 Downing Street is the headquarters and London residence of the Prime Minister of the United Kingdom.Organization: ARMYObject Date | 21 February 2013, 20:45:40 Source | Photo http://www.defenceimagery.mod.uk/fotoweb/fwbin/download.dll/45153802.jpgMetadata source: http://www.defenceimagery.mod.uk/fotoweb/fwbin/fotoweb_isapi.dll/ArchiveAgent/5042/Search?FileInfo=1&MetaData=1&Search=45155532.jpg Author | Sergeant Tom Robinson RLC Permission (Reusing this file) | Images are downloadable at high resolution, made available at http://www.defenceimagery.mod.uk for reuse under the OGL (Open Government License). This file is licensed under the Open Government Licence version 1.0 (OGL v1.0). Attribution:Photo: Sergeant Tom Robinson RLC/MOD You are free to: copy, publish, distribute and transmit the Information;adapt the Information;exploit the Information commercially for example, by combining it with other Information, or by including it in your own product or application.You must, where you do any of the above: acknowledge the source of the Information by including any attribution statement specified by the Information Provider(s) and, where possible, provide a link to this licence;ensure that you do not use the Information in a way that suggests any official status or that the Information Provider endorses you or your use of the Information;ensure that you do not mislead others or misrepresent the Information or its source;ensure that your use of the Information does not breach the Data Protection Act 1998 or the Privacy and Electronic Communications (EC Directive) Regulations 2003.
Bangladesch arbeitet an DatenschutzgesetzIran organisiert Verwaltung des Internets neuInternet-Shutdown im SudanPakistanPakistan Press Foundation: The Islamabad High Court terms TikTok ban as violation of constitutional rightsDigital Rights Monitor: Ban on TikTok is apparently a violation of constitutional law, says Islamabad High CourtDawn: PTA again blocks TikTok, says action taken over failure to remove 'inappropriate content'Pakistan Press Foundation: Information Technology Ministry notifies rules to regulate social media platformsBangladeschGlobal Voices: Bangladesh's upcoming Data Protection Act may suppress, not protect, citizens rightsUNB: Draft of data privacy and localization law is prepared: PalakThe Daily Star: With a new data protection act on the cards, time for a reality checkNew Age: TIB concerned over draft law to protect personal dataIranPeivast: طرح صیانت مدیریت ورود اینترنت را از وزارت ارتباطات به ستاد کل نیروهای مسلح میدهدPeivast: طرح صیانت، وزارت ارتباطات و سازمان تنظیم مقررات را بیاختیار میکندPeivast: طرح صیانت مدیریت ورود اینترنت را از وزارت ارتباطات به ستاد کل نیروهای مسلح میدهدPeivast: رضا تقیپور رئیس کمیسیون مشترک بررسی طرح صیانت شدSudanNetblocks: Internet disrupted in Sudan amid reports of coup attemptQuartz: Sudan shuts down the internet after a military coupMiddle East Eye: Sudan coup 2021: Internet 'severely disrupted' after military takeoverDFR Lab: Sudanese Facebook network promoting paramilitary group removed month before coup Hosted on Acast. See acast.com/privacy for more information.
In the UK a woman sued her neighbor claiming his Amazon Doorbell violated her privacy citing harassment, a nuisance and a breach of the Data Protection Act 2018. Find out how that turned out and if it could be coming to the USA. -A man was arrested after posting an item for sale in the Facebook Marketplace with drugs in the picture. Find out what you should not do. Visit my LinkTree for all links and podcasting platforms https://linktr.ee/LalaNews3 Check out this and other videos on my Youtube channel https://www.youtube.com/channel/UCP--id6nvHQiAq2xckPPF4A Business and Bookings LMFierceReview@gmail.com IG @LalaNews3 https://linktr.ee/LalaNews3 #quickspits #lalanews3 #podcast #vlog #host #amazon #amazonring #amazondoorbell #unitedkingdom #UK #privacy #lawsuit #facebook #arrest #illegal #police #warrant #dataprotectionact2018 #metharrest #audio #video #recording --- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app --- Send in a voice message: https://anchor.fm/lalanews3/message Support this podcast: https://anchor.fm/lalanews3/support
Coming up in this week's episode: Facebook penalty announced by Irish DPC, Footballers demand reward for use of their personal data, Microsoft thwarts largest ever DDOS attack, Local Authority GDPR breach league table, Amazon Ring breaks Data Protection Act 2018, McDonalds data breach, Acer data breach, Imperial College data breach, Thingiverse data breach, Chesterfield Borough Council faces legal action after data breach, Visible data breach, Accenture data breach, Pandemic caused data breaches across UK Business sector, Belgian Covid-19 app data breach, Lithuania journalists take action to stop GDPR hiding names of individuals involved in corruption, BCS gives opinion on proposed UK GDPR changes, Pirate Party opposes changes to Whois data, Trademark Trial and Appeal board rules on GDPR in US court documents
The Data Protection Act of 2021 would change privacy regulation worldwide. Will growing hostility toward Big Tech drive this Congress to act? And if they do act, what can we expect from this new agency? More on Reece Hirsch. SPEAKERS Wayne Stacy, Reece Hirsch Reece Hirsch 00:00 Welcome everyone to the Berkeley Center for Law and Technolog expert series podcast. I'm your host Wayne Stacey. And today we're talking about proposed privacy legislation. In particular, we're talking about the reintroduced Data Protection Act, which if passed, and that's a big if, would create a new federal agency focused on privacy. To guide us through this discussion today, we have Reece Hirsch. He's the co-head of the privacy and cybersecurity practice at Morgan Lewis and one of the nation's leading experts on privacy nationwide. Notably, he's also an author of six published books on cybersecurity. That's important because it's always great to find a lawyer that's an expert and has a personality at the same time. We get a wonderful guest today to walk us through the Data Protection Act of 2021. Well, thanks for having me, Wayne. Let's just start with the basics. I saw that this was introduced back in June of 2021, with some new provisions. So the the Data Protection Act of 2021. Tell us what the key features are. There have been several attempts to pass comprehensive us privacy legislation. This is the latest, but it is a pretty comprehensive effort, pretty ambitious, and it is getting some early traction. So I think it's worth taking a look at. And it would establish a new independent federal agency called the Data Protection Agency, which would have the authority to enforce new privacy regulations that they would develop, punish violators, study tech platform data collection practices. A lot of the kinds of things that have been here recently scrutinized by Congress, they'd be able to regulate the acts and practices involving use or collection of personal data. And then also, they would be able to examine mergers that involve significant combinations of personal data, where this new agency would be reporting on mergers to the FTC and the DOJ. And that also, they would be taking on a new role in regulating data aggregators, companies that are amassing large databases of personal information. So it's really targeting a lot of the things that have gotten the most scrutiny and criticism in recent years, It seems that this federal agency would be incredibly powerful when you compare it to the California agency. They're not really even equivalent, are they? I think it's really intended to address a perceived deficiency in US privacy regulation, because we do have the Federal Trade Commission, and they do good work with somewhat limited resources. But the US doesn't have any federal agency that's exclusively dedicated to privacy enforcement. And for example, when you look at the Organisation for Economic Cooperation and Development, they've got 38 member countries, including Germany, France, the UK, and the US is the only one that doesn't have a dedicated Data Protection Agency, this bill would be designed to try to remedy that, and also create a more kind of beefed up agency because the FTC has in the neighborhood of 40 to 50 personnel dedicated to privacy enforcement, when in the UK, their data protection agency has more in the neighborhood of 180 people concentrating on this subject. So that is kind of what they're aiming for with this bill, is to create that kind of really robust regulator in the privacy space. When I read through the proposed statute, the piece that caught my attention was a term that inevitably would be the focus of a lot of regulation, maybe litigation, and that is "high risk data practices." What's that supposed to cover? It c
On this episode of Technology Roundup attorney Jonathan V. Gallo discusses the Consumer Data Protection Act, Virginia's New Data Privacy Law, entity exclusions, businesses' responsibilities, rights of consumers, and enforcement.
In a podcast aimed at licencees and managers, Helena Wootton, Stewart Dresner and Tom Cooper discuss possible data protection pitfalls of collecting data from customers and make some practical suggestions.Useful links: UK Government guidance - Keeping workers and customers safe during COVID-19 in restaurants, pubs, bars and takeaway serviceshttps://assets.publishing.service.gov.uk/media/5eb96e8e86650c278b077616/Keeping-workers-and-customers-safe-during-covid-19-restaurants-pubs-bars-takeaways-230620.pdfBig Hospitality - Coronavirus track and trace: 7 steps to complying with data protection law https://www.bighospitality.co.uk/Article/2020/06/24/Coronavirus-track-and-trace-7-steps-to-complying-with-data-protection-law-GDPR-hospitality-restaurants-barsNote from Stewart Dresner, Privacy Laws & Business:"I stated in the podcast that retaining personal data for its purpose, in this case for Covid-19 tracing, (the purpose limitation principle) is a longstanding principle going back to the UK's Data Protection Act 1984. I wrote an article in The Economist in 1987 reflecting the importance of this principle by referring to the first use of a search warrant by the Data Protection Registrar [the regulator] to investigate a part-time policeman who was suspected of using the Police National Computer to check up on the boyfriend of his daughter. A similar case involving a policeman, who worked part-time as a debt collector, led ultimately to a decision in the UK's highest court referenced as R. v. Brown [1996] 1 AC543 on interpretation of the Data Protection Act 1984 Section 1 (7)" http://www.legislation.gov.uk/ukpga/1984/35/section/1/enacted
With the new General Data Protection Regulations (GDPR) coming into force on 25 May, a lot of people are getting nervous. Businesses who fail to comply face heavy penalties - much higher than the previous Data Protection Act. What are these penalties...