Podcasts about iapp

Send us a textOn this week of Serious Privacy, Paul Breitbarth, and Dr. K Royal (Ralph O'Brien was traveling), we cover a wild wrap up of privacy activities, including Tom Kemp as the newly appointed head of the California Consumer Privacy Protection Agency, and a wide sweep of enforcement actions including Roku, Honda Motor Company, National Public Data, Tom Snyder, plus class actions against Insomnia and Pill Pack, and a reprimand sent to Deep Seek, IAPP's state privacy law tracker update, California is seeking public feedback on proposed regulations for the delete request and opt-out platform - the DROP system, CNIL's guidance on monitoring self-checkouts, and Meta's request for a court to invalidate the EDPB guidance (can't do it, it's not a law) and Belgium's new law plus quite a bit more. We are packed with news.Please subscribe in your favorite podcast app - sharing is caring!  Powered by TrustArcSeamlessly manage your privacy program, assess risks, and stay up to date on laws across the globe.With TrustArc's Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy.If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textOn this episode of @SeriousPrivacy, hosts Paul Breitbarth and Dr. K Royal (Ralph wasn'  able to join us in DC) catch up with Tahu Kukutai, Professor, The University of Waikato; Jade Makory, CIPP/E, CIPM, CIPT, FIP, Legal and Advocacy Director, Data Analytics Kenya, and Privacy Expert, PwC (on Sabbatical); and Shana Morgan, AIGP, CIPP/E, CIPM, FIP, Global Head of AI / Privacy, L3Harris Technologies - just after the first IAPP panel on indigenous privacy at GPS25 (moderated by Shoshana Rosenberg). Fabulous and enlightening.   Powered by TrustArcSeamlessly manage your privacy program, assess risks, and stay up to date on laws across the globe.With TrustArc's Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy.If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textOn this week of Serious Privacy,  Ralph O'Brien of Reinbo Consulting, and Dr. K Royal connect to cover a week in privacy as Paul Breitbarth is away. This weeks shorter episode includes a guide to what's coming up from Serious Privacy at IAPP summit in DC, a penalty from the UK ICO, EDPB draft Guidance on blockchain, state laws, enforcement actions, and more!Please subscribe in your favorite podcast app - sharing is caring! Some resourceshttps://ico.org.uk/about-the-ico/media-centre/news-and-blogs/2025/04/law-firm-fined-60-000-following-cyber-attack/https://www.edpb.europa.eu/news/news/2025/edpb-adopts-guidelines-processing-personal-data-through-blockchains-and-ready_enhttps://iapp.org/resources/article/us-state-privacy-legislation-tracker/#state-privacy-law-chart Powered by TrustArcSeamlessly manage your privacy program, assess risks, and stay up to date on laws across the globe.With TrustArc's Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy.If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textOn this week of Serious Privacy, Paul Breitbarth, Ralph O'Brien of Reinbo Consulting, and Dr. K Royal have a short week in privacy (a lot about #Meta and children using #AI) along with some updates on the IAPP #GPS25 where we learned that it was all about the people, such as our friends at TrustArc, Ben Siegal, Dan Solove, and so many others. Please subscribe in your favorite podcast app - sharing is caring!  Powered by TrustArcSeamlessly manage your privacy program, assess risks, and stay up to date on laws across the globe.With TrustArc's Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy.If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Jodi Daniels is the Founder and CEO of Red Clover Advisors, a privacy consultancy, that integrates data privacy strategy and compliance into a flexible, scalable approach that simplifies complex privacy challenges. A Certified Information Privacy Professional, Jodi brings over 27 years of experience in privacy, marketing, strategy, and finance across diverse sectors, working and supporting startups to Fortune 500 companies. Jodi Daniels is a national keynote speaker, and she has also been featured in CNBC, The Economist, WSJ, Forbes, Inc., and many more publications. Jodi holds a MBA and BBA from Emory University's Goizueta Business School. Read her full bio. Justin Daniels is a corporate attorney who advises domestic and international companies on business growth, M&A, and technology transactions, with over $2 billion in closed deals. He helps clients navigate complex issues involving data privacy, cybersecurity, and emerging technologies like AI, autonomous vehicles, blockchain, and fintech. Justin partners with C-suites and boards to manage cybersecurity as a strategic enterprise risk and leads breach response efforts across industries such as healthcare, logistics, and manufacturing.  A frequent keynote speaker and media contributor, Justin has presented at top events including the RSA Conference, covering topics like cybersecurity in M&A, AI risk, and the intersection of privacy and innovation. Together, Jodi and Justin host the top ranked She Said Privacy / He Said Security Podcast and are authors of WSJ best-selling book, Data Reimagined: Building Trust One Byte at a Time. In this episode… From a major privacy summit to a regional AI event, experts across sectors are emphasizing that regulatory scrutiny is intensifying while AI capabilities and risks are accelerating. State privacy regulators are coordinating enforcement efforts, actively monitoring how companies handle privacy rights requests and whether cookie consent platforms work as they should. At the same time, AI tools are advancing rapidly with limited regulatory oversight, raising serious ethical and societal concerns. What practical lessons can businesses take from IAPP's 2025 Global Privacy Summit and Atlanta's AI Week to strengthen compliance, reduce risk, and prepare for what's ahead? At the 2025 IAPP Global Privacy Summit, a major theme emerged: state privacy regulators are collaborating on enforcement more closely than ever before. When it comes to honoring privacy rights, this collaboration spans early inquiry stages through active enforcement, making it critical for businesses to establish, regularly test, and monitor their privacy rights processes. It also means that companies need to audit cookie consent platforms regularly, ensure compliance with universal opt-out signals like the Global Privacy Control, and align privacy notices with actual practices. Regulatory enforcement advisories and FAQs should be treated as essential readings to stay current on regulators' priorities. Likewise at the inaugural Atlanta AI Week, national security and ethical concerns came into sharper focus. Despite promises of localized data storage, some social media platforms and apps continue to raise alarms over foreign governments' potential access to personal data. While experts encourage experimentation and practical application of AI tools, they are also urging businesses to remain vigilant to threats such as deepfakes, AI-driven misinformation, and the broader societal implications of unchecked AI development. In this episode of She Said Privacy/He Said Security, Jodi Daniels, Founder and CEO of Red Clover Advisors, and Justin Daniels, Shareholder and Corporate Attorney at Baker Donelson, share their top takeaways from the IAPP Global Privacy Summit 2025 and the inaugural Atlanta AI Week. Jodi highlights practical steps for improving privacy rights request handling, the importance of regularly testing cookie consent management platforms, and ensuring published privacy notices reflect actual practices. Justin discusses the ethical challenges surrounding AI's rapid growth, the national security risks tied to social media platforms, and the dangers posed by deepfake technology. Together, Jodi and Justin emphasize the importance of continuous education, collaboration, and proactive action to prepare businesses for the future of privacy and AI.

Send us a textCameron and Gabe return after a brief hiatus to explore major developments in security, privacy, and resilience. They dive into insights from the IAPP conference and VeeamOn, examining how AI governance and outdated privacy tools are reshaping the industry landscape.• AI governance frameworks dominated IAPP discussions with companies "building the plane as they're flying"• Verizon's Data Breach Report debunks overblown AI security fears, showing real risks are data leakage and poor access controls• Growing frustration with outdated privacy management tools is driving demand for better solutions• Security posture isn't about using recognized brands but about architecture without dangerous gaps• Sam Altman's virtual appearance at IAPP disappointed attendees expecting an in-person keynoteStay tuned for our bonus episode covering even more developments from this busy week in privacy and security! Support the show

Laura Juanes es jurista especializada en protección de datos personales, gobernanza de inteligencia artificial y derechos humanos en el entorno digital, con más de veinte años de experiencia internacional, y es directora académica del programa avanzado de gestión de incidentes de ciberseguridad en el contexto de la inteligencia artificial (IE Law School).  Laura está basada en Miami y es fundadora de Global Privacy & Policy Consulting, donde asesora a empresas sobre desafíos tecnológicos y regulatorios, forma parte del Consejo de Administración de Caixabank Payments & Consumer y del Consejo Asesor del Ethical AI Governance Group. Laura ha liderado funciones globales de protección de datos personales, cumplimiento y gobernanza digital en Yahoo! y Meta, y también en grupos internacionales en otros sectores como RBI (dueños de Burger King). Ha sido ponente en foros como el G-20, el Foro Económico Mundial, la OEA, la Asamblea Global de Privacidad y la IAPP.  Nuestra invitada es licenciada en Derecho por la Universidad Autónoma de Madrid y tiene un LLM por la Universidad de Miami. Ha co -fundado el Women in Tech Miami Council y colabora como mentora de startups en Florida y América Latina. Referencias: Laura Juanes en LinkedIn IE Law School: Managing Cyber Incidents in an AI Driven World (Advanced Legal Program) Ethical AI Governance Group Women in Tech Miami Council  

Autonomous robots with embedded artificial intelligence are growing more common across industry sectors. So-called “embodied AI,” collects vast amounts of data through its sensors and changes how humans interact with technology. As embodied AI becomes more common and continues to drive innovation, it also creates new challenges for ethical uses of data and personal privacy. Erin Relford is a privacy engineer at Google and has worked in the embodied AI space. In a recent article for the IAPP, she wrote that “existing privacy mitigations may be insufficient for human-robot interactions.” That's why she helped create a robotics privacy framework to “promote privacy-preserving design” in the “responsible deployment of robotics with embedded AI. IAPP Editorial Director Jedidiah Bracy caught up with Erin to discuss her work in this vanguard space.

Professor Werbach talks with Ashley Casavan, Managing Director of the AI Governance Center at the IAPP, the global association for privacy professional and related roles. Ashley shares how privacy, data protection, and AI governance are converging, and why professionals must combine technical, policy, and risk expertise. They discuss efforts to build a skills competency framework for AI roles and examine the evolving global regulatory landscape—from the EU's AI Act to U.S. state-level initiatives. Drawing on Ashley's experience in the Canadian government, the episode also explores broader societal challenges, including the need for public dialogue and the hidden impacts of automated decision-making. Ashley Casovan  serves as the primary thought leader and public voice for the IAPP on AI governance. She has developed expertise in responsible AI, standards, policy, open government and data governance  in the public sector at the municipal and federal levels. As the director of data and digital for the government of Canada, Casovan previously led the development of the world's first national government policy for responsible AI. Casovan served as the Executive Director of the Responsible AI Institute, a member of OECD's AI Policy Observatory Network of Experts, a member of the World Economic Forum's AI Governance Alliance, an Executive Board Member of the International Centre of Expertise in Montréal on Artificial Intelligence and as a member of the IFIP/IP3 Global Industry Council within the UN. Transcript Ashley Casovan IAPP IAPP AI Governance Profession Report 2025 Global AI Law and Policy Tracker Mapping and Understanding the AI Governance Ecosystem

Send us a textWe are a little late this week, but with good reason: Paul Breitbarth and Dr. K Royal were attending the IAPP Global Privacy Summit in Washington D.C. and bring you their report from the Opening General Session of the conference. The speakers during this session were professor Lawrence Lessig, Hans Peter Brøndmo and Catie Cuan, each reflecting on 25 years of IAPP and what is next for us privacy professionals. Apparently: it's robots! Powered by TrustArcSeamlessly manage your privacy program, assess risks, and stay up to date on laws across the globe.With TrustArc's Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy.If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Peter Kosmala is a course developer and instructor at York University in Canada and leads its Information Privacy Program. Peter is a former marketer, technologist, lobbyist, and association leader and a current consultant, educator, and international speaker. He served the IAPP as Vice President and led the launch of the CIPP certification in the early 2000s. In this episode… As data privacy continues to evolve, privacy professionals need to stay sharp by reinforcing their foundational knowledge and refining their practical skills. It's no longer enough to just understand and comply with regulatory requirements. Today's privacy work also demands cultural awareness, ethical judgment, and the ability to apply privacy principles to real-world settings. How can privacy professionals expand their expertise and remain effective in an ever-changing environment? Privacy professionals can't rely on legal knowledge alone to stay ahead. Privacy frameworks like the Fair Information Practice Principles (FIPPs), OECD Guidelines, and others offer principles that help privacy pros navigate shifting global privacy laws and emerging technologies. Privacy pros should also deepen their cultural literacy, recognizing the societal and political drivers behind laws like GDPR to align privacy practices with public expectations. Hands-on operational experience is just as important. Conducting privacy impact assessments (PIAs), responding to data subject access requests (DSARs), and developing clear communications are just a few ways privacy pros can turn knowledge into practical applications. In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels talk with Peter Kosmala, Course Developer and Instructor at York University, about how privacy professionals can future-proof their skills. Peter discusses the value of foundational privacy frameworks, the tension between personalization and privacy, the limits of law-based compliance, and the growing need for ethical data use. He also explains the importance of privacy certifications, hands-on learning, and principled thinking to build programs that work in the real world.

Are you looking to build a career in data privacy and protection? The IAPP CIPP/E (Certified Information Privacy Professional/Europe) certification is the gold standard for professionals dealing with GDPR and European privacy laws. In this episode of the InfosecTrain podcast, we discuss why InfosecTrain is the best choice for your CIPP/E training and certification preparation.

Privacy law and technological advancements have a deep and intertwined history that go back to at least the 1890s with Samuel Warren and Louis Brandeis's article "The Right to Privacy," which was prompted by camera technology. George Washington University Law Professor Dan Solove has long studied and written about privacy law. He published several well-known books including "Nothing to Hide: The False Trade Off Between Privacy and Security" and co-authored "Privacy Law Fundamentals," which is published by the IAPP. Solove recently published a new book, "On Privacy and Technology." IAPP Editorial Director Jedidiah Bracy caught up with Solove just before the book was published to discuss it and whether the regulation-versus-innovation trade-off is a fallacy, why the notice-and-choice paradigm hasn't worked for consumers, and where the future will take privacy, AI, and cybersecurity law and regulation.

Send us a textOn this week of Serious Privacy, Paul Breitbarth, Ralph O'Brien of Reinbo Consulting, were off (busy with professional lives), so Dr. K Royal connected with Joe Jones of the IAPP, Director of Research and Insights. They discuss how Joe got started in privacy - building from international trade as a lawyer and then BAM! Out came the GDPR, Joe then migrated to the #UK government, and quickly into the #IAPP, moving to the US about two years ago.Please subscribe in your favorite podcast app - sharing is caring!  Powered by TrustArcSeamlessly manage your privacy program, assess risks, and stay up to date on laws across the globe.With TrustArc's Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy.If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

What is the best way to address privacy risks in the context of connected cars? Is data minimization compatible with assisted driving? What is the meaning of “Core Vehicle Data”? Mark Jaffe leads the Rivian ethics, compliance and privacy program. This includes ethical culture, compliance oversight, privacy, and investigations.  Prior to joining Rivian, Mark was Senior Vice President for Privacy at Teleperformance, a global business process outsourcer with over 400,000 employees operating in over 80 countries, spending almost two years in Singapore managing privacy issues in the Asia Pacific region. He has also dealt with data protection compliance in Europe, Middle East, and Africa.  Prior to that, Mark spent 17 years at AT&T in global privacy roles as well as global compliance and ethics roles. Our guest is a frequent speaker on a variety of topics related to privacy compliance and data ethics. Mark earned his B.A., cum laude, from Duke University and his J.D., cum laude, from Northwestern University.  References: Mark Jaffe on LinkedIn Rivian's Privacy Hub FTC bans General Motors from selling driving data without permission, adding to case for CarPlay 2 (9to5Mac, January 2025) 800,000 EV drivers' data exposed in Volkswagen breach (The Register, January 2025) Privacy Not Included, a Mozilla Report about connected cars and privacy (“It's Official: Cars Are the Worst Product Category We Have Ever Reviewed for Privacy”, September 2023) Investigation by Netherlands' DPA prompts changes to Tesla security cameras (IAPP, 2023) Tesla workers shared sensitive images recorded by customer cars (Reuters, 2022) Privacy4Cars  

The World Economic Forum's recent ‘Future of Jobs' report positioned ‘AI and big data' and ‘technological literacy' as skills that will become increasingly important over the next five years. But what do these skills look like in practice? What do we mean when we talk about ‘AI literacy'?  In this week's episode of The Mindtools L&D Podcast, Ross D and Anna are joined by Erica Werneman Root, legal consultant and co-founder of Knowledge Bridge, to discuss:  what ‘AI literacy' means in different contexts;  the compliance implications of building AI literacy in organizations;  how L&D can help employees develop AI skills.  To find out more about AI literacy, check out Erica's recent articles for IAPP.  For examples of how organizations are building AI literacy programmes, explore the AI Office's ‘Living Repository of AI Literacy Practices'.  The blog Anna mentioned was ‘From Centaurs To Cyborgs: Our evolving relationship with generative AI'   In ‘What I Learned This Week', Anna referenced research from Harvard, exploring the effects of AI on knowledge work.  Ross D mentioned OpenAI's new ‘Deep Research' tool. More trivially, he also shared Pierre Franey's five-star recipe for turkey chilli.  For more from us, visit mindtools.com. There, you'll also find details of our award-winning performance support toolkit, our off-the-shelf e-learning, and our custom work.    Connect with our speakers     If you'd like to share your thoughts on this episode, connect with us on LinkedIn:  Ross Dickie  Anna Barnett  Erica Werneman Root 

In this episode, we discuss the value of cyber conferences (shout out to NetDiligence, Zywave, IAPP, PLUS, Execusummit, and all the others I missed). Specifically, beyond the sessions, how the conversations in the background help grow understanding of legal, market, and security trends, collaboration, and genuine connections in the industry. I can't neglect a special shout-out to meeting Shawn Melito in a buffet line at a Zywave conference in 2019, discussing the pros and cons of pasta salad. Further, we dive into the unforeseen consequences of mass-scale vendor breaches. Is the market ready for a vendor to throw its hands up, declare bankruptcy, and push all notification obligations to its insureds? Is the market ready for the mass-scale class actions that would follow? Do insurers need to start thinking about sublimit for these types of events? I would love to get everyone's thoughts so keep the questions, calls, and comments coming! E-mail me at spollock@mcdonaldhopkins.com or call me at 410-917-5189. 

Punit Bhatia is a knowledgeable and fascinating expert source who can speak to the media about all aspects of data security, privacy, and how they intersect with AI. A recognized thought leader, Punit is a global speaker who has spoken at over 50 events around the world. He is also the author of four industry important books - “Be Ready for GDPR” , “AI & Privacy,' “Be An Effective DPO,” and “Intro To GDPR.” Globally known as one of the world's leading privacy experts, Punit helps businesses create a culture of privacy by establishing a privacy network and training management. Working with professionals in over 30 countries, Punit empowers CXOs and DPOs to identify and manage privacy risks, and to create and implement privacy strategies in a world that is digital, AI-driven, and has data in the cloud. The founder and owner of FIT4PRIVACY, a brand of the Ek Advisory company, Punit is also a board member at ISACA Belgium Chapter and DPO Circle. In the past, he served as a Training Advisory Board member at IAPP. Punit is a certified Fellow in Information Privacy (FIP), CIPM, COP, and CIPP-E. Punit is also the host /creator of the FIT4PRIVACY Podcast which has been ranked amongst the top GDPR podcasts since 2020. Website: http://www.fit4privacy.com/ LinkedIn: https://www.linkedin.com/in/punitbhatia/ Instagram: https://www.instagram.com/punit.world/ Youtube: https://www.youtube.com/fit4privacy Facebook: https://www.facebook.com/FIT4privacy/ Podcast: https://www.fit4privacy.com/podcast CallumConnects Micro-Podcast is your daily dose of wholesome leadership inspiration. Hear from many different leaders in just 5 minutes what hurdles they have faced, how they overcame them, and what their key learning is. Be inspired, subscribe, leave a comment, go and change the world!

Alex Dittel leads KHQ's Data Privacy, Cyber and Digital legal practice. He brings over 15 years of experience in data protection, information security and technology commercial matters acquired during his time working for big and small technology companies and law firms in the United Kingdom and Australia. As a passionate GDPR-native data privacy lawyer, he advises on Australian as well as international data privacy matters. He holds CIPP/A, CIPP/E and CIPP/US certifications from the IAPP. References: Alexander Dittel on LinkedIn KHQ: Data Privacy, Cyber and Digital Alex Dittel: OAIC's decision a warning re use of facial recognition technology First Tranche of Australia's Privacy Law reforms explained (Association of Corporate Counsel)  

3 Things Business Owners Don't Know That Can Hurt Them is covered in this podio, along with the following subjects: - What is the Corporate Transparency Act - How does it impact small business owners? - Why Small Businesses Must Prioritize Compliance and Cybersecurity *************************************** Many business owners may not be aware of the Corporate Transparency Act and its potential impact on small businesses. This act aims to combat money laundering and terrorism financing by requiring certain small businesses to report their beneficial ownership information to the Financial Crimes Enforcement Network (FinCEN). Small business owners must understand how this legislation affects them to ensure compliance and avoid any penalties. I'll be talking with Paul Paray about 3 Things Business Owners Don't Know That Can Hurt Them. Paul has a diverse legal and business background that includes, creating resilient security and privacy compliance programs – including one for an auto insurer; successfully prosecuting intellectual property portfolios; successfully litigating federal and state commercial disputes around the country, and helping small and mid-sized business owners navigate numerous risk management issues. To that end, he has been invited to speak at leading conferences to discuss risk management, including RSA, IAPP, RIMS and PLUS, and has been interviewed regarding risk management by the National Law Journal, Business Insurance, CFO Magazine, ComputerWorld, SC Magazine, Security Management, The Financial Post, The Hartford Business Journal, The Newark Star-Ledger, New Jersey Law Journal, and The New York Times. He can be reached via email at paul@licenz.com.

How can organizations build a true digital trust environment while balancing privacy with user expectations? In this eye-opening episode of the FIT4PRIVACY Podcast, privacy and sustainability expert Katrina Destree and privacy thought leader Punit Bhatia discuss the evolving landscape of digital trust—a crucial factor for organizations in the age of data-driven technologies. Learn how businesses can proactively create choice, control, and consent around user data to establish a strong foundation of trust with their customers. 

Tenemos pocos meses para adecuarnos al Data Act, que presenta interesantes solapamientos con el RGPD. ¿Cómo adecuar dispositivos en IoT, coches conectados, Smart Cities, Smart Homes, o accesorios destinados a optimizar la salud? Ramon Baradat es un abogado especializado en privacidad y derecho de las TIC (incluyendo comercio electrónico, IA o ciberseguridad) en la oficina de Barcelona de Cuatrecasas. También es autor de diversas publicaciones, docente y ponente, además de coordinar el capítulo de la IAPP en la ciudad condal, conjuntamente con Monica Meiterman, que ya ha estado con nosotros en el canal en inglés.  Referencias: Ramon Baradat en LinkedIn Data Act (Reglamento de 2023 sobre normas armonizadas para un acceso justo a los datos y su utilización) Leonardo Cervera: la protección de datos frente a la inminente avalancha regulatoria (Masters of Privacy) Ramon Baradat: Data Act: nuevas previsiones entre titulares de datos y usuarios Ramon Baradat: Data Act: nuevas previsiones para destinatarios de datos Data Governance Act (Reglamento de 2022 relativo a la gobernanza europea de datos) Directiva 1996 sobre la protección jurídica de las bases de datos Dato inferido o derivado en el ejercicio de portabilidad: directrices 2016 CEPD/EDPB  If This Then That - IFTTT (aplicación de automatización) [EN] Agentes inteligentes con Jamie Smith (Masters of Privacy) [EN] Dan Stone y Icebreaker: cartera para gestionar la propia identidad de forma descentralizada (Masters of Privacy) Espacios europeos comunes de datos

Send us a textMid November is the time of the year where the data protection community comes together in Brussels for the annual IAPP Data Protection Congress. Paul Breitbarth and Dr. K Royal were not able to join this year, but our third host Ralph O'Brien was in town, and has grabbed some people in between sessions for interviews. This week on Serious Privacy, you get his report. Listen to Ralph's conversations with Jim Campbell, Robert Baugh, Matteo Colombo and Rossana Baldon, and Andreea Lisievici Nevin.Edited by Fey O'Brien. If you have comments or questions, find us on LinkedIn and IG @seriousprivacy, and on Blue Sky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! Proudly sponsored by TrustArc. Learn more about NymityAI at https://trustarc.com/nymityai-beta/ #heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO

On today's podcast, I am chatting with Scott, We will talk about his many jobs, there's a lot! In college, Scott studied Business Administration, He was on the advisory board overseeing IAPP certifications!

In this episode, we sit with the return guest, Jim Dempsey. Jim is the Managing Director of the Cybersecurity Law Center at IAPP, Senior Policy Advisory at Stanford, and Lecturer at UC Berkeley. We will discuss the complex cyber regulatory landscape, where it stands now, and implications for the future based on the recent U.S. Presidential election outcome.We dove into a lot of topics including:The potential impact of the latest U.S. Presidential election, including the fact that while there are parallels between Trump's first term and Joe Biden's, there are also key differences. We're likely to see a deregulatory approach related to commercial industry and consumer tech but much more alignment and firm stances related to cyber and national security.The future of efforts around Software Liability and Safe HarborContrasted differences between the EU's tech regulatory efforts and the U.S. The U.S. has taken a much more voluntary approach. While Jim is an advocate of regulation and thinks it is needed, he simply cannot get behind the heavy-handed approach of the EU and suspects it will continue to widen the tech gap between the U.S. and the EU.What is the potential for regulatory harmonization and the challenges due to the unique aspects of each industry, vertical, data types, and more.Jim leads the recently formed IAPP Cybersecurity Law CenterHe is also the author of the book Cybersecurity Law Fundamentals, Second Edition.

Monica Meiterman-Rodriguez is a Partner at Tueoris, an international privacy and security consulting firm, currently residing in Barcelona. She utilizes her US law degree and her experience in data protection and privacy to assist global clients in developing, maintaining, or growing their privacy programs. She has experience supporting compliance across global regulations including US state and federal requirements, EU/UK GDPR, PIPEDA, LGPD, etc. in addition to advising on specialized matters in the AdTech space such as targeted advertising, data analytics, AI and growing industry guidance (e.g., IAB, DAA, etc.). Monica is a member of the New York State Bar, New Jersey State Bar, as well as a Certified Information Privacy Professional (CIPP/US/E) and the Chapter Chair of the IAPP in Barcelona (Spain). References: Monica Meiterman on LinkedIn California Consumer Privacy Act EDPB Guidelines 01/2022 on data subject rights - Right of access GDPR Violation: German Privacy Regulator Fines 1&1 Telecom(BankInfoSecurity) Groupon Ireland Operations Limited – March 2024: the DPC finds that Groupon infringed Article 5(1)(c) GDPR by having initially required the complainant to provide a copy of their ID in order to verify their identity for the purposes of their access and erasure requests.

Joe Jones serves as the Director of Research and Insights at the IAPP. Previously, he served as the UK Government's Deputy Head of Digital Trade, where he was responsible for digital policy. Joe also served as a private practice lawyer on international data issues. In this episode… Companies are grappling with the challenges of managing privacy, security, AI, and data governance in an increasingly complex regulatory environment. The IAPP's Organizational Digital Governance Report highlights the challenges businesses face due to “digital entropy” — caused by overlapping laws, rapid technological shifts, and cultural and socio-technical differences, emphasizing the need for organizations to align their governance structures to address these challenges. How can companies navigate these complexities while maintaining compliance and operational efficiency? The IAPP's digital governance report provides insights into how companies can adapt their structures and processes to meet the growing demands of digital governance. It outlines three varying approaches companies are using to navigate digital entropy: the analog model, where companies use their current structures while adding more tasks to existing teams; the augmented model, where companies create new committees or cross-functional teams to define overarching terms for digital governance and policy; and the aligned model, where companies have dedicated roles for digital governance. The report underscores the importance of moving toward a more aligned model, where privacy, security, and AI governance are streamlined under cohesive leadership. This involves empowering privacy teams, implementing regular audits, fostering collaboration across departments, and avoiding reliance on ad hoc committees to align with evolving privacy regulations. In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels chat with Joe Jones, Director of Research and Insights at IAPP, about how companies can leverage insights from the IAPP Organizational Digital Governance Report to improve their digital governance frameworks. Joe explains how companies can stay ahead of regulatory changes by embracing more structured governance models. He also emphasizes the need for privacy professionals to act as enablers within organizations, offering guidance on leveraging data responsibly while navigating the growing complexity of privacy regulations.

The IAPP's annual “Privacy. Security. Risk.” event took place in Los Angeles last week. Both Celine Takatsuno and Sergio Maldonado attended, took some notes, and now share their experiences and takeaways.  References: Sergio Maldonado (Medium): PSR 2024 Takeaway (DPAs, Vendor Audits, MHMD Act) Mike Hintze: Blog post series on Washington State's My Health My Data Act IAPP: Agenda and speakers at PSR 2024.  

Send us a textOn this week of Serious Privacy, Paul Breitbarth and Dr. K Royal discuss recent developments in privacy and data protection laws around the world. They talk about the new European Commission that will take office later this year, the revamp of the IAPP, mobile app compliance guidelines from the CNIL, the Global Privacy Assembly in Jersey, and much more. If you have comments or questions, find us on LinkedIn and IG @seriousprivacy @podcastprivacy @euroPaulB @heartofprivacy and email podcast@seriousprivacy.eu. Rate and Review us! Proudly sponsored by TrustArc. Learn more about NymityAI at https://trustarc.com/nymityai-beta/ #heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO

Conquer Your CIPP/E Exam Fears and Pass On Your First AttemptFeeling overwhelmed by the CIPP/E exam? You're not alone! In this inspiring episode, Mahnoor Rahman, a lawyer turned privacy pro, shares her journey to passing the CIPP/E exam and how she overcame her fear of failure.We discuss:Mahnoor's initial struggles with IAPP materials.How Mahnoor's search for a mentor and support led her to the Privacy Pros Academy.How fear of failure almost held her back. And practical tips for you to take action and get certified in record time.Ready to become a World Class Privacy Expert? Book your call to join the World's Leading Privacy Program Follow Jamal on LinkedIn: https://www.linkedin.com/in/kmjahmed/Follow Mahnoor on LinkedIn: https://www.linkedin.com/in/mahnoor-rahman-00bab54a/

Omer Tene is a Partner in Goodwin's Technology group and Data, Privacy, and Cybersecurity practice. For the past two decades, he has consulted governments, regulatory agencies, and businesses on privacy, cybersecurity, and data management. Omer is also an Affiliate Scholar at the Stanford Center for Internet and Society and a Senior Fellow at the Future of Privacy Forum. Before Goodwin, he was the Chief Knowledge Officer at the IAPP. In this episode… The US privacy landscape is rapidly evolving, as more states enforce privacy regulations similar to California's comprehensive privacy law. In 2025, eight new privacy laws will come into force — even states without comprehensive privacy laws are imposing regulations to protect consumer data. Notably, New York, where the New York Attorney General recently established guidelines around cookies and tracking technologies emphasizing the need for companies to properly categorize cookies and configure consent mechanisms. The NY AG has also proposed regulations surrounding kids' privacy, like the Child Data Protection Act, that will impact how companies process children's data. As the US privacy landscape becomes an increasingly complex web of regulations, how can companies prepare for what lies ahead? Beyond New York, privacy regulations around kids' data are gaining momentum across the US, with laws like the California's Age-Appropriate Design Code aiming to protect minors from harmful content. Regulations on kids' privacy include everything from age verifications that restrict the sale of minors' data to design codes that protect children from exposure to harmful internet content. These guidelines have garnered pushback in states like California, where businesses claim violation of the First Amendment, consequently delaying enforcement. Regardless, companies should prepare to respond to these regulations that govern the collection, processing, and sale of children's data. In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels welcome Omer Tene, a Partner at Goodwin, to explore the complexities of evolving privacy regulations, specifically on children's data. Omer shares his insights on the nuances of various privacy regulations, ethical challenges surrounding children's data protection, and the potential future of privacy legislation. Omer maintains that although some regulations have not yet been enforced, companies should take a proactive approach adapting to these new regulations as the privacy landscape shifts.

Theater and dance experiences can help develop presentation skills and confidence.Understanding privacy laws and regulations is crucial in the field of privacy and data protection.Effective communication involves understanding the audience's communication style and delivering information in a way that resonates with them.Practice and preparation are essential for successful presentations, especially when dealing with dense and technical information. Balancing timing and attention spans is crucial in instructional design.Training the trainers is important to ensure effective teaching.Experienced trainers are often more effective and compelling.Visuals in instructional design should be carefully chosen to avoid clichés and consider cultural sensitivity.Personal and professional experiences can inform and enhance each other.Facing fears and taking action is key to overcoming them.Open communication and feedback are essential in both personal and professional relationships.

In this episode of the Privacy Pros Academy podcast, Jamal Ahmed interviews Priya Bhadwaj, a data privacy expert with over a decade of experience You'll discover:The most challenging pillar of data governance and how to overcome it.How to transform people from privacy risks to privacy champions.The secrets to building credibility and influence as a Privacy ProWhat you need to successfully find the perfect privacy job for youThis is the episode that will supercharge your career!Priya Bhardwaj is a data privacy powerhouse with a decade of experience safeguarding some of the world's largest financial institutions and renowned Big 4 firms. Priya holds a certificate in Data Privacy and Technology from Harvard Business University, CIPM from IAPP and is a top Data Privacy voice on LinkedIn.Follow Jamal on LinkedIn: https://www.linkedin.com/in/kmjahmed/Follow Priya on LinkedIn: https://www.linkedin.com/in/priya-bhardwaj-1b293340/Ready to become a World Class Privacy Expert? Book your call to join the World's Leading Privacy Program

Send us a Text Message.Curious about the latest buzz from DEFCON and Black Hat? We promise you'll gain fresh insights into the world of cybersecurity, including a behind-the-scenes look at Palo Alto's marketing mishap that set the industry ablaze. Join Cameron Ivey and Gabe Gumbs as they shed light on the evolving landscape of cybersecurity, celebrating the growing contributions of diversity while acknowledging the industry's ongoing challenges.But that's not all—we dive into the nitty-gritty of AWS account takeovers, uncovering the risks and misconceptions that many IT professionals face. From shadow accounts to AWS's dominance over Google Cloud and Microsoft Azure, we've covered you with the latest research and conference highlights. Plus, we share some fun moments and upcoming events like PSR and IAPP in LA, sprinkled with a bit of autograph signing and fan interactions. Tune in for an engaging episode that combines technical deep dives with thoughtful industry reflections and a touch of humor! Support the Show.

On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal cover a hot week in privacy with the child safety bill which passed the US Senate (covered wonderfully by IAPP's Cobun Zweifel-Keegan), the recent US Supreme Court decision in the Netchoice case, the historical duty of care, and the Texas settlement with Meta for $1.2B for biometrics violations. But wait - there is more - recent events, amendments, enforcements, and pacts - from EU, Nigeria, Malaysia and other nations. It may be a quiet summer elsewhere, but privacy is hotter than the heat waves! Tune in! If you have comments or questions, find us on LinkedIn and IG @seriousprivacy @podcastprivacy @euroPaulB @heartofprivacy and email podcast@seriousprivacy.eu. Rate and Review us! Proudly sponsored by TrustArc. Learn more about NymityAI at https://trustarc.com/nymityai-beta/ #heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO

How secure is our nation's critical infrastructure? One recent event serves as a cautionary tale. In this episode, we tackle this pressing question in the context of cybersecurity. We'll address President Biden's recent National Security Memorandum on Critical Infrastructure Security and Resilience,  and its implications for sectors like energy, water, and transportation. Our guest, Elizabeth Burgin Waller, from Virginia's WoodsRogers law firm, brings her extensive knowledge in privacy and cybersecurity law to the discussion. Join us as we discuss ransomware as a service, shedding light on its franchise-like model and the significant challenges in tracking and prosecuting these cybercriminals, especially those hiding in countries like Russia. We discuss the recent takedown of the LockBit ransomware gang under Operation Kronos, and the persistent and growing complications of IoT security.CrowdStrike's recent software glitch, while not a malicious attack, serves as a stark reminder of the importance of testing and transparency around cyber incidents, and the vulnerability of the systems that drive critical industries. Tune in for expert insights and reflections on the evolving regulatory landscape and what it means for mitigating risk in the Digital Age.Beth is Principal and Cybersecurity & Data Privacy Practice Chair at WoodsRogers. In addition to a J.D. from William and Mary School of Law, she is certified as a Privacy Law Specialist by the International Association of Privacy Professionals (IAPP), which is accredited by the American Bar Association, a Certified Information Privacy Professional with expertise in both U.S. and European law (CIPP/US & CIPP/E), and a Certified Information Privacy Manager (CIPM), also from the IAPP. Beth also graduated magna cum laude with a B.A. in creative writing, so maybe I should have let her write the show notes. *******This podcast is the audio companion to the Journal of Emerging Issues in Litigation. The Journal is a collaborative project between HB Litigation, a brand of Critical Legal Content (a custom legal content service for law firms and service providers) and the vLex Fastcase legal research family, which includes Full Court Press, Law Street Media, and Docket Alarm.If you have comments, ideas, or wish to participate, please drop me a note at Editor@LitigationConferences.com.Tom HagyLitigation Enthusiast andHost of the Emerging Litigation PodcastHome PageFollow us on LinkedInSubscribe on your favorite platform. 

On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal hosted the world's first Field CPO, Ron deJesus. We talk about how he got into privacy, Trevor the treasure of IAPP, Ron's field trip to talk to other CPOs, what it's like to be a regulator vs. in-house, and so much more - including the IAPP #LGBTQ party at #PSR in September  so exciting! And what we are hoping to see also at the #GlobalPrivacyAssembly in Jersey in October…. As well as some recent news in #privacy #dataprotection around Rhode Island (20th state with omnibus privacy laws in the U.S.), Meta's pay or consent model not being okay, and so much more. Tune in for some #livinglearninglaughing. If you have comments or questions, find us on LinkedIn and IG @seriousprivacy @podcastprivacy @euroPaulB @heartofprivacy and email podcast@seriousprivacy.eu. Rate and Review us! Proudly sponsored by TrustArc. Learn more about NymityAI at https://trustarc.com/nymityai-beta/ #heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO

On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal cover a couple of weeks in privacy. Topics include the Vermont Privacy Act veto heard around the world, updates in the European Parliament, the Digital Advertising Alliance webchoices 2.0, a joint investigation by the UK and Canada into the 23andMe breach, Clearview AI's settlement proposal, noyb's complaint against Google for its privacy sandbox, the Apple Intelligence announcement, Hong Kong's guide on AI, the US Supreme Court's acceptance to hear the Meta case, the EDPB's new deputy chair, and discussion about learning AI, strategy, and seeking AIGP certification by IAPP, including the AIGP Body of Knowledge. Tune in for some living, learning, and laughing. If you have comments or questions, find us on LinkedIn and IG @seriousprivacy @podcastprivacy @euroPaulB @heartofprivacy and email podcast@seriousprivacy.eu. Rate and Review us! Proudly sponsored by TrustArc. Learn more about NymityAI at https://trustarc.com/nymityai-beta/ #heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO

Kabir Barday's career journey illustrates the power of innovation in privacy. As the Founder, CEO, and Chairman of OneTrust, he has transformed the landscape of privacy automation. He holds a Fellow of Information Privacy with the IAPP, the highest designation of a privacy professional, and is a Henry Crown Fellow at the Aspen Institute. With a BS in Computer Science from the Georgia Institute of Technology, where he serves on the Georgia Tech Advisory Board (GTAB), Kabir continues to lead OneTrust in setting new standards for privacy automation and responsible AI. In this episode… Many companies struggle with responsible use of data, AI, and creating privacy programs. From ethical data use to complying with evolving privacy laws and using new AI tools, it can be challenging for companies, especially with manual processes. How can businesses and privacy professionals ease the burden of manual privacy work and keep up with regulations? Trust has become a fundamental societal trend, so businesses must facilitate trusted interactions with customers and stakeholders by embedding privacy controls into the user experience. Fortunately, there is OneTrust, the company revolutionizing responsible use of data, AI, and privacy management with its proprietary software that automates privacy processes, helps organizations comply with regulations, and builds trust with customers. Kabir Bardy, Founder, CEO, and Chairman of the Board at OneTrust, joins Jodi and Justin Daniels on this week's episode of She Said Privacy/He Said Security to discuss OneTrust's innovative approach to privacy, automation, and AI. Kabir shares AI and privacy trends from Trust Week 2024, how OneTrust champions responsible use of data and AI, and how companies can evolve their privacy programs at various maturity levels.

On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal cover a couple of weeks in privacy - on the scary side. Topics include updates on the global CBPRs and PRPs, NOYB launched a complaint against open AI with the austrian data protection authority and 11 complaints against META, Italy reinstates chatGPT, the EDPB chatGPT task force report,  a lawsuit against General Motors for IOT, the U. S. Department of Commerce announced some new initiatives under the AI order for NIST, the FCC fined four major us wireless carriers $200 million for unlawfully sharing customers location data without consent, the Florida governor signed a bill mandating explicit disclaimers on political advertisement to ensuring transparency in AI used for political campaigns, the Dutch Data Protection Authority issued guidance against the web scraping, Australian officials announced an overhaul of their privacy act. Carly Kind, IAPP AI governance global happened in Brussels. the women in AI emerald de leeuw shoshana rosenberg. the California Privacy Protection Agency's hearing is set for June 21st in the Superior Court of California, Maryland also signed in two significant measures for online data protection. The Maryland kids code. the Nordic data protection authorities adopted joint principles on children and online gaming. Leena Kuusniemi If you have comments or questions, find us on LinkedIn and IG @seriousprivacy @podcastprivacy @euroPaulB @heartofprivacy and email podcast@seriousprivacy.eu. Rate and Review us! Proudly sponsored by TrustArc. Learn more about NymityAI at https://trustarc.com/nymityai-beta/ #heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO

The privacy job market is booming, but landing your dream role requires more than just technical know-how. Without a clear roadmap and the right skills, your career aspirations can quickly get lost in the shuffle.Join us for an exclusive interview with Heather, a seasoned professional who will reveal the insider secrets to launching a successful career in privacy.In this episode, you'll discover:Proven strategies to outshine the competition and land your first privacy jobCreative ways to build a relevant portfolio and gain experience before getting hiredThe essential soft skills that will set you apart and accelerate your career growthTune in now and take the first step toward your dream job.Heather F. has had an extensive career in data privacy, advising organisations of all sizes on cutting-edge issues. She is currently the Head of Privacy and Product Counsel at Signifyd, where she manages and leads initiatives related to privacy evangelism, "Shift Left" implementation, data compliance and industry collaboration. Prior to joining Signifyd, Heather held leadership roles at global corporate enterprises such as Macy's Inc and American Express. Heather has served on advisory boards for FPF, IAPP's Privacy Section Bar and IAPP's Publications Advisory Board. She is a Certified Information Privacy Professional (CIPP/US), and admitted to practise law in New Jersey & New York. Outside of privacy, Heather enjoys leading guided meditations at New York Loves Yoga.Follow Jamal on LinkedIn: https://www.linkedin.com/in/kmjahmed/Follow Heather on LinkedIn: https://www.linkedin.com/in/heatherfederman/Subscribe to the Privacy Pros Academy YouTube Channel► https://www.youtube.com/c/PrivacyPros

Blair Dawson is an accomplished legal and business leader with a focus on cybersecurity and data privacy. With extensive experience in representing international clients and managing compliance across various regulatory frameworks, she has served in roles including General Counsel and International Claims Management, specializing in risk management and insurance coverage. Blair teaches Data Privacy at Chicago-Kent College of Law, mentors in the WiCyS program, holds a Master of Science in Cybersecurity, and has several IAPP certifications. This "SecurIT" podcast episode features a discussion with Blair Dawson, exploring her legal career centered on data security and privacy. They discuss challenges posed by regulations like GDPR against the backdrop of AI's data needs. Blair recounts key career moments, emphasizing the value of seizing emerging opportunities like cyber insurance early on. The conversation covers the necessity of cyber insurance, navigating U.S. privacy laws, and potential conflicts between AI advancements and privacy regulations, concluding with Blair's personal commitment to mentoring and education in cybersecurity.

Michael Moore is the Chief Privacy Officer at Lacework, handling privacy and cybersecurity, product counseling, transactions, intellectual property strategy, and open-source software. He holds the IAPP privacy qualifications of CIPP-US, CIPP-E, CIPP-C, CIPM, and CIPT. Michael is also an inventor on 10 patents and author of over 20 published articles. In this episode… Cloud solutions are immensely helpful and strategic tools for companies, offering ubiquitous and immediate access to stored data. The benefits are abundant, but so are the dangers. Cloud software's vulnerabilities stem from the same features that make it valuable, making it a prime target for privacy and security threats in a centralized space. That's why companies like Lacework are tackling this issue with a tile-based cloud security platform that detects data and identity risks to protect against both known and unknown threats. How can your company amplify its cloud security to stay ahead in the evolving threat landscape? In this episode of the She Said Privacy/He Said Security Podcast, Jodi and Justin Daniels are joined by Michael Moore, the Chief Privacy Officer at Lacework, to discuss security and privacy for the cloud. They discuss the modern concerns, how Lacework helps companies, the increasing threats companies face, and Michael's personal privacy tips for anyone and everyone.

On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal of Crawford & Company connect after the IAPP #GPS24 to discuss the US privacy bill being proposed - the American Privacy Rights Act. Join us as we discuss pros and cons along with a little news on #TikTok ban (or not). Good resources on #APRA found at IAPP cheatsheet and here with a section-by-section breakdown. If you have comments or questions, find us on LinkedIn and IG @seriousprivacy @podcastprivacy @euroPaulB @heartofprivacy and email podcast@seriousprivacy.eu. Rate and Review us! Proudly sponsored by TrustArc. Learn more about NymityAI at https://trustarc.com/nymityai-beta/ #heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO

In tandem with privacy, cybersecurity law is rapidly evolving to meet the needs of an increasingly digitized and complex economy. To help practitioners keep up with this ever-changing space, the IAPP published the first edition of Cybersecurity Law Fundamentals in 2021. But there have been a lot of developments since then. Cybersecurity Law Fundamentals author Jim Dempsey, lecturer at UC Berkeley Law School and senior policy advisor at Stanford Cyber Policy Center, brought on a co-author, John Carlin, partner at Paul Weiss and former Assistant Attorney General, to help with the new edition. IAPP Editorial Director Jedidiah Bracy recently spoke with both Dempsey and Carlin about the latest trends in cybersecurity, including best practices in dealing with ransomware, the significance of the new SEC disclosure rule, cybersecurity provisions in state privacy laws, trends in FTC enforcement, the recent Biden Executive Order on preventing access to bulk sensitive personal data to countries of concern, and much more. We even hear about the time Carlin briefed the U.S. president on the Sony Pictures hack.

On this week of Serious Privacy, Dr. K Royal catches up with Val Ilchenko, General Counsel and Chief Privacy Officer of TrustArc. K and Val are both at the IAPP Global Privacy Summit in Dc and were able to catch up for a great conversation on how to design privacy software for both experienced privacy professionals and those who just need to take the first step.We also discussed his career trajectory, where AI should live, and myriad other topics so common to all of us. In addition, Val recommended two resources: You should look at the Sora video demos. It's OpenAI's video technology, S O R A. And then separately, there's a YouTube video where OpenAce technology is used with Figure, which is a robotics company.  If you have comments or questions, find us on LinkedIn and IG @seriousprivacy @podcastprivacy @euroPaulB @heartofprivacy and email podcast@seriousprivacy.eu. Rate and Review us! Proudly sponsored by TrustArc. Learn more about NymityAI at https://trustarc.com/nymityai-beta/ #heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO

On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal of Crawford & Company dive deep into the topic of location data, which is considered sensitive personal data and is often not disclosed in many apps. We talk about geopositioning satellites, a journalist investigation into the Polar's fitness app, transparency reports on responses to government requests, such as this one by TMobile, and creative uses such as tracking saguaro cacti in Arizona and raising money for No Kid Hungry. (and a bonus on Beyonce's Texas Hold Em in honor of K's session with Maggie Gloeckle and Ashley Slavik at IAPP Global Privacy Summit in DC and the LGBTQ party with Ron de Jesus themed on Alice in Wonderland... where K might just leverage a little cosplay on the Queen of Heart of Privacy. If you have comments or questions, find us on LinkedIn and IG @seriousprivacy @podcastprivacy @euroPaulB @heartofprivacy and email podcast@seriousprivacy.eu. Rate and Review us! Proudly sponsored by TrustArc. Learn more about NymityAI at https://trustarc.com/nymityai-beta/ #heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO

In this episode, we catch up with Trevor Hughes, who has grown IAPP Membership from 300 to 80,000. We last spoke with him 3 years ago, right after January 6th. Now, amidst a rapidly changing global privacy landscape and a booming tech sector driven by AI, we revisit for fresh insights about the present and future.

For those following the regulation of artificial intelligence, there is no doubt passage of the AI Act in the EU is likely top of mind. But proposed policies, laws and regulatory developments are taking shape in many corners of the world, including in Australia, Brazil, Canada, China, India, Singapore and the U.S. Not to be left behind, the U.K. held a highly touted AI Safety Summit late last year, producing the Bletchley Declaration, and the government has been quite active in what the IAPP Research and Insights team describes as a “context-based, proportionate approach to regulation.” In the upper chamber of the U.K. Parliament, Lord Holmes, a member of the influential House of Lords Select Committee on Science and Technology, introduced a private members' bill late in 2023 that proposes the regulation of AI. The bill also just received a second reading in the House of Lords 22 March. Lord Holmes spoke of AI's power at a recent IAPP conference in London. While there, I had the opportunity to catch up with him to learn more about his Artificial Intelligence (Regulation) Bill and what he sees as the right approach to guiding the powers of this burgeoning technology.

On this week of Serious Privacy, Dr. K Royal of Crawford & Company is joined by our featured guest-host Ralph O'Brien on location at the IAPP UK Intensive in London. Paul Breitbarth of Catawiki is traveling. Ralph and K were able to catch up with some amazing privacy all-stars starting with Robert Bateman, quickly followed by Marie Penot, Joe Jones, John Bowman of IBM now, Liz Smith of DPOrganizer, and Kate Colleary. Join us for a lively discussion with some pretty amazing people - hear what they consider the hottest new privacy development, what they took away from IAPP, and then - just general privacy conversation featuring #DPIAs, #AI, #consent, and more. If you have comments or questions, find us on LinkedIn, Twitter/Mastodon @podcastprivacy @euroPaulB @heartofprivacy and email podcast@seriousprivacy.eu. Rate and Review us! Proudly sponsored by TrustArc. Learn more about the TRUSTe Data Privacy Framework verification. upcoming webinars.#heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO