DiscoverSerious Privacy
Serious Privacy
Claim Ownership

Serious Privacy

Author: Paul Breitbarth and K Royal of TrustArc

Subscribed: 18Played: 381
Share

Description

For those who are interested in the hottest field in a technology world. Whether you are a professional who wants to learn more about privacy and data protection or someone who just finds this fascinating, we have topics for you. In-depth information on serious privacy topics.

This podcast, hosted by K Royal and Paul Breitbarth, will feature open, unscripted discussions with global privacy professionals (those kitchen table or back porch conversations) where you hear the opinions and thoughts of those who are on the front lines working on the newest issues in handling personal data. Real information on your schedule - because the world needs serious privacy.

Follow us on Twitter: @TrustArc and @PodcastPrivacy or LinkedIn
47 Episodes
Reverse
We look back to January 2020 - with no crystal ball for Serious Privacy with Paul Breitbarth and K Royal.  With 47 episodes and over 25,000 downloads,  Season 1 of Serious Privacy is complete. Thank you to our fans! Season 2 starts Global Privacy Day 2021. Our initial ideas were a little different, but K and Paul found their rhythm and a following. Join us as we look back, play some of our favorite moments, and look ahead to 2021. Our most popular episodes were What Now Right Now? Assessment of the EU Schrems II Decision with Gabriela Zanfir-Fortuna of the Future of Privacy Forum and Sophie in ’t Veld, which we put together the same day; Wildly Successful: An Unexpected Career in Privacy with Emerald de Leeuw; and Privacy on the Front Lines: A View from LA with Lillian Russell. We had phenomenal speakers from around the world (such as Travis LeBlanc, Profs. Dan Solove and Paul Schwartz, Sophie Kwasny, Fabricio da Mota Alves,  Vivienne Artz, Marie Penot, Annelies Moens) and amazing topics (such as Sharenting, a tribute to Ruth Bader Ginsburg, Schrems II guidance, laws from around the world , social justice,  women in privacy,  data science,  and gaming)Please see the full blog entry for a more complete listing. Check out all the episodes!Thank you and we look forward to 2021.Social MediaTwitter@podcastprivacy,  @heartofprivacy,  @EuroPaulB, @TrustArcInstagram @SeriousPrivacy
On 17 November 2020, the Canadian Minister of Information Science and Economic Development, Navdeep Bains, introduced bill C-11, the long-awaited update to the federal Canadian privacy legislation. For many years, this legislative update had been rumoured, and now that it was finally put on the table, we can see some sweeping changes. The Digital Charter Implementation Act, 2020, which includes the Consumer Privacy Protection Act, "would significantly increase protections to Canadians' personal information by giving Canadians more control and greater transparency when companies handle their personal information", the minister said. This week, we will take a look at what the new Canadian law might bring, how it would impact companies doing business in Canada and what novel approaches might be an inspiration for the rest of the privacy community. Our guests are two Canadian powerhouses: former Privacy Commissioner Jennifer Stoddart (now at Fasken), and nNovation counsel Constantine Karbaliotis. Both share their views on the federal and provincial legislative developments in Canada and look ahead at the potential impact of the new legislation.ResourcesBill C-11: An Act to enact the Consumer Privacy Protection Act and the Personal Information and Data Protection Tribunal Act and to make related and consequential amendments to other Acts - linkBig fines included in Canada's newly proposed national privacy bill - link Federal privacy reform in Canada: The Consumer Privacy Protection Act - linkPrivacy watchdog says he will look for amendments to new privacy legislation - linkSocial Media@TrustArc @PodcastPrivacy @HeartofPrivacy @EuroPaulB @ConstantK @FaskenLaw
Since the Schrems-II judgment came down on July 16th, the message has slowly sunk in that Europe is serious about looking at privacy and data protection through the glasses of fundamental rights protection. That was even reinforced by the Privacy International and Quadrature du Net cases, published at the start of October. Any interference with the fundamental rights to privacy and data protection, needs to be limited in time, scope and content, according to the courts, as well as necessary and proportionate. But what does it actually mean that privacy and data protection ARE fundamental rights. And is the “universal fundamental rights approach” compatible with a more economic rights approach taken in other jurisdictions?In this episode of Serious Privacy, Paul Breitbarth and K Royal speak to two guests from international organisations working on fundamental rights. Sophie Kwasny is the Head of the Data Protection Unit of the Council of Europe, and as such, one of the key players when it comes to the so-called Convention 108. Michael Donohue is the Data Protection Officer for the Organisation for Economic Cooperation and Development. Join Paul, K, Sophie and Michael as they discuss ongoing international developments in the privacy community. ResourcesCouncil of Europe data protection websiteConvention 108 for the Protection of Individuals with regard to Automatic Processing of Personal Data Convention 108+ on the protection of individuals with regard to the processing of personal dataOECD Privacy GuidelinesArticle by Colin Bennett on why Canada should accede to Convention 108+Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, @sophiekwasny, @micdonohue @COE_HRightsRLaw @OECD
Technology brings new demands for compliance, especially given the amount of personal data collected through various means and how it is both used and combined. However, technology can also be used to assist compliance professionals by providing the necessary information quickly.  In most of the Serious Privacy  episodes, co-hosts Paul Breibarth and K Royal have discussed one or more specific data protection and privacy related topics. With guest Shub Nandi, the CEO and Founder of PiChain, a company based in Bangalore, India, that primarily focuses on the financial sector, they look at the broader scope of RegTech (regulatory technology) and how it helps to support compliance.PiChain tries to simplify all kinds of business processes, from customer and business onboarding and Know-Your-Customer to e-Contracts. These are all topics that privacy professionals would address, but typically would not have the information available to assess risks accurately or timely. With AI, one can leverage the power of technology to simplify the process, reserving valuable time for decision-making and remediation plans rather than collecting the information.Join us as we discuss the financial market, regulatory challenges, and key technology solutions, such as blockchain. The conversation expands to include the European Union’s General Data Protection Regulation, India’s challenges including its privacy laws, and ethics in data science. Social Media@Podcastprivacy, @heartofprivacy, @euroPaulB, @trustArc
Live! (okay recorded with a live studio audience) from our offices at a fabulous virtual conference - the 2020 IEEE International Symposium on Technology and Society, discussing Public Interest Technologies in a four day long global online conference. This is a first for Serious Privacy, recording an episode live as part of the conference presentation. In normal times, this conference would have taken place face-to-face, facilitating lots of participants to debate their papers with their peers in person. The Public Interest Technology University Network, comprising 36 institutes of higher education, is working to address these very issues by “building the nascent field of public interest technology and growing a new generation of civic-minded technologists.” Paul Breitbarth and K Royal host this live session and focus on the papers that are being presented and discussed on a wide range of topics. Arizona State University is one of the founding members of PIT-UN and is K’s alma mater and where she teaches privacy law. Quite a few of these issues addressed in the conference have also been addressed earlier in this first season of the Serious Privacy podcast: from Ethical AI concerns to COVID apps, and from Surveillance Societies to Mentoring the Next Generation of Technology Innovators.  Join us as we discuss data monopolies, start-up tech companies, cultural norms, and more. Their host for the session, Salah Hamdoun also joined the conversation. Salah is a PhD student in Arizona but is from the Netherlands - which makes for a great discussion on the differences between the EU and the US approaches to privacy. It was the first time the Fourth Industrial Revolution has arisen in the episodes, but an old favorite in government surveillance did make an appearance.ResourcesKatina Michael (co-chair of the conference) and Jamie Winterton, speaker, contributor, and author of Creating the Public Interest Technologies of the Future - Learning to Love the “Wicked Problem”Salah Hamdoun's paper: Technology and the Formalization of the Informal Economy  Social Media@Podcastprivacy, @heartofprivacy, @euroPaulB, @trustArc, @ASU, @katinamichael, @IEEESSIT, @j_winterton
In just a single week, so much has happened. The California Privacy Rights Act was passed by voters and will come into effect on 1 January 2023, the Court of Justice of the European Union once again confirmed that consent is not valid when relying upon pre-ticked boxes, and the European Data Protection Board issued its Recommendations on international data transfers in the wake of the Schrems-II ruling. In the meantime, Finland is dealing with a major health-related data breach, the Biden transition team was announced, which includes some privacy-minded people, and the U.S. Federal Trade Commission announced a settlement with Zoom including a requirement to implement a full privacy and security program. And that was just the tip of the iceberg before the European Commission issued the draft of new standard contractual clauses.In this episode of Serious Privacy, Paul Breitbarth and K Royal invited Paul Schwartz, a leading international privacy expert with a broad view on law and technology issues. He is the Jefferson E. Peyser Professor of Law and the Director of the Berkeley Center for Law & Technology. Join Paul, K, and Prof. Paul Schwartz as they discuss immediate reactions to the recent privacy events, and put the considerations in context within US privacy law as well as global context.  Nothing is off limits for framing these new developments - US law, state law, enforcements, new administration priorities, European requirements, operationalizing privacy, and even HIPAA. Catch up on news and analysis of these momentous events, via other episodes (such as the one with Gabriela Zanfir-Fortuna), webinars, blogs, and published advisories. ResourcesK’s comment on Paul’s lookalike celebrity - Al Pacino https://www.imdb.com/name/nm0000199/ Professor Anupam Chander https://www.law.georgetown.edu/faculty/anupam-chander/ Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, @paulmschwartz, @BerkeleyLaw, @BerkeleyLawBCLT, @privsecacademy
This past week, the European Data Protection Board (EDPB) adopted it’s Recommendations on international data transfers post Schrems-II and the European Commission released the long-awaited draft of new standard contractual clauses. At the same time, the EDPB adopted an updated version of their earlier guidelines on the European Essential Guarantees: criteria that a third country’s (non-European Economic Area country) legislation needs to meet in order to justify an interference with the right to privacy and data protection. In this episode of Serious Privacy, Paul Breitbarth and K Royal bring you an EXTRA episode with Gabriela Zanfir-Fortuna with the Future of Privacy Forum. Although you will hear about these momentous events in a variety of additional TrustArc forums (other Serious Privacy Episodes, blogs, and published advisories), this is worth a special episode tailored specifically to your need to know about these documents. You should note that feedback on the Recommendations are due at the end of November and comments on Standard Contractual Clauses are due December 10, 2020. Less than two weeks later. Join Paul, K, and Gabriella as they share their reactions to the new guidance and SCCs. In particular, Paul and Gabriela were on the former Working Party 29, responsible for issuing guidance. This new guidance is unexpected in some ways. This is what you want to know about what will happen next in the world of international transfers, how to read to new SCCs, and what can be done with supplemental safeguards - or not.Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, @gabrielazanfir, @futureofprivacy Instagram @seriousprivacy
Privacy and data protection are not just a job for lawyers or professionals who specialize in privacy - not anymore. Technology plays an important role in ensuring personal data can remain private. Ensuring that personal data is secure but useful requires a level of skill found in data scientists.In this episode of Serious Privacy, Paul Breitbarth and K Royal searched for just such a skilled individual,Katharine Jarmul, the Head of Product at Cape Privacy, and a data scientist. Cape Privacy is a New York-based company assisting others with machine learning, data security and adding value to data. Katharine explains what data science actually is, how to keep data private, useful and valuable at the same time, and how to create synthetic data appropriately. Also a big question when it comes to powerful technology revolves around the ethics and the investment of individual technologists in the ethics of privacy.Join us as we discuss these topics and more, such as GPT-3, “this person does not exist,” the work of Cynthia Dwork, and differential privacy vs the generative model. As often happens in an episode, certain topics in privacy are revisited, mainly because they are wicked problems with no identified solution. One such topic Katharine discussed is bias in machine learning and approaches to solving bias once identified. Throughout this episode, we reference quite a few resources that we will provide the links - as always.  ResourcesIAPP article on AI and synthetic data: https://iapp.org/news/a/accelerating-ai-with-synthetic-data/Federated / Collaborative Learning Introduction: https://federated.withgoogle.com/Encrypted Learning with TF-Encrypted (also can be used in a collaborative setting where we are sharing data): https://medium.com/dropoutlabs/encrypted-deep-learning-training-and-predictions-with-tf-encrypted-keras-557193284f44Europe - Ethics guidelines for trustworthy AI https://ec.europa.eu/futurium/en/ai-alliance-consultation Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, @kjam, @capeprivacyInstagram @seriousprivacy
Election day in the United States is quite the dramatic event in 2020. We may soon know who will be the President of the United States in the coming years, what the new U.S. Congress will look like, if there might be a chance of federal privacy legislation and an EU-U.S. adequacy deal passing in the coming years,  and if California Proposition 24 (the California Privacy Rights Act or “CPRA”) has made the grade. But the election process itself carries privacy implications and of course, there are other privacy developments in the world.In this week’s episode, Paul Breitbarth and K Royal address political campaigns, the CPRA, China’s new draft data protection law and more. In particular, they highlight the difference between the US and the EU when it comes to determining whether political ideations and opinions are sensitive data. In the US, voter registration polls are quite often public - which offers opportunity for potential election machinations. This year, we have seen non-official ballot boxes, controversy over mail-in ballots with external facing signatures and phone numbers, a high volume of political text messaging, and more.  However, there have been other privacy news lately, such as the proposed law in China. Join us as we discuss these hot topics in privacy in this episode of Serious Privacy along with honor in voting, a la West Wing’s Donna Moss and Jack Reese. Given the impact of the election results, TrustArc is presenting a post-election webinar to address the privacy outcomes in more detail.ResourcesPolitical Campaign Data Targeting (Washington Post) China’s Draft Data Protection Law (IAPP) China’s Draft Data Protection Law (Nymity Research & Alerts -for subscribers)Facebook memo from Andrew Bosworth, executive at Facebook About bots and misinformation Article by Carnegie Endowment for International Peace on Comparing Democratic Distress between the United States and Europe Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarcInstagram: @seriousprivacy
Technology around the world changes quickly - fast and furiously. Unique companies solving problems we did not realize we had are hitting the market. For example, the development of always connected mobile devices has fundamentally changed the global banking system. Where before in many parts of the world people were devoid of having a bank account, nowadays a smartphone gives them access to financial services wherever they are with mobile payments, cryptocurrencies, and  fully virtual banks. In this episode of Serious Privacy, Paul Breitbarth and K Royal host the DPO for Klarna, Europe’s biggest fintech unicorn, valued at over $10 billion, Filip Johnssén. Filip is a seasoned DPO, who prior to Klarna worked for Säpo, the Swedish Security Service, as well as Sandvik, a high tech and engineering company. Given his experience, it is no wonder the topics vary widely.Join us as Filip shares his experience working for a startup tech company, which takes an unusual approach to the modern market experience. In addition, we discussed challenges of financial tech crossing international boundaries, personal interests, and authoring several successful books. We also delved into consumer rights and how to manage those across myriad laws. He is currently working on a practical manual for DPOs (link below). In addition, Filip co-hosts his own privacy podcast Dataministeriet, together with Anders Bäckström.  Also check out Klarna's video privacy notice, which takes transparency to a whole new level.  Lastly, we have a challenge for our listeners of a prior video notice in EU that Filip has been searching for - maybe one of you are familiar with it.ResourcesKlarna links https://www.klarna.com/se/dataskydd/ Privacy Notice: https://www.klarna.com/uk/privacy-notice/Unexpected Newsletter: https://www.klarna.com/uk/blog/klarna-comment-unexpected-newsletter/ Forthcoming book: https://shop.bcs.org/store/221/detail/workgroup?id=3-221-9781780174365 Payment services directive 2 - EU law for fintech: https://ec.europa.eu/info/law/payment-services-psd-2-directive-eu-2015-2366_en Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, @klarnaInstagram @seriousprivacy
Putting the evils back in Pandora’s box just doesn’t seem possible - much like reclaiming privacy in today’s datacentric world. This week, Paul Breitbarth and K Royal hosted Rob Shavell, CEO and founder of Abine (rhymes with hey mine) to discuss consumer privacy controls related to online privacy. Just over a decade ago, the World Wide Web consortium (W3C) started the development of a Do Not Track (DNT) standard, that would limit the way in which people could be tracked between websites. In 2018, the project stopped, because it simply did not gain traction. Now, DNT is back in the form of Global Privacy Control (GPC): a new technical standard to help companies meet the CCPA Do Not Sell requirement and similar requirements around the world. GPC is supported by quite a few companies, such as Mozilla, Brave, the Electronic Frontier Foundation, and the NY Times. Join us as we speak on a variety of topics from the complexities of managing privacy online to the consequences that may arise through enforcement. Rob touches on concepts such as ferociously imperfect laws and controls as well as informed consequential debate. Through these open conversations with privacy professionals and activists, the discussion is unfettered and thus, brings up many elements, such as meetings in Brussels, AI, and being zealous about privacy.ResourcesThe newly announced Global Privacy Control standard. Abine is an early collaborator on the standard, which is like a next-generation "Do Not Track" Rob’s Op-Ed for Help Net Security discussing the CPRA and why it may be more employer-friendly (re: employee data regulation) than widely reported.Privacy as an Employee Benefit - why more companies are investing in employee privacy as a value-add benefit, plus how investing in a culture of privacy can reduce cybersecurity risk.FD (€): https://fd.nl/ondernemen/1359994/een-muisklik-en-alle-cookies-staan-voor-altijd-uit Global Privacy Control on Github: https://globalprivacycontrol.github.io/gpc-spec/ Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, @robshavell @abine @EFFInstagram @seriousprivacy
Events happen occasionally that reinforce each other in such a way that the sum of things is worse than you could ever have imagined: a perfect storm. You may very well say that 2020 is a perfect storm in itself. And who knows what November and December may bring. This week, Paul Breitbarth and K Royal invited Stuart N. Brotman, author of Privacy's Perfect Storm: Digital Policy for Post-Pandemic Times.Brotman took the notion of the perfect storm as the basis for a book about privacy, data protection, the digital economy and the fight against COVID-19. The book contains a series of reflections on a wide range of issues, outlining the authors’ views and ideas on the way forward.  He just completed a term as a Fellow in the Science and Technology Innovation Program at the Woodrow Wilson International Center for Scholars in Washington D.C. The essays in his book sparked quite the conversation.Join us as we speak on a variety of topics - one of which immediately stood out: Why Discussing Digital Privacy Now Belongs at the Kitchen Table (on page 19), given Paul and K’s ideal for the Serious Privacy podcast to be those casual conversations one would have at Paul’s kitchen table, or K’s back porch.  But in addition, some essays grabbed attention to discuss, such as the one on digital trust being essential for data privacy protection and the one on millennials teaching grandparents about internet safety. We discussed so many topics - from public-private data sharing to password management. ResourcesPC Mag - Best Password Managers for 2020 https://www.pcmag.com/picks/the-best-password-managers The guy who invented rules for changing passwords apologizes https://www.wsj.com/articles/the-man-who-wrote-those-password-rules-has-a-new-tip-n3v-r-m1-d-1502124118  and / or https://www.nbcnews.com/tech/security/forget-everything-you-know-about-passwords-says-man-who-made-n790711 Social Media Twitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, @stuartnbrotmanInstagram @seriousprivacy
Wicked problems are those without simple answers. They are thorny, complex, multi-faceted issues. This episode of Serious Privacy by Paul Breitbarth and K Royal was pre-billed on social media as “talking anarchy” and “Serious Privacy-ing.”  In this episode, guests include Uber CPO and frustrated comedian Ruby Zefo, Godmother of Privacy Engineering Michelle Dennedy, and TrustArc’s General Counsel Hilary Wandall.  Given the breadth and depth of the experience combined across this guest list, the topics were broad-ranging and far-reaching. Join us as we delve into wicked problems and solutions addressing women in privacy, ethics, global privacy standards, social justice, and privacy engineering. In particular, we discuss our guests’ experiences in navigating these topics and how our guests themselves may have been on the front lines. In at least one area, our guest was the developer of what has now grown into a field within privacy in general. Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc,Instagram @seriousprivacy, @rubyzefo, @mdennedy, @hilarydatalawTagsSerious privacy, trustarc, privacy, GDPR, CCPA, data protection law, privacy engineering, social justice, smart devices, IoT, ethics, women in privacy
If 2020 was not bad enough already, we lost Ruth Bader Ginsburg on September 18, 2020. She was admired by many lawyers and legal scholars, not just in the United States - she was a legal giant, and a great advocate for equality for all. Paul Breitbarth and K Royal discuss the impact Justice Ginsburg had on the legal field and how she inspired respect and devotion.  Our homage goes beyond her legal decisions to remember her as the icon she was, and always will be.In addition, Paul and K touch on a few topics in privacy law, such as whether the US really will pass a federal privacy law and reconsideration of the actions taken towards Facebook in Ireland  Also, in the US, there is perhaps an overlooked part of US privacy, a final rule published by the Office of the National Coordinator which implements a portion of the 21st Century Cares Act, on Information Blocking - a rule that has quite a bit in common with the EU’s General Data Protection Regulation.Join us as we pay our respects to the late Ruth Bader Ginsburg, the second woman ever appointed to the US Supreme Court and one who blazed trails for equality in the US, followed by some frank conversation on some current privacy topics.ResourcesJustice Ruth Bader Ginsburg - picture of her clerksU.S. Federal Privacy Law Hearing 23 September: Revisiting the need for federal data privacy legislationJulie Brill, Maureen Ohlhausen, Jon Leibowitz, William Kovacic (all former FTC) and Xavier Becerra (CA A-G) Quotes from The Register:Julie Brill argued that not only will a company want to have the option to trade with Europe at some point, but that a stronger and clearer data privacy law across the US would be beneficial: it would enable companies to “engage more respectfully and increase trust in those companies.” It would increase competitiveness.Agreement that a patchwork of state laws needs to be avoided. Becerra: “Give us a playbook. But don't preempt smart, nimble privacy protections that let states meet the varying challenges coming at us.”WSJ Article: Irish DPC Schrems-II enforcement follow up:The West Wing - S01E09 - clip on YouTube on the SCOTUS privacy discussion (exact quote at 3’32)Nina Totenberg https://www.npr.org/2020/09/19/896733375/a-five-decade-long-friendship-that-began-with-a-phone-call?t=1600964652843 Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, Instagram @seriousprivacy
2020 is the gift that keeps on giving. In this episode, Paul Breitbarth and K Royal revisit some of the issues discussed on previous episodes, but with a guest who has a unique global perspective. Our guest today is an American in Brussels. He is the Deputy Chief Privacy Officer of the US-based pharmaceutical company Merck. Chris Foreman has practiced law in London, Washington DC, Istanbul, New York and Moscow, and is currently based in Brussels. Merck, or MSD as it is often known, has been an active player in the international corporate privacy community, and a big advocate for interoperability and company-wide compliance programs. They are one of the few companies that has both EU Binding Corporate Rules and APEC Cross-Border Privacy Rules, trying to ensure the best possible safeguards for international data transfers. There is even a published cross-walk between the two.Join us as we talk with Chris about his views on international data transfers. As expected, we will discuss the Schrems-II decision and its impact on data transfers, but we touch on many other topics as well that are integral to a global privacy program. These include the California Consumer Privacy Act (CCPA) and the ballot initiative, the California Privacy Rights Act (CPRA, Proposition 24), South Korea, Brazil (LGPD), clinical trials, and other twists to privacy law that we are starting to see.  ResourcesJD Robb https://jdrobb.com/ TrustArc Privacy Sheild Resources https://trustarc.com/trustarcs-privacy-shield-schrems-resource/ Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, Instagram @seriousprivacy
This past week in privacy law saw several unexpected developments. When this podcast started back in January, the intention was to record a series of conversations between K Royal and Paul Breitbarth with an occasional guest or recorded conference panel discussion. They would discuss what had happened in a week, place privacy and data protection developments around the world in context and provide insights based on their experience… And then COVID-19 happened, the podcast quickly became popular and guests became ubiquitous. On this episode, Paul and K return to their roots of covering privacy news and developments, because so much happened this past week or so. We’re in the middle of a privacy zone, with laws being lobbed all round us, guidance coming at us from all directions, and opinions shooting left and right - it’s like privacy officers need hazard pay. So much has happened in recent days, that we decided to just have the one-on-one conversation this week. You will hear about new European Data Protection Board (EDPB) guidance, next steps in the Schrems case and the fall-out from the Privacy Shield annulment, as well as on the latest actions from Brazil. Join us to catch up on the latest developments and to put them in context of current events.ResourcesRegister for TrustArc’s webinar on LGPD https://info.trustarc.com/WB-2020-09-16-LGPD_RegPage.html Wall Street Journal Article on DPC Ireland v. Facebookhttps://www.wsj.com/articles/ireland-to-order-facebook-to-stop-sending-user-data-to-u-s-11599671980Facebook Response to the DPC Ireland preliminary orderhttps://about.fb.com/news/2020/09/securing-the-long-term-stability-of-cross-border-data-flows/ NOYB Response to the DPC Ireland preliminary orderhttps://noyb.eu/en/dpc-actually-stopping-facebooks-eu-us-data-transfers-maybe-half-way EDPB Draft Guidelines on Controller/Processor https://edpb.europa.eu/our-work-tools/public-consultations-art-704/2020/guidelines-072020-concepts-controller-and-processor_en EDPB Draft Guidelines on Targeting Social Media Users https://edpb.europa.eu/our-work-tools/public-consultations-art-704/2020/guidelines-082020-targeting-social-media-users_en Brazil LGPD Legislative Trackerhttps://www.congressonacional.leg.br/materias/medidas-provisorias/-/mpv/141753TrustArc LGPD Bloghttps://trustarc.com/blog/2020/09/03/the-brazilian-lgpd-is-here-almost/ TrustArc Schrems-II Bloghttps://trustarc.com/blog/2020/09/09/schrems-ii-where-are-we-now/ Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, Instagram @seriousprivacy
Privacy professionals as cosplayers - maintaining a sense of identity away from the hectic life of a privacy professional or managing stress in a healthy direction?  In this episode of Serious Privacy, we move away a little from data protection and over to the broader right of privacy. The right to be left alone, or the right to ensure you can be whoever you want to be, without your choices coming back to haunt you for the rest of your life. Join Paul Breitbarth and K Royal as they talk about cosplay and the various underlying elements with two guests, Ralph O’Brien and Marie Penot - two European privacy professionals with their own love of cosplay. They discuss such topics as managing stress and staying true to oneself, which should always be a career consideration, but also making personal connections, pitching job proposals, and livening up training sessions. Resourceshttps://www.eff.org/press/releases/cosplayers-fight-online-anonymity-and-privacy-during-dragon-con https://www.shrm.org/hr-today/news/hr-news/pages/what-are-the-signs-of-burnout-and-how-can-supervisors-help-employees.aspx Social MediaTwitter: @privacypodcast, @EuroPaulB, @heartofprivacy, @trustarc, @penot_marie, @IGrobrienInstagram @seriousprivacyTagsSerious privacy, trustarc, privacy, cosplay, comicon, maleficent, 501st, star wars, disney, privacy professionals, stress management
Privacy is the hottest new job market for attorneys and non-attorneys. Even more so when you consider the full range of data protection jobs. A few weeks ago, we spoke to Jared Coseglia with TRU STaffing about recruiting for functions in privacy. In this episode we look at the other side. What is it like for someone to get started in privacy, not by sheer coincidence like K Royal and Paul Breitbarth did many years ago, but by deliberate choice? Where do you get this crazy idea that a privacy career might be fun, what steps do you take and what is it like to start in privacy and data protection in 2020?Our guest, Tom Besore, is an experienced Chicago-based lawyer, who identifies as Irish and American. In his own words, he has a long history in computers, electronics, radio and technology. In 2020, he shifted his primary interest to privacy and started executing on achieving that dream.Join us as we discuss why one would turn to privacy from a different career-focus and how to do so. We touched on the recent CISCO report: From Privacy to Profit: Achieving Positive Returns on Privacy Investments, the Age of Surveillance Capitalism by Shoshana Zuboff, the Marriott case in the UK, the Cambridge Analytica scandal , the first class action lawsuit in the Netherlands, and so many other notable privacy topics, including Intrusion by Design. As Tom says - success in this field takes passions, laser-focus, and the drive to niche opportunities.ResourcesFor the home cooks: a recipe for "bitterballen" (bitterballs)Privacy. So. Hot. Right. Now. by K Royal, Association of Corporate Counsel, DocketHow to get started in Privacy Engineering by IAPP
Now this story is all about how our lives got flipped - turned upside down. We’d like to take a minute, just sit right there, we’ll tell you all about the privacy laws down there.Today, we are traveling virtually to the sixth largest country in land area and in its honor, we are flipping parts of the show. We are upside down, since we are going Down Under. Since the beginning of the year, Paul Breitbarth and K Royal have mainly covered privacy developments in the United States, the broader Americas and in Europe. But the privacy community extends beyond the two Atlantic coasts. What is actually going on in Australia and New Zealand? What does the privacy landscape look like in the Asia Pacific region and what are the main differences with the laws we have become so accustomed to, like CCPA and GDPR. Our guest, Annelies Moens, is based in Sydney Australia, and was one of the co-founders of the IAPP in Australia and New Zealand, back in 2008. She worked for the Office of the Australian Information Commissioner, has held various roles in the private sector and now leads her own consultancy, Privcore.Join us as we discuss how the APAC region compares to the rest of the world, privacy law developments, and recent events in privacy law that might surprise you.  In particular, we discussed how the recent Schrems II decision out of Europe impacts activities in Australia and New Zealand, business exemptions for enforcement, and COVID-19 contact tracing. ResourcesAbout Annelies Moens moens@privcore.com​Managing Director, Privcore Senior Privacy Consultant, TrustArcPrivcore's submission to the ACCC's Digital Platform Inquiry's Final Report (talks about the domestic v worldwide penalty issue and other key points about changes):https://405698ed-c7e3-4c02-a27b-a1d0e6ad5028.filesusr.com/ugd/440bc4_9d39c2462dfa4bce86358d9b9f351cb5.pdfOne page overview of the upcoming changes to the Australian Privacy Act published through the Australian Institute of Company Directors:https://405698ed-c7e3-4c02-a27b-a1d0e6ad5028.filesusr.com/ugd/440bc4_8993a667249044d98e99597ec4642cce.pdfIn terms of changes to the New Zealand Privacy Act which come into effect on 1 Dec 2020 - the NZ Privacy Commissioner has released some useful small podcasts explaining the changes:https://www.privacy.org.nz/privacy-act-2020/resources/Twitter @TrustArc @PodcastPrivacy @euroPaulB @heartofprivacy Instagram @SeriousPrivacy
With all the recent changes in privacy laws, it seems like a whole new world. Or perhaps not. In this episode, we connect with Travis LeBlanc, a well-seasoned professional with insight into government actions to discuss recent privacy developments through the lens of past actions. He was the chief of the Federal Communications Commission’s (FCC) Enforcement Bureau in the Obama years, worked as senior adviser to former California Attorney General - and now Vice-Presidential nominee - Kamala D. Harris and as special assistant attorney general of California. Today, he is the vice chair of Cooley’s cyber, data and privacy practice, a role he combines with the membership of the Privacy and Civil Liberties Oversight Board of the United States.Join Paul Breitbarth and K Royal in this episode to discuss the changing world of privacy. Given the overlapping years, where Paul was with the Working Party 29 in Europe and Travis was with the FCC, Paul and Travis relived some of their shared experiences. But the conversation was not limited to regulator reminiscing. We discussed a variety of issues, from Schrems-II, the possibility of U.S. federal legislation on the horizon, and the CPRA,  which also led to social justice issues.ResourcesTrustArc Privacy Shield Ruling Resources https://trustarc.com/trustarcs-privacy-shield-schrems-resource/https://oag.ca.gov/news/press-releases/attorney-general-kamala-d-harris-launches-new-tool-help-consumers-report 
loading
Comments 
Download from Google Play
Download from App Store