Explore every episode of the podcast Serious Privacy
| Title | Pub. Date | Duration | |
|---|---|---|---|
| the Dog Days of Summer: a week in privacy | 21 Aug 2024 | 00:32:04 | |
On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal discuss recent developments in privacy and data protection laws across various regions, including legislative updates in Latin America, the Middle East, Israel, Malaysia, and the U.S. They also highlight enforcement actions in Texas against General Motors and tracking, privacy concerns around AI chatbots in Europe, and data breaches involving the Danish family court. The script includes a personal segment where K shares about privacy measures taken for abused women and children due to the generosity of John Shufeldt and NextCare Urgent Care. Further, they delve into ethical and legal issues surrounding AI, cyberattacks on the Polish anti-doping agency, and fake news on social media platforms. The episode wraps up with a discussion on youth privacy perceptions and a brief look at a class action lawsuit against Stability AI and Mid Journey for copyright violations. K also shares a book she participated in written by Adrienne Go and Olga Mack Product Counsel: Advise, Innovate, and Inspire. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| one Hot week in privacy | 10 Aug 2024 | 00:39:03 | |
On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal cover a hot week in privacy with the child safety bill which passed the US Senate (covered wonderfully by IAPP’s Cobun Zweifel-Keegan), the recent US Supreme Court decision in the Netchoice case, the historical duty of care, and the Texas settlement with Meta for $1.2B for biometrics violations. But wait - there is more - recent events, amendments, enforcements, and pacts - from EU, Nigeria, Malaysia and other nations. It may be a quiet summer elsewhere, but privacy is hotter than the heat waves! Tune in! Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| A week in Privacy - the scary side | 07 Jun 2024 | 00:34:56 | |
On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal cover a couple of weeks in privacy - on the scary side. Topics include updates on the global CBPRs and PRPs, NOYB launched a complaint against open AI with the austrian data protection authority and 11 complaints against META, Italy reinstates chatGPT, the EDPB chatGPT task force report, a lawsuit against General Motors for IOT, the U. S. Department of Commerce announced some new initiatives under the AI order for NIST, the FCC fined four major us wireless carriers $200 million for unlawfully sharing customers location data without consent, the Florida governor signed a bill mandating explicit disclaimers on political advertisement to ensuring transparency in AI used for political campaigns, the Dutch Data Protection Authority issued guidance against the web scraping, Australian officials announced an overhaul of their privacy act. Carly Kind, IAPP AI governance global happened in Brussels. the women in AI emerald de leeuw Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Chinese Dispatch - The State of Play of PIPL | 29 Jun 2022 | 00:52:46 | |
This episode of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal of Outschool we go back to China discussing the Personal Information Protection Law (PIPL). You will actually be listening to the audio of a recent webinar organised by TrustArc, which they hosted together with former colleague Yi Lu. PIPL applies to all organisations doing business in China or targeting people in China and has significant compliance consequences similar to GDPR. Five months after its implementation, PIPL is still a major concern for many organizations. What if there was a way to reduce your time to compliance with PIPL drastically by leveraging the privacy work you have already done? As always, if you have comments or questions, let us know - LinkedIn, Twitter @podcastprivacy @euroPaulB @heartofprivacy @trustArc and email seriousprivacy@trustarc.com. Please do like and write comments on your favorite podcast act so other professionals can find us easier. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| What do Internal Monologues and Republicans have in Common? Serious Privacy (a week in privacy with Paul and K) | 22 Jun 2022 | 00:34:45 | |
This episode of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal of Outschool meet to discuss some recent events in the privacy and data protection world, such as the proposed American Data Protection and Privacy Act, as the hearings, featuring comments presented from Caitriona Fitzgerald, Deputy Director of the Electronic Privacy Information Center (EPIC); David Brody, Managing Attorney, Digital Justice Initiative, Lawyers' Committee for Civil Rights Under Law; Bertram Lee, Senior Policy Counsel, Data Decision Making, and Artificial Intelligence, Future of Privacy Forum (FPF); Jolina Cuaresma, Senior Counsel, Privacy & Technology Policy Common Sense Media; John Miller, Senior Vice President of Policy and General Counsel, Information Technology Industry Council; Graham Dufault, Senior Director for Public Policy, ACT | The App Association; Doug Kantor, General Counsel, National Association of Convenience Stores; and Maureen K. Ohlhausen, Co-Chair, 21st Century Privacy Coalition. Tune in to hear about the ADPPA, as well a Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| So Intense: At the IAPP Data Protection Intensive | 15 Jun 2022 | 00:37:33 | |
This episode of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal of Outschool is a little different than the norm as the IAPP hosted its first Data Protection Intensive: Nederland 2022. Although K could not attend, she and Paul discussed a couple of substantive questions he could ask to [unsuspecting] participants. And those interviewees were quite knowledgeable. They comprise Bart Voorn, Helen Graham, Jose Belo, Zach Foote, Monika Tomczak, Vanessa van Kuilenburg, and Wanne Pemmelaar. As always, if you have comments or questions, let us know - LinkedIn, Twitter @podcastprivacy @euroPaulB @heartofprivacy @trustArc and email seriousprivacy@trustarc.com. Please do like and write comments on your favorite podcast act so other professionals can find us easier. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| The fourth leg of ESG: a Privacy Framework (with Paolo Balboni) | 09 Jun 2022 | 00:44:46 | |
This episode of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal of Outschool connect with Paolo Balboni, who is attached to Maastricht University’s European Centre on Privacy and Cybersecurity as Professor of Privacy, Cybersecurity, and IT Contract Law. Last March, researchers at Maastricht University published the first-ever complete Corporate Social Responsibility framework for data protection, aimed at improving privacy and security for a sustainable digital future. The framework translates theoretical ethical principles into tangible and practical guidelines for companies and organizations that process personal data. Next to his university role, Professor Balboni is one of the founders of ICT Legal Consulting, an Italo-Dutch law firm with offices around the world. He also has many other roles in privacy, including as the Chairman of the Data Protection Board of the European Patent Office. Join us as we discuss the framework, his career progression in privacy, and privacy as the fourth element in a successful ESG program. If you need help in justifying the work you do (or need to do), check out this research on ROI. As always, if you have comments or questions, let us know - LinkedIn, Twitter @podcastprivacy @euroPaulB @heartofprivacy @trustArc and email seriousprivacy@trustarc.com. Please do like and write comments on your favorite podcast act so other professionals can find us easily. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| All about those Borders + more: A week in privacy | 01 Jun 2022 | 00:37:18 | |
In this episode of Serious Privacy, recorded on the anniversary of the GDPR (watch the recent webinar), Paul Breitbarth of Catawiki and Dr. K Royal of Outschool catch up on the past week or so in privacy. What exciting things - or not so exciting things have happened. Most seem to be in the area of cross-border transfers. Join us as we discuss some history with the GDPR, with a light mention of Connecticut’s new privacy law, Quebec’s Bill 64, and People’s Republic of China’s PIPL (register for the upcoming webinar on PIPL compliance with Paul and Dr. K) We discuss whether the GDPR remains the gold standard of data protection laws, or one we want to inspire the others. We also discuss other related topics, such as the potential of the Global Cross Border Rules, based on the APECs Cross Border Privacy Rules, the EU-US thingy (the new agreement in principal, see recent webinar ), codes of conduct, and the Scope EU Cloud Code of Conduct specifically. For example, CloudFlare announced its adherence to the EU Cloud Code of COnduct and the rise in their stock. During this week, Paul missed the CPDP conference, including some of our friends - Emerald de Leeuw and Ralph O’Brien - along with the presentation by Professor Greenleaf Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Privacy: The Self-Fulfilling Prophecy (with Shay Sharon) | 25 May 2022 | 00:36:08 | |
In this episode of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal of Outschool take some time to review recent events in the privacy / data protection world. This week, this means they cover the Connecticut Act concerning Personal Data Privacy and Online Monitoring Act - the PDPOM… Paul has a cool name for it. Connecticut’s act passed on May 10, 2022 and takes effect July 1, 2023 - along with CPRA and Virginia on January 1, 2023; Colorado also on July 1, 2023; Utah on December 31, 2023 Please also see the recent state laws webinar from TrustArc and the state whitepapers. This leads into the Roe v. Wade US Supreme Court leaked draft decision and then on to Europe with a study conducted by the Radboud University in the Netherlands, imec-COSIC, KU Leuven (a Catholic research university in the city of Leuven, Belgium), and University of Lausanne in Switzerland. These researchers looked at thousands of websites and their “leaky forms.” Leaky forms are those that capture data before the individual submits it, so companies get a lot of data that they should not have, including passwords. This may not be purposeful, but it is concerning. The full paper is published here. As always, if you have comments or questions, let us know - LinkedIn, Twitter @podcastprivacy @euroPaulB @ Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| A week in privacy with Paul and K (CT, Roe v. Wade, and Leaky Data) | 18 May 2022 | 00:43:22 | |
In this episode of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal of Outschool take some time to review recent events in the privacy / data protection world. This week, this means they cover the Connecticut Act concerning Personal Data Privacy and Online Monitoring Act - the PDPOM… Paul has a cool name for it. Connecticut’s act passed on May 10, 2022 and takes effect July 1, 2023 - along with CPRA and Virginia on January 1, 2023; Colorado also on July 1, 2023; Utah on December 31, 2023 Please also see the recent state laws webinar from TrustArc and the state whitepapers. This leads into the Roe v. Wade US Supreme Court leaked draft decision and then on to Europe with a study conducted by the Radboud University in the Netherlands, imec-COSIC, KU Leuven (a Catholic research university in the city of Leuven, Belgium), and University of Lausanne in Switzerland. These researchers looked at thousands of websites and their “leaky forms.” Leaky forms are those that capture data before the individual submits it, so companies get a lot of data that they should not have, including passwords. This may not be purposeful, but it is concerning. The full paper is published here. As always, if you have comments or questions, let us know - LinkedIn, Twitter @podcastprivacy @euroPaulB @ Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Cybersecurity, Warfare, and Women (w Victoria Beckman) | 12 May 2022 | 00:37:43 | |
In this episode of Serious Privacy, Paul Breitbarth and Dr. K Royal connect with Victoria Beckman, the lead over Microsoft Digital Crimes Unit for the Americas and an award-winning woman in cybersecurity. Victoria is a former law student of K’s at the Sandra Day O’Connor College of Law at Arizona State University and they both wound up in privacy-related fields. Of course, Victoria’s route to her current role was quite indirect, including a background in engineering. We focus on a recent special report by Microsoft on the cyberwarfare being conducted in the Ukraine by Russia, aloing with Microsoft’s annual digital defense report, the last one issued in 2021. Join us as we discuss these hot topics, along with data protection basics, such as passwords (as also discussed by K and her husband Tim in episode 34 in season 2) and phishing attacks. As always, please feel free to reach out to us at seriousprivacy@trustarc.com or on LinkedIn for Serious Privacy and TrustArc (as well as Paul and Dr. K). You can reach us on Twitter @TrustArc @PodcastPrivacy @EuroPaulB and @HeartofPrivacy. Please also rate and review us in your favorite podcast app and share us with your friends. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Global Privacy Summit: IAPP with several snippets | 28 Apr 2022 | 00:26:47 | |
In this episode of Serious Privacy, Paul Breitbarth introduces an episode where Dr. K Royal caught up with several individuals at the IAPP Global Privacy Summit held in Washington DC at the Marriott Marquis. It was a truly wonderful event, the first Global privacy Summit since 2019, with thousands of privacy professionals in attendance. Attendees included professionals from all over the world, those with nonprofits, with private companies, with start-up companies, government representatives, in-house and outside firm attorneys, security professionals, regulators, and more! Join us to listen to snippets of conversation with some people you may know and some you may not. Featured in this episode are Trevor Hughes, CEO of the IAPP, Eduardo Ustaren of Hogan Lovells, David Cohen of IAB, Emil Ochotta with Google, Jörn Wittmann and Gabriela Mercuri with Scope Europe, and ShanShan Pa now with State Street. Although K Intended to include short snippets from some truly world class keynote speakers and some of the sessions that she attended, the sound quality just wasn't good enough to be able to add them. We're pretty sure the IAPP will include some recordings but if they don't - just know if you weren't there, you missed a really good conference. As always, please do rate and review us in your favorite podcast app - a Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Privacy in Africa - It's in Her Blood (with Teki Akuetteh) | 21 Apr 2022 | 00:51:22 | |
This episode of Serious Privacy, sponsored by TrustArc, heads south to Africa. Paul Breitbarth of Catawiki and Dr. K Royal of Outschool chat with Teki Akuetteh, the first Executive Director of the Ghana Data Protection Authority and current Chair of the Africa Digital Rights Hub. The conversation covered quite a bit of ground, starting with how privacy has developed in Africa, cybersecurity, and how enforcement has grown demonstrating the advance of privacy in Africa as a whole, although some nations are a little more ahead than others. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Episode 200: Join the Geeky Whistle Stop Tour (with Ralph and Marie) | 01 Jun 2024 | 00:43:33 | |
In this 200th episode of Serious Privacy, Paul Breitbarth and Dr. K Royal (our views are our own and do not reflect the views of our employers) are joined by honorary co-host Ralph O'Brien, as well as Marie Penot to celebrate 4,5 years of podcasting. The four look back on what surprised and disappointed them these past year, but also talk about some current developments, including a Cypriot investigation into P*rnhub's data protection practices, the UK Data Protection and Digital Information Bill being killed by a snap election, and the forthcoming Global Privacy Assembly in Jersey. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| The Mother of the Privacy Podcast (with Angelique Carson) | 13 Apr 2022 | 00:49:24 | |
On this episode of Serious Privacy, sponsored by TrustArc, Paul Breitbarth and K Royal some with Angelique Carson. Angelique is currently with TerraTrue but Paul and K know her best from when she was with the IAPP, International Association of Privacy Professionals. In addition, K and Angelique are attending the IAPP's Global Privacy Summit in DC April 11 - 13. This is the first GPS in three years and it's sure to make history. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Celebrating 100 episodes and a privacy thingy (w Chris Babel, Hilary Wandall & Immaculate Kassait) | 06 Apr 2022 | 00:55:49 | |
In the 100th episode of Serious Privacy, Paul Breitbarth and Dr. K Royal connect with two of the biggest names in the privacy field, Chris Babel, the CEO of TrustArc and Hilary Wandall, Chief Compliance Officer at Dun and Bradstreet. Both Chris and Hilary were instrumental in launching Serious Privacy and critical to its success. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| A week of privacy sweets with Paul and K | 30 Mar 2022 | 00:35:20 | |
On this episode of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal of Outschool review what might seem to be small events in privacy developments, but are really robust once reviewed. They touch on a spotify case in Barcelona, the Spanish Data Protection Commissioner search on hold, and events in Belgium. In addition, on the US side, a DC judge ruled that Mark Zuckerberg could not be added to the Cambridge Analytica case personally. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| When Kirk Nahra Speaks... we listen! | 22 Mar 2022 | 00:41:37 | |
In this episode of Serious Privacy, Paul Breitbarth and K Royal catch up with the renowned Kirk Nahra, co-chair of both the Big Data Practice and the Cybersecurity and Privacy Practice for WilmerHale. K and Kirk have known each other for years - mostly related to US healthcare law, long before Kirk won the IAPP Vanguard Award in 2021. They discuss the US Health Insurance Portability and Accountabilit Act of 1996, along with its subsequent amendments, known as HIPAA. But they also discuss information blocking and protecting COVID-19 data in this current global environment, and the reputation of US privacy laws. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| A Strange Week: On Utah and Ukraine | 17 Mar 2022 | 00:39:27 | |
We live in strange times that often remind us how important it is to live our lives in freedom and to enjoy our fundamental rights. This week on Serious Privacy, Paul Breitbarth and K Royal talk about the war in Ukraine, but also about a lot of data protection related developments around the world. Topics include the new privacy law that is awaiting the Governor’s signature in Utah, proposed changes to the Budapest Convention on Cybercrime and the response of the European Data Protection Board to it, new guidance on using codes of conduct to transfer personal data out of Europe, getting started in a new data protection role and more. As always, please feel free to share your thoughts with us. Follow us on LinkedIn as Serious Privacy and on Twitter @podcastprivacy @EuroPaulB and @HeartofPrivacy. Resources
Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Of DPIAs and Negotiations - Dealing with Big Tech (with Sjoera Nas) | 10 Mar 2022 | 00:44:03 | |
This week on Serious Privacy, Paul Breitbarth and K Royal speak with Sjoera Nas. Sjoera is a long time privacy professional and privacy activist. She became involved with digital rights in the late 1990s and early 2000s, while working for the Dutch internet service provider XS4all, and later for civil rights group Bits of Freedom. But Sjoera is probably best known for her work at the Dutch Data Protection Authority, where she took the lead within the so-called Internet Team, leading investigations into anything that was happening online, from cookies and trackers, to interactive television, search engines, and picking long fights with ICANN on their WhoIs register and telco’s on data retention. Since four years, Sjoera is a consultant for Privacy Company, still based out of the Netherlands, but doing work with global impact. Together with her team, she writes extensive data protection impact assessments on a range of cloud services, like Office365, Google Workspace and Microsoft Sharepoint and OneDrive. Her customer: the Dutch government and higher education system, which surely helps when it comes to negotiating risk mitigation measures. During this episode, we talk at length about conducting technical deep dive DPIAs, that everyone can benefit from, and negotiating risk mitigating measures with Big Tech. But we also cover international transfers (remember those?) and Google Analytics alternatives. As always, please feel free to share your thoughts with us - therewill be a year end show on the best episodes. Get your vote counted! Follow us on LinkedIn as Serious Privacy and on Twitter @podcastprivacy @EuroPaulB and @HeartofPrivacy. Resources The blog posts linked below contain the summaries of each of the DPIAs referred to during the podcast. Via the blog, you will also find the full DPIA document, including annexes, to read. Even though they are lengthy, we highly recommend reading and using them if your company uses any of these products. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| A week in privacy with Paul and K | 03 Mar 2022 | 00:39:06 | |
In this week of Serious Privacy brought to you by TrustArc, Paul Breitbarth and K Royal share some news, discuss current events, and review both recent privacy developments and upcoming guests for the show. Topics covered include decisions involving tech companies, such as Facebook, Google, and Grindr, as well as general information on assessing risks. Join us as we discuss privacy from our perspective in the midst of a war in Europe. Our hearts and prayers go out to those impacted, most especially the people of Ukraine. Please also register for the upcoming TrustArc webinars, the next one on March 8 on COVID-19, Two Years Later – Still A Data Privacy Challenge. Click to register here. Also, if you are wondering if tracking privacy efforts using spreadsheets is sufficient, check out this blog. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| The Ban of Cookie Banners? (With Anne-Charlotte Recker and Julian Deckers) | 16 Feb 2022 | 00:28:26 | |
In this week of Serious Privacy by TrustArc, K Royal and Paul Breitbarth have a conversation with Anne-Charlotte Recker and Julian Deckers of the Belgian Data Protection Authority. Both work for the DPAs Litigation Chamber, which on 2 February 2022 released their long-awaited decision on the legality of the Transparency and Consent Framework (TCF) developed by the Interactive Advertising Bureau (IAB). The decision will likely have a significant impact on the future of cookie banners. Not only did the Belgian DPA find that the current banners following the TCF model are not transparent enough, they also use legal bases for many data collections that are not possible. Join us as Anne-Charlotte and Julian explain all about the background of the procedure, the decision that was made and what to expect next. They also explain the concept of Real-Time Bidding that is used in online advertising (the PhD Thesis of dr. Rob van Eijk on this topic can be found here). Since our recording, the Dutch DPA has indicated to various media outlets that the use of the IAB TCF in the Netherlands should be ended effective immediately, thus going a step further than the Belgian DPA. Thank you for listening to another episode of Serious Privacy. If you like our series, please do tell your friends and colleagues about us, and rate and review our episodes in your favourite podcast app or on your favourite podcast platform. Should you have any questions or suggestions, please reach out to us via seriousprivacy@trustarc.com or info@seriousprivacy.eu, or via Twitter at @podcastprivacy. You find us on LinkedIn as Serious Privacy. You will find On Twitter, look for @TrustArc, @heartofprivacy, and @EuroPaulB. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| The Privacy Man, Myths, and Legends: Marty Abrams | 10 Feb 2022 | 00:37:03 | |
In this week of Serious Privacy by TrustArc, K Royal and Paul Breitbarth catch up with one of the oldest and most respected names in privacy, Marty Abrams, the Executive Director and Chief Strategist of the Information Accountability Foundation. Marty has 35 years of experience as an information and consumer policy innovator. Multi-stakeholder collaboration has been a key for him in developing practical solutions to dilemmas in information policy. The IAF has among other things prepared reports on Trustworthy People Beneficial Data Activities and on Fair and Ethical Data Processing, as well as drafted model privacy legislation for countries, including the United States, around the world. Join us as we discuss the United Kingdom and their recent activities in law, AI, such as training data for machine learning, and legitimate interest for advertising data. The IAF responded to the call for consultation. Marty also shared his thoughts on whether the GDPR, as it currently stands, can last 20 years. Other topics include cross-border transfers of data, government transparency, and model legislation. Thank you for listening to another episode of Serious Privacy. If you like our series, please do tell your friends and colleagues about us, and rate and review our episodes in your favorite podcast app or on your favourite podcast platform. Should you have any questions or suggestions, please reach out to us via seriousprivacy@trustarc.com or info@seriousprivacy.eu, or via Twitter at @podcastprivacy. You find us on LinkedIn as Serious Privacy. You will find On Twitter, look for @TrustArc, @heartofprivacy, and @EuroPaulB. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| DPD: Privia Pursuit - Launching Season 3 | 28 Jan 2022 | 00:40:37 | |
On 28 January 1981, the Council of Europe opened up the Convention 108, the world’s first globally binding instrument on the protection of personal data. Since 2007, the privacy community celebrates International Data Protection Day (Data Privacy Day). For #SeriousPrivacy, it is our season launch. K Royal and Paul Breitbarth talk about many of the recent developments in data protection and we play a new game: Privia Pursuit. Let us know if you think it has potential. Join them for a broad discussion that involves TrustArc’s Webinar on India, Saudi Arabia data protection legislation, China’s PIPL, Quebec Bill 64 ( Serious Privacy episode with Constantine Karbaliotis and Jennifer Stoddart), US state laws (please see TrustArc’s paper on US State legislation), and Google analytics (see Dutch DPA’s Google Analytics guidance (in Dutch), Austria DPA’s Google Analytics decision, EDPS Google Analytics decision, Guernsey DPA, and Danish DPA). We also touch on the Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| The Healthiest Data Show on Earth (with Irith Kist) | 24 May 2024 | 00:43:32 | |
On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal (our views are our own and do not reflect the views of our employers) connect with Irith Kist, the Data Protection Officer at the Netherlands Cancer Institute, also a member of the Data Protection Advisory Commission of the City of Amsterdam. However, she is also a health data researcher herself, and on the 5th of June, she will defend her dissertation at Leiden University called A Fair Balance. This is a topic we love to discuss – health data and how sharing it is important for the advancement of medicine and health treatment, but the disparities on how data is treated globally is not ideal for research purposes. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| The Final Countdown with the Best | 29 Dec 2021 | 00:46:12 | |
This week on Serious Privacy, Paul Breitbarth and K Royal say goodbye to season 2 of Serious Privacy and look forward to season 3. 2021 might be a year that many of us actually would like to forget but for the privacy community, it was an exciting year and a lot of good things have happened. We have new laws, new guidance, more enforcement and court decisions, and a continuously expanding field of privacy professionals. The podcast continued to grow - this is the 91st episode and well over 50,000 downloads to date - and received wide recognition, including from the master of the privacy podcast directory Jeff Jockisch! A few weeks ago, you already heard predictions from lots of IAPP Brussels visitors for 2022. Today, you’ll hear ours. Will they come true? Do you agree? We had amazing guests on this season and our first season. It is difficult to choose which ones to feature in this episode. Some episodes are chosen by the listeners, so those are easy, but the others - not so easy at all. You will hear select clips from Helen Dixon about international investigations and dealing with criticism, Romain Robert with noyb (about enforcement taking time), tracking and dark patterns, from episode 36 (Jocelyn Paulley, Partner at Gowling WLG in London and Lindsey Schultz, Senior Counsel at Global Privacy for Visa), Eric Cole (cybersecurity and ethical hackers - episode relevant again because of Log4Shell), and Emerald de Leeuw (recommendation for Paul to get started) - along with information on PIPL and SCCs. As always, please feel free to share your thoughts with us - therewill be a year end show on the best episodes. Get your vote counted! Follow us on LinkedIn as Serious Privacy and on Twitter @podcastprivacy @EuroPaulB and @HeartofPrivacy. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| The Door is Always Open: A week in Privacy with Paul and K | 16 Dec 2021 | 00:42:14 | |
This week on Serious Privacy, Paul Breitbarth and K Royal take some time to review recent events or developments in privacy and data protection. With little happening in the U.S. (where is Ohio’s privacy law?), the focus is more on Europe and India. K and Paul discuss the European Data Protection Board’s recent guidance on international transfers, the new decision by the Wiesbaden court (in Hesse, Germany) on cookies and the U.S., and the highest fine to date in the Netherlands. Join K and Paul as they explore what the U.S. Cloud Act has to do with cookies. It’s not really clear, but more information has come with the publishing of the interim order. And lastly, there is news to share on a personal level. Tune in to find out. As always, please feel free to share your thoughts with us - therewill be a year end show on the best episodes. Get your vote counted! Follow us on LinkedIn as Serious Privacy and on Twitter @podcastprivacy @EuroPaulB and @HeartofPrivacy. Resources Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Rise Up! Privacy Tech is Here to Stay (Lourdes Turrecha) | 10 Dec 2021 | 00:38:33 | |
This week on Serious Privacy, Paul Breitbarth and K Royal speak with Lourdes Turrecha. Where a year of five ago many companies could still run their data protection and privacy compliance programs with email, spreadsheets and word files, today’s reality is completely different. Accountability, documentation and reporting requirements are much more detailed and widespread than they were before. Privacy technology is on the rise, and we sure know something about that at TrustArc! But privacy tech is not just about privacy management - it is also about privacy enhancing technologies, smarter processing technology and improved data security. Our guest this week knows all about this. Lourdes is the Founder & CEO of PIX LLC, an innovative privacy firm in Silicon Valley, and the Founder and Chief Privacy Tech Evangelist of The Rise of Privacy Tech (TROPT), a movement that brings together privacy innovators, investors, experts, and evangelists to further privacy innovation. She is also Privacy Tech & Law Fellow and Adjunct Professor of Privacy Law at Santa Clara University School of Law. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Resources
Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Predictions, Worries, and Wisdom from IAPP Brussels | 02 Dec 2021 | 00:38:45 | |
This week on Serious Privacy, Paul Breitbarth and K Royal take to the streets, so to speak, at the IAPP global conference in Brussels. Well, Paul did and K benefitted. Join us as we hear the thoughts, predictions, and worries of fabulous privacy professionals. [Paul relayed the comments that he received - it was humbling & heartwarming, so thank you! As much as you appreciate us, we return the respect tenfold.] A big thank you to all of our guests for this episode:
Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Dr. K: Privacy Compliance in US Universities | 24 Nov 2021 | 00:40:36 | |
This week on Serious Privacy, Paul Breitbarth welcomes K Royal, the recently-approved PhD graduand (yes, it’s a word) fresh from her dissertation defense on Privacy Complaince in US Universities. Many of our listeners likely participated in the nearly-anonymous Delphi Method part of her research, where privacy professionals around the world answered a series of questions to determine critical parts about privacy in the university setting. These included triggers, program elements, and risk factors. Her PhD is in public affairs, a fitting match for privacy law, from the University of Texas at Dallas, the School of Economic, Political, and Policy Sciences. Join us as we discuss the substance of privacy law at US universities, some common misperceptions, but also the difference in the PhD process between the US and Europe. Some of your favorite topics come up, such as CCPA, GDPR, and HIPAA. Also, her research involves the complexity of managing privacy law in a complex environment, bringing in Complexity Theory as a framework. Complex Adaptive Systems was used in terms of privacy law by Zhang and Schmidt when considering China’s privacy law back in 2015 in their paper Thinking of data protection law's subject matter as a complex adaptive system: A heuristic display. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Oh Canada, you, too? About Quebec's new law (Jenifer Stoddart and Constantine Karbaliotis) | 17 Nov 2021 | 00:39:23 | |
This week on Serious Privacy, Paul Breitbarth and K Royal jump back across the ocean to North America. While everyone is focused on the Chinese Personal Information Protection Law that was passed on August 20 and went into effect November 1, 2021, Quebec quietly passed Bill 64, (C-11) “An Act to modernize legislative provisions as regards the protection of personal information.” It received assent on September 22, 2021, with a majority of its provisions coming into force over the next two years. Joining the podcast today are two experts in Canadian privacy law, Jennifer Stoddart and Constantine Karbaliotis. Jennifer was the Privacy Commissioner of Canada from 2003 to 2013 and previously served as the Chair of the Commission d'accès à l'information du Québec from 2000 to 2003 and has also held positions on the Human Rights Commissions of Canada and Québec. Constantine is likewise no slacker when it comes to privacy law, having nearly 20 years experience in both the private and public sector, helping companies comply with complex privacy laws from US, Canada, and the EU. Join us as we discuss the ins and outs of the new Quebec law, the complications you might see, the necessary steps you need to take to be compliant. In the conversation, we will also discuss some of the nuances with integrasting privacy programs and how GDPR impacts Canadian activities. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Privacy is Messy: a Kitchen Table Conversation (Paul and K) | 04 Nov 2021 | 00:47:37 | |
What does a PhD dissertation, privacy books, the color of orange, and biometric legislation have in common? No, this is not some lame joke, but there is one of those in the episode. This week on Serious Privacy, Paul Breitbarth and K Royal present one of their back porch / kitchen table conversations. The episode may be slightly messy. It might be slightly longer than you are used to, but a lot of updates are covered since it's been so long since one of these episodes given all the developments in privacy law. In this episode, Paul and K catch up on various topics, such as those listed above, but also a brief look into some of the upcoming episodes, such as the new law out of Quebec (more on that in the next episode) and the PIPL webinar on November 9, 2021. Be sure to catch that. In addition, please keep in mind that TrustArc has lots of resources for you - most are available on the PIPL microsite https://trustarc.com/china-pipl/.They also discussed K’s brief experience at the IAPP PSR 2021 in San Diego, CCPA developments, and enforcement actions. Join us for Paul’s reading recommendations for two great books: the first one is part of the Future of Privacy Forum's book club this month - Privacy is Hard and seven other myths by Jaap-Henk Hoepman. The second one is There is a War Going On But No One Can See It by Huib Modderkolk. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Trick or Treat? PIPL is Scary (with Graham Webster) | 28 Oct 2021 | 00:45:45 | |
This week on Serious Privacy, Paul Breitbarth and K Royal revisit the Chinese Personal Information Protection Law that goes into effect just a few days after publication of this episode. K and I spoke about this law already in episode 30 of this season, dated 31 August, as well as during our webinar on 15 September. However, questions keep flooding in, so we decided to record a follow up episode. The guidance coming out of China is still limited, although it seems the Cyberspace Administration of China, their main regulator, is starting to publish some explanatory documents. Today, we are joined by Graham Webster. Graham is a Research Scholar at the Stanford Cyber Policy Center, as well as Editor in Chief of the university’s DigiChina website, a great resource providing lots of translations of China’s digital laws and policy documents. He is an expert on issues at the intersection of U.S.–China relations and advanced technology, and we are very happy he is joining us today. In addition, please keep in mind that TrustArc has lots of resources for you - most are available on the PIPL microsite https://trustarc.com/china-pipl/ and include the previous webinar, a whitepaper, FAQs, the prior podcast and other valuable information. PLUS - the next webinar on Novem Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Monster Cookies: Privacy Issues in Advertising | 20 Oct 2021 | 00:36:01 | |
In this episode of Serious Privacy, Paul Breitbarth and K Royal connect with Jocelyn Paulley, Partner at Gowling WLG in London and Lindsey Schultz, Senior Counsel at Global Privacy for Visa. This episode is a preview of a session that Jocelyn, Lindsey, and K are presenting on along with Chris Oates, a partner at Gowling WLG in Toronto on Privacy Compliance in the AdTech Industry at the Association of Corporate Counsel's Annual meeting of 2021. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| FISA, so hot right now (with Caroline Lynch) | 06 Oct 2021 | 00:37:29 | |
In this episode of Serious Privacy, Paul Breitbarth and K Royal hosted Carolin Lynch, the founder and owner of Copper Hill Strategies, has fifteen years of experience on the U.S. Capitol Hill, including a decade with the House Judiciary Committee where she served for eight years as the Chief Counsel of the Subcommittee on Crime, Terrorism, Homeland Security, and Investigations. As Chief Counsel, Caroline was at the forefront of developing some of the most high-profile privacy, cybersecurity, national security, and criminal laws of the 21st Century. She authored dozens of pieces of legislation and developed strategies to successfully shepherd those bills through Congress. Caroline is also a member of the Arizona Advisory Committee of the U.S. Global Leadership Coalition. The topic? U.S. government surveillance activities. Join us as we discuss this sensitive topic that underpins the invalidation of the EU-US Privacy Shield and is the root problem of the infamous Schrems II decision by the Court of Justice of the European Union in July 2020. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| A holy week in privacy | 17 May 2024 | 00:39:13 | |
On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal discuss a holy week in privacy where the V’s took front page - the Vatican issued a privacy decree and Vermont is trying to pass a strong privacy law and a coalition of state Attorneys General signed a letter imploring Congress not to preempt their privacy laws. In addition, CO AI bill is in front of the governor, Maryland passed a kids code, Google and Apple is hosting their annual developers conference, the U.S. Senate Bipartisan AI Working Group released their roadmap, the spring conference of the European Data Protection Authorities in Latvia, and updates to the Cyber Security agency of Singapore, the CSA. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| 42 is the answer: Privacy at Home (with Tim Foley) | 29 Sep 2021 | 00:48:04 | |
This week on Serious Privacy, K Royal presents her vacation episode. You’ve had to wait for it a little while, because of all the recent news and developments, but here it is: privacy at home. K has a long conversation with her husband, Tim Foley, about how living with a privacy professional has influenced their life together, as well as the education of K’s children. Furthermore, they talk about passwords, movies and series that involve privacy and much more. Oh, and we have some special four legged guests joining the conversation every now and then. That’s what you get when recording from home... As a reminder, a few weeks ago we released Paul’s vacation episode, a conversation with the DPO of the International Committee of the Red Cross. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Resources
Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Privacy Open Market: Consumers Controlling Data (Markus Lampinen) | 22 Sep 2021 | 00:43:17 | |
In this episode of Serious Privacy, Paul Breitbarth and K Royal discuss another fascinating privacy enhancing technology (PET) where individuals control their personal data. Yes, individuals control it. We met with Markus Lampinen, the co-founder and CEO of Prifina, which focuses on building an open data market, where individuals gain value from their data and developers get democratized data access. Developers are able to work with large amounts of data, such as that from personal wearable devices, without storing the actual data themselves. That is possible, because all data would be stored in private, personal data clouds owned by individuals. This approach, or similar, has been discussed for years. Can it really work, with only local processing being available? Is privacy an open-market? Is it too late to reclaim our privacy? Markus will be able to tell us all about this - and more.
As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Quite Magical: All About NOYB (with Romain Robert) | 15 Sep 2021 | 00:47:26 | |
On this week of Serious Privacy, Paul Breitbarth and K Royal connect with Romain Robert, is the program director and a senior lawyer for noyb, actively participating in their research and litigation strategy. Romain is also a member of the litigation chamber of the Belgian Data Protection Authority and previously worked as legal advisor for both the Belgian DPA and European Data Protection Supervisor. The name Max Schrems should be familiar. And also noyb - an acronym for None Of Your Business - probably sounds familiar. Noyb is the consumer rights group founded by Max Schrems. Based in Vienna, this data protection watchdog likes to put major topics on the plate of the data protection authorities. From forced consent to shady cookie banners, and from advertising in dating apps to international transfers. Learn what noyb is - and what it is not.(They are also hiring…) Join us as we discuss the noyb cookie banner project, membership in this entity, and several key enforcement actions, such as locatemyfamily.com and Rocketreach. We also touch on the class action case from The Privacy Collective, and the Protonmail case order. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Evil Bots Begone: Anonymity via SSO | 08 Sep 2021 | 00:38:53 | |
In this episode of Serious Privacy, Paul Breitbarth and K Royal meet up with humanID, a non-profit and open source project, supported by Mozilla and Harvard University. Looking at their website, this is a great example of privacy by design and PET (privacy enhancing technology). Our guests, Bastien Purrer and Namik Muduroglu, are working on a solution they claim offers “an anonymous, bot-resistant authentication for safer online communities.” Why? So people can engage in open, honest debate on topics of their choice, free from the influence of bots or people with multiple accounts. Driven by the ideals of a free society - one person, one vote - Human ID seeks to put people on equal footing. This also serves to allow people to debate without perhaps impacting their jobs. Human ID is a start-up, so they are new and staffed entirely by volunteers at this point. Their SSO capability verifies and anonymizes users. Listen and then let us know what you think. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Spicy Privacy: Understanding the China PIPL | 31 Aug 2021 | 00:37:54 | |
On this week of Serious Privacy, Paul Breitbarth and K Royal discuss the new China Personal Information Protection Law (PIPL) that was adopted on 20 August. This new omnibus data protection law will enter into force on 1 November 2021, without a transition period to comply. 73 days between adoption and entry into force is a very short deadline for compliance, especially for a wide-ranging and complex law such as the PIPL. Although many details remain unclear for the time being, during this week’s episode, your hosts will try to guide you through the main characteristics of the new Chinese data protection law. TrustArc will soon make further resources, including a white paper, available via a special microsite at TrustArc.com (select Solutions > Solutions by Regulations > PIPL Compliance Solutions). We also welcome any specific questions you may have on the China PIPL for a future episode of Serious Privacy. Please note that K and Paul recorded this a week before publishing, so there are quite a few items that have since been researched and nuanced excellently outside this episode. In the meantime, we can already refer you to the following blogs: A webinar will be announced shortly. The registration link will become available here: https://trustarc.com/resource_types/webinars/. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Kicking SaaS (with Jennee Devore and Rosemary Kuperberg) | 25 Aug 2021 | 00:37:48 | |
Gone are the days when you had to line up at a physical store to purchase a set of disks with the latest software. Nowadays, you just go to an online app store and download what you need, or even easier: just subscribe via a website and start using the software in your computer browser: Software as a Service, or SaaS. And that is exactly what Paul and K are talking about today. K will soon be speaking on a panel for the Association of Corporate Counsel 2021 Annual Meeting, together with other in-house counsels like Jennee Devore and Rosemary Kuperberg. The topic is "The Fine Art of Kicking SaaS". Given the scope of this large topic, the speakers will not be able to cover everything during their presentation, but the combination of expertise of this group with their extraordinary hands-on experience seemed a natural fit for the podcast. Certainly, we will not cover the webinar materials per se, but have more of an open conversation about SaaS services, how they've grown, and how they have been impacted by recent events. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Privacy does not take vacations - Just another week in privacy | 18 Aug 2021 | 00:41:32 | |
On this week of #SeriousPrivacy, Paul Breitbarth and K Royal discuss the summer news. From a major GDPR fine (CNIL, WSJ, LQDN), to a tech company planning to monitor smartphones for child pornography (WaPo, IAPP), and from CCPA enforcement in California to cookie consent banner complaints (noyb), it is all discussed during this episode. If you want to stay up-to-date on a daily basis of all the privacy news and its implications for global data protection compliance, why not take a look at TrustArc’s suite of Nymity products dedicated to privacy knowledge? Also referenced in this episode:
Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Inside the Red Cross: Privacy in Humanitarian Action (Massimo Marelli) | 11 Aug 2021 | 00:33:58 | |
This week, #SeriousPrivacy is in summer mode, with a special episode from the borders of Lake Geneva in Switzerland. Paul Breitbarth had the opportunity to speak to Massimo Marelli, Head of the Data Protection Office of the International Committee of the Red Cross and the Red Crescent (ICRC). Massimo is one of the authors of the Handbook on data protection in humanitarian action, and leading the various efforts of the ICRC to meet data protection standards both at headquarters and in the field. K Royal provides a short introduction explaining a little about the definition of "International organization" in Article 4 of the GDPR - "‘international organisation’ means an organisation and its subordinate bodies governed by public international law, or any other body which is set up by, or on the basis of, an agreement between two or more countries." As promised here is a list of international organizations. - As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Leaping the DPO divide: All about DPOaaS (Tash Whitaker) | 04 Aug 2021 | 00:38:27 | |
On this week of #SeriousPrivacy, Paul Breitbarth and K Royal meet up with Tash Whitaker, who is an outsourced DPO as a service. Not all organizations have the capability to organise the DPO role in house. Maybe they are too small, or they are just lacking the right people or qualifications to take on the role. For those companies, the outsourced DPO is a great option to consider. A year after the entry into force of GDPR, the IAPP estimated that already some 500.000 organisations has appointed and registered a data protection officer, and that number has only grown since. And Europe is of course not the only region in the world that knows the mandatory requirement to appoint a DPO. And then we are not even talking about the voluntary appointment of a DPO, in order to ensure that organisations have their data processing operations under control. Join us as we discuss challenges and surprises in an outsourced role of DPO, helpful both for companies who realize they need a DPO but not sure how to obtain one and for those privacy professionals thinking of making the leap off the corporate bridge. And always, the solution for a successful internal or external DPO is the TrustArc Platform - we don't talk about products much in the podcast, so please do contact sales@trustarc.com for information on our solutions - especially Privacy Central! As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| DIY Privacy: Lighting the way for new privacy officers (Emerald de Leeuw) | 21 Jul 2021 | 00:45:21 | |
On this week of #SeriousPrivacy, Paul Breitbarth and K Royal met with Emerald de Leeuw, Global Head of Privacy at Logitech. She has a wealth of experience in the tech markets, being an entrepreneur, and a high-level executive in a global and male-dominated field. In this episode, we want to leverage her experience in coming into a company and what do you focus on first? Do you do a risk assessment, meet the key players, review the policies, what? Where do you start? Along the way, we also touch on some of the current topics in privacy, cybersecurity, and data protection. Other topics included technology and its advances as well as how COVID has impacted the way the privacy office works. Do we need to be in person? Are we equipeed to work remotely? What are we missing if we don’t have water cooler conversations? Join us as we discuss this and more: what should new privacy officers do when they start a new job? What is key to your success? And a little about DIY home projects and West Wing. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-depth discussion. Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| One Hot Week in Privacy | 10 May 2024 | 00:35:56 | |
On this week of Serious Privacy, Paul Breitbarth of Catawiki and Dr. K Royal discuss a hot week in privacy! Topics include the amendment of Colorado’s privacy act to include protecting children, CT’s AI bill did not pass, but the TikTok bill was rolled not a foreign aid bill. ByteDance is ordered to divest themselves of TikTok by January 19, 2025 with the allowance for a 90 days extension. But Bytedance has already filed a suit in the DC Court of Appeals and no matter what the outcome is, it will likely be appealed to the US Supreme Court - so regardless of constitutional arguments, it likely won’t see action as long as it moves through the court system. Germany appointed a new data protection commissioner. We also discussed Global CBPRs and BCRs - along with guidance from the CNIL on BCRs. There was developments about the EU Council approved a protocol for the freeflow of data in Japan and in Kenya, there was also a big privacy event because the Pan African Network of Data Protection Authorities held their annual general meeting and as part of that event Kenya's cabinet Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Fast Privacy: Updates and Fan Questions | 14 Jul 2021 | 00:40:59 | |
On this week of #SeriousPrivacy, Paul Breitbarth and K Royal covered a broad range of privacy developments along with responding to questions from listeners. New developments includ the new Colorado Privacy Act, SB21-190. Signed by Governor Jared Polis on July 7, it is now the third state omnibus privacy law in the US, with Virginia having passed the Consumer Data Protection Act (CDPA) earlier this year and of course, the Calfornia Consumer Privacy Act (CCPA). We have a 4 part series on the Colorado Privacy Act. We also did a podcast on it a little while back. In this episode, we also discussed the anniversary of Schrems II, the ongoing efforts to establish a Privacy Shield replacement, international data transfers, and GDPR validation (TrustArc has you covered on both of the latter two). And during the episode, there are references to guidance on Codes of Conduct that has now come out by the European Data Protection Board (we'll get you more information!) or in relation to US state laws, Ohio just had its privacy bill introduced. Privacy things happen quickly. Join us as we also discuss some basic topics such as business and publicly available personal information (the difference between Europe and US), interacting with individuals (who are not controllers as noted in EDPB guidance), EU data centers, and UK surveillance. Some of the items were driven by fan questions, so please keep sending them in, such as on the LinkedIn page for Serious Privacy. As always, if you have any questions or Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Of Tigers and Laws: UK Adequacy Assessed - with Ralph O'Brien | 07 Jul 2021 | 00:42:35 | |
On 28 June 2021, the European Commission announced it has approved two adequacy decisions for the United Kingdom (UK). With these decisions, one under the General Data Protection Regulations (GDPR) and one under the European law enforcement directive, the Commission confirms the UK offers a level of data protection that is essentially equivalent to that in the European Union (EU). With this hurdle out of the way, personal data can continue to flow freely from the EU to the UK, without the need for additional safeguards or regulator approval. The free flow of data in the other direction, from the UK to the EU, had already been confirmed by the British government at the time the UK ceased being a member of the EU. But will the UK adequacy decisions stand the test of time? Not only do they expire automatically after four years, but the opponents are also sharpening their knives for a challenge in court. And the UK Government seems eager to drop the memory of the GDPR, and to replace the UK GDPR with a more trade and business friendly data protection law. This week, Paul Breitbarth and K Royal discuss the details of the UK adequacy decisions and the future of data protection law in Britain with our own UK expert Ralph O'Brien.
Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||
| Impatiently Awaiting the Colorado Privacy Act | 30 Jun 2021 | 00:29:55 | |
On this week of #SeriousPrivacy, Paul Breitbarth and K Royal discuss the potential new law for Colorado, the Colorado Privacy Act, SB21-190. On June 8, it was passed by the House, meaning it is now ready for the governor’s signature. If it passes, it will be the third state omnibus privacy law in the US, with Virginia having passed the Consumer Data Protection Act (CDPA) earlier this year and of course, the California Consumer Privacy Act (CCPA). In this episode, we cover elements such as government practices, individual rights, the extensive opt outs, and key definitions. For example, one topic is centered on how in Colorado bills can become law by “letting it ride” after 30 days - and why Colorado has 30 days for the governor to sign. This contrasts with the federal provision of the pocket veto. Join us as we discuss the specifics of the potential Colorado Privacy Act, its penalties, and its comparisons to the CCPA, Virginia CDPA, and the GDPR. More detail on the Colorado Privacy Act can be found on TrustArc’s website, where we provide extensive detail in a series of four blogs -
If you did not catch today's webinar on the SCCs and EU activities, please feel free to watch it - hot off the presses with both Paul and K. As always, if you have any questions or comments, please feel free to contact us at seriousprivacy@trustarc.com. In addition, if you like our podcast, please do rate and comment on our program in your favorite podcast app. We also have a LinkedIn page for Serious Privacy, so please follow for more in-dept Powered by TrustArc With TrustArc’s Privacy Studio and Governance Suite, you can automate cookie compliance, streamline data subject rights, and centralize your privacy tasks—all while reducing compliance costs. Visit TrustArc.com/serious-privacy. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! | |||