Successful privacy professionals make the most of limited resources, BlueSky Privacy CEO Teresa Troester-Falk said in an IAPP opinion piece Thursday.
Compliance Techniques
Compliance techniques encompass the strategies, tools and processes organizations use to meet evolving privacy and data protection requirements. Privacy engineers, chief data protection officers and compliance teams deploy methods such as data mapping, privacy impact assessments and automated monitoring to align with new laws in the U.S. and abroad. These techniques help avoid costly enforcement actions and build trust by embedding privacy by design into products and operations.
Though boosting AI innovation is one of the EU’s top priorities for the next several years, member states are implementing and interpreting plans and rules differently from one another, said panelists during an IAPP webinar Wednesday. The session covered the European Commission's new mandate of priorities and policies, the EU AI Act, the AI Continent Action Plan and their impact on data governance programs.
The EU Data Act, which takes effect Sept. 12, is awash with uncertainties that will likely spark challenges from consumer and plaintiff lawyers and impel data protection authorities (DPAs) to "become active very early on," Latham & Watkins data, cyber and tech lawyer Tim Wybitul told Privacy Daily this week.
Organizations providing content accessible to kids “should prepare for greater legal and regulatory scrutiny,” said an IAPP analysis on age assurance published Monday.
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching the title or clicking on the hyperlinked reference number.
The age-assurance landscape is shifting so quickly that it feels like "building the plane while flying it," IAPP Vice President Caitlin Fennessy said Wednesday during an IAPP webinar. With new laws, technologies and approaches cropping up globally, the privacy community must become more engaged in age-assurance activities and decisions, speakers said.
Companies must understand their websites' tracking technologies and know what data they collect so they can remain compliant. This is especially so within the healthcare sector, said panelists during an IAPP webinar about Health Insurance Portability and Accountability Act (HIPAA) compliance Wednesday.
Director of National Intelligence Tulsi Gabbard's announcement Tuesday that the U.K. dropped its demand that Apple provide "backdoor" access to users' encrypted data brought cheers from the tech and privacy sectors.
Battles between states and the federal government over what is an appropriate -- and lawful -- amount of data to be shared between agencies and law enforcement is representative of a larger power struggle, said Cobun Zweifel-Keegan, IAPP managing director for Washington, D.C., in a blog post Friday.
As AI and other data-rich emerging technologies become more prevalent and amp up the need for information, organizations must ensure their privacy policies and practices help engender customer trust, said JoAnn Stonier, Mastercard fellow of data and AI, said Wednesday.