She Said Privacy/He Said Security

Silicon Valley-based entrepreneur Tom Kemp is the Managing Director of Kemp Au Ventures, an angel investment firm where he and his business partner invest their personal funds into seed and early-stage companies. As an angel investor, he has funded over 15 tech startups. Prior to becoming an investor, Tom was the Founder and CEO of Centrify, a leading cybersecurity cloud provider. As a result of his nearly 15 years in privacy, Tom devotes his time as a policy advisor for Californians for Consumer Privacy. His first book, Containing Big Tech: How to Protect Our Civil Rights, Economy, and Democracy, a definitive book on Big Tech, will be available for purchase in August. In this episode… In April, the California Delete Act was introduced in the California State Senate, a measure seeking to give state residents the right to have their personal information deleted from websites and apps. While some people believe it necessary to protect privacy, others believe the legislation could be a burden for businesses. The California Delete Act risks creating a mass exodus for California companies — it could also jeopardize future investments in new products and services to collect personal information. With the ever-increasing collection of personal information by businesses, it’s safe to say more needs to be done to protect individuals’ privacy. So, is the California Delete Act too harsh or a step in the right direction?  In this eye-opening episode of She Said Privacy/He Said Security Podcast, our hosts break down the California Delete Act with guest Tom Kemp, the Managing Director of Kemp Au Ventures. Together, these three privacy advisors inform us about everything we need to know about Senate Bill 362, the challenges of enforcing privacy laws, tips for reducing geolocation trackers, and more. This is one episode you don’t want to miss, so get comfortable and tune in now!

Robin Andruss is the Chief Privacy Officer at Skyflow, a privacy data vault dedicated to isolating, protecting, and governing sensitive data. Robin has 20 years of experience as a protection leader in the privacy, risk, audit, finance, strategy, and compliance space. She is a sought-after speaker on privacy, technology, and leadership. Additionally, Robin is a privacy tech advisor and sits on the Advisory Board of emerging tech startup Evident ID and is part of the Privacy Engineering group advisement team for Data Protocol. In this episode… With the combination of personal electronic devices, swift Wi-Fi and 5G, we can purchase medicine, airline tickets, and check our payslips online. As convenient as technology is, it can also be a curse, considering our personal data is at risk anytime we make online transactions. So, what can we do better to safeguard our private information? Like all technology, improvements in privacy are ever-evolving. But it’s important to understand the types of privacy risks that exist to understand how to protect our data.  In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels welcome Robin Andruss, the Chief Privacy Officer at Skyflow, to discuss the current challenges privacy faces. Robin, along with Jodi and Justin, discusses AI in the privacy space, building scalable privacy programs, and the overlapping of privacy and security in data breaches.

Don India is the CEO of RadarFirst, a company that helps businesses and their clients leverage emerging technologies. He has a strong and successful background as a sales executive and operator, with over 20 years of experience in delivering value to clients through cloud-based and on-premise solutions. Don has transformed organizations’ business strategies at a global scale, specializing in C-suite relationships, sales management, and direct sales. He is well-known for his boundless energy, unwavering passion, and exceptional coaching abilities. Don is also deeply curious and knowledgeable about artificial intelligence, cloud, and disruptive technologies. In this episode… If you’re a leader in a regulated industry, you know how challenging it is to keep up with the ever-changing regulatory compliance landscape. You need to scale your compliance program to meet the demands of new regulations, standards, customers, and products. You also need to make proactive decisions that align your compliance activities with your security objectives and business operations. To scale compliance effectively, organizations need to align their compliance activities with their security goals and business operations. They need to be prepared for the worst-case scenario — a data breach that could expose their sensitive data and damage their reputation.   In this episode of She Said Privacy/He Said Security Podcast, Jodi and Justin Daniels talk to Don India, the CEO of RadarFirst, a software solution that helps organizations automate their incident response and compliance processes. Don shares his insights on how to scale your compliance culture, how to leverage technology to optimize your time and resources, and how RadarFirst can act as a lifeboat in case of a breach incident.

Jodi Daniels is the Founder and CEO of Red Clover Advisors, a boutique data privacy consultancy and one of the few certified Women’s Business Enterprises focused solely on privacy. Since its launch, Red Clover Advisors has helped hundreds of companies create privacy programs, achieve GDPR, CCPA, and US privacy law compliance, and establish a secure online data strategy their customers can count on. Jodi is a Certified Informational Privacy Professional (CIPP/US) with over 20 years of experience helping a range of businesses — from solopreneurs to multinational companies — in privacy, marketing, strategy, and finance roles. She has worked with numerous companies throughout her corporate career, including Deloitte, The Home Depot, Cox Enterprises, Bank of America, and many more. Jodi is also a national keynote speaker, a member of the Forbes Business Council, and co-host of the She Said Privacy/He Said Security podcast. Justin Daniels is a cybersecurity subject matter expert and business attorney who helps his clients implement strategies to better manage and recover from data breaches. As outsourced general counsel for Baker Donelson, Justin advises executives on how to successfully navigate cyber business and legal concerns related to operations, M&A, incident response, and more. In 2017, Justin founded and led the inaugural Atlanta Cyber Week, where multiple organizations held events that attracted more than 1,000 attendees. Justin is also a TEDx and keynote speaker and co-host of the She Said Privacy/He Said Security podcast with his wife, Jodi. In this episode… Artificial intelligence is transforming our world in many ways, raising ethical questions about its impact on human rights, privacy, fairness, and accountability. How can we ensure that AI respects our values and principles and does not harm or discriminate against anyone? AI can be a remarkable tool that can enhance our lives in various domains. However, it also requires responsible and ethical use. Companies that create and deploy AI systems must adopt policies that guarantee that these systems are reliable, transparent, fair, and secure. In this episode of She Said Privacy/He Said Security Podcast, join Jodi and Justin Daniels as they discuss the key aspects of AI systems. They reveal the essential AI policies companies need to implement to address data collection and use, transparency and accountability, and fairness and unbiasedness.

Andrew Hopkins is the President of PrivacyChain, a data security platform that encrypts each data record with a unique key, making it useless for hackers. Andrew believes that data security should start from the data itself and not from the perimeter. With his team of innovators at PrivacyChain, he is challenging the status quo and creating a safer online environment. In this episode… Data security and privacy are becoming more challenging in the digital age, especially with the rise of AI and data security threats. How can you protect your data from cybercriminals and AI-associated privacy breaches? How can you manage your data at a granular level without compromising its quality and usability? PrivacyChain offers a modern data security and privacy solution. It can prevent breaches, leaks, and tampering by ensuring that only authorized users can access and edit the data. PrivacyChain can also protect data from AI-generated threats by verifying its source and authenticity. Through distributed data management, you can store your data in centralized locations. In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels interview Andrew Hopkins, the Founder of PrivacyChain, to talk about data encryption, control, and management. Andrew shares his insights on data security, privacy, AI, and how PrivacyChain can help safeguard your data.

Krista Hollingsworth is the Chief Revenue Officer at Consilien, a managed services security solutions provider helping organizations protect their data from cyber attackers. In her role, she creates a security awareness culture through an integrated approach to cybersecurity awareness training for employees. Krista is also the CEO of Boutique Marketing Group, a digital marketing company providing mid-size B2B businesses with content, strategy, and lead-generating sales funnels. In this episode… Traditionally, organizations have relied on cyber insurance to protect against attacks. But as marketing and technology have become more elaborate, ransomware has intensified, leading to a 79% increase in cyber premiums. How can you develop a calculated security approach that addresses compliance and risks? As Krista Hollingsworth observes, cybercriminals are skilled marketers, with 82% of attacks involving human elements. Additionally, Krista predicts that the emergence of AI chatbots will lead to sophisticated voice phishing attacks, so businesses should implement two-factor authentication and other verification systems for maximum protection. Managed security service providers such as Consilien help businesses create and manage cybersecurity programs. In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels invite CRO of Consilien, Krista Hollingsworth, to speak about the role of managed security services providers in developing cyber programs. Krista shares how the cyber sales cycle has evolved since the rise of ransomware, how AI could lead to voice phishing attacks, and advice for strengthening your passwords.

Jules Polonetsky is the CEO of the Future of Privacy Forum, a nonprofit organization advancing principled data practices to support emerging technologies. FPF is supported by more than 180 leading companies and foundations. Jules has led the development of numerous codes of conduct and best practices and assisted in drafting data protection legislation. He is an IAPP Westin Emeritus Fellow, the 2023 recipient of the IAPP leadership award, and the Co-editor of The Cambridge Handbook of Consumer Privacy. With 30 years of experience in consumer protection, Jules has served as Chief Privacy Officer at AOL and DoubleClick, a consumer affairs commissioner for New York City, and an elected New York State Legislator. In this episode… The emergence of ChatGPT and other AI chatbots has added another layer to the convoluted privacy landscape, further solidifying the need for comprehensive regulations. So what should corporations and lawmakers consider when protecting consumer and public privacy? Companies often have a superficial understanding of customer data, lacking consideration for the nuances and categories of each set. But ChatGPT has introduced additional bias, which can lead to legal consequences. Privacy law advocate Jules Polonetsky says that to ensure AI remains compliant, organizations must apply data protection laws to public data sets. The Future of Privacy Forum offers a collaborative space to create and enforce policies and resolve pressing issues in the space. In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels welcome CEO of the Future of Privacy Forum Jules Polonetsky to discuss AI’s privacy ramifications. Jules explains how to incorporate AI into global data protection laws, privacy’s nuances and industry developments, and how to protect privacy when using AI chatbots.

Gary Kibel is a Partner at Davis+Gilbert LLP, a law firm serving various industries and sectors including real estate, financial services, hospitality, and technology. In his role, he counsels clients on new media and advertising law, privacy and data security, and information technology. As a Certified Information Privacy Professional (CIPP), Gary advises providers of information technology services and customers for products and services regarding complex technology and intellectual property issues. Before Davis+Gilbert, he was an Information Systems Analyst at Merrill Lynch. In this episode… With ad tech rapidly advancing and the US passing contradictory privacy laws in various states, compliance is not a universal approach. Instead, conformity requires companies to have a keen understanding of ad tech and data exchanges within the industry. So how can you develop an approach that encompasses ad tech’s multifaceted components?  As a privacy law council on digital media, Gary Kibel understands the challenges businesses face managing differing standards, information-sharing, opt-outs, and targeted advertising. He states that by evaluating data types, you can determine which requirements apply to each use case. When implementing compliance features on websites, corporations often deploy cookie banners as a primary solution. But this requires thorough consideration for disclosure requirements, opt-outs, and performance and must be integrated with additional approaches. In today’s episode of She Said Privacy/He Said Security, Davis+Gilbert’s Partner, Gary Kibel, joins Jodi and Justin Daniels for a discussion on advertising technology privacy laws. Gary shares key takeaways from his IAPP Global Privacy Summit presentation, how to comply with conflicting US privacy laws, and how businesses should consider cross-contextual opt-outs. 

Jodi Daniels is the Founder and CEO of Red Clover Advisors, a boutique data privacy consultancy and one of the few certified Women’s Business Enterprises focused solely on privacy. Since its launch, Red Clover Advisors has helped hundreds of companies create privacy programs, achieve GDPR, CCPA, and US privacy law compliance, and establish a secure online data strategy that their customers can count on. Jodi is a Certified Informational Privacy Professional (CIPP/US) with over 20 years of experience helping businesses — from solopreneurs to multinational companies — in privacy, marketing, strategy, and finance roles. She has worked with numerous companies throughout her corporate career, including Deloitte, The Home Depot, Cox Enterprises, Bank of America, and many more. Jodi is also a national keynote speaker, a member of the Forbes Business Council, and the co-host of the She Said Privacy/He Said Security podcast.  Justin Daniels is a cybersecurity subject matter expert and business attorney who helps his clients implement strategies to better manage and recover from data breaches. As outsourced general counsel for Baker Donelson, Justin advises executives on how to successfully navigate cyber business and legal concerns related to operations, M&A, incident response, and more. In 2017, Justin founded and led the inaugural Atlanta Cyber Week, where multiple organizations held events that attracted more than 1,000 attendees. Justin is also a TEDx and keynote speaker and the co-host of the She Said Privacy/He Said Security podcast with his wife, Jodi. In this episode… ChatGPT is an international sensation, with businesses utilizing it for content creation, debugging, translation, and writing code. But this AI tool is still unregulated, raising privacy and security concerns regarding data input. Since ChatGPT is easily accessible to the public, what should you consider before implementing it, and how can you mitigate the associated risks? When adopting ChatGPT for your company, Certified Privacy Professional Jodi Daniels says you should evaluate the tool by conducting due diligence on potential use cases. For instance, a marketing department may want to acquire consumer insights involving personal information. Developing a policy to assess data types and functions, train and educate employees about risks, and regulate information sharing eliminates bias and privacy infringements.  On this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels share their thoughts on ChatGPT’s privacy and security implications. Together, they address the current and future state of AI ethics, the importance of ChatGPT regulations in the absence of federal privacy law, and how businesses can protect sensitive data when employing ChatGPT.

`Amy Chipperson serves as General Counsel for Axtria, a global provider of cloud software and data analytics to the life sciences industry. In her role, she manages a team of attorneys in the US and Mexico who are responsible for drafting and negotiating various complex IT outsourcing agreements, including Cloud and SaaS. Amy is also responsible for mergers and acquisitions, maintaining corporate compliance, and implementing GDPR regulations. In this episode… The privacy and security landscape is intricate and layered, with companies often managing multiple priorities simultaneously, including consumer trust and national and global regulations. How can you craft a program that addresses each aspect while remaining informed? General counsel Amy Chipperson affirms that companies should adopt a holistic approach to privacy and security to develop a program that satisfies various needs, goals, and requirements. Given that privacy laws are volatile, you must pivot effectively to maintain compliance. Amy urges being proactive and conducting extensive research into evolving regulations to adapt your strategies accordingly.  Axtria’s General Counsel Amy Chipperson joins Jodi and Justin Daniels on this episode of She Said Privacy/He Said Security to discuss how businesses can develop privacy and security programs in a changing environment. Amy also talks about privacy and security’s effects on data analytics, maintaining compliance amid fluid regulations, and how a common-sense approach to privacy guarantees customer trust.