She Said Privacy/He Said Security

Dimitri Sirota is the Co-founder and CEO of BigID, a data platform that helps entrepreneurs acquire actionable intelligence in the data center and cloud to solve data privacy, protection, and prospective problems. As an established serial entrepreneur, investor, mentor, and strategist, he founded two enterprise software companies focused on security and API management. Dimitri is a contributor to Forbes Tech Council and was a finalist for the 2021 EY Entrepreneur of the Year Award. In this episode… With increasing ambiguity around sensitive consumer data, businesses are struggling to identify and manage personal information securely. So, how can you distinguish and reduce security risks on regulated data to provide your customers and organization with valuable insights? Privacy and identity expert Dimitri Sirota maintains the importance of understanding your company’s data. This necessitates pinpointing and recognizing the precise location and forms of your data to determine the associated risks. BigID provides businesses with the data analytics technology and tools needed to generate actionable insights, discard unnecessary data, and transfer personal information and transparency back to the customer. In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels host Dimitri Sirota, Co-founder and CEO of BigID, to talk about identifying and managing regulated and personal data. Dimitri discusses how to leverage data to deliver value to customers and organizations, how companies can identify and minimize cloud data risks, and the key trends in businesses’ privacy programs.

Troy Bettencourt is the Associate Partner of the X-Force Incident Response Team at IBM, a company that helps blue teams improve incident response plans and minimize the impact of a breach. As a technically-skilled person and process leader, he has over 10 years of leadership experience in the DFIR, law enforcement, and military spaces. Troy also has 18 years of digital forensics and incident response experience and three years of eDiscovery experience, which includes an assignment as the National eDiscovery Program Manager for a federal government agency. In this episode… With the rise in cyber attacks, it’s essential to develop proactive incident response measures. So, what are some steps you can take to mitigate breaches and make informed security decisions? With a breadth of technical expertise in incident response consultations, Troy Bettencourt emphasizes the importance of investing in proactive services to prepare for and emulate cyber attacks. These services include ransomware readiness assessments and tabletop exercises designed to optimize incident response measures and decision-making. When assessing and selecting services, businesses need to determine the service’s value-add to their security efforts. In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels host Troy Bettencourt of IBM to discuss developing incident response measures to combat cyber attacks. Troy explains how to select and purchase incident response services, the factors influencing the pricing and delivery of these services, and how he advises companies on incident response measures.

Marlon Williams is the Founder of Atlanta Blockchain Center, a company that aims to be the catalyst for Atlanta’s emergence as the global premier blockchain innovation hub. He is also the Founder of Starter Labs and Qubicles, Co-founder of Telos, and a Partner at Starter Capital. At 16 years old, Marlon attended Central Florida Vocational School to study computer programming and business management before attending Miami Dade College and Kaplan University to study computer information systems and information technology. In this episode… With the rise of Bitcoin and other forms of cryptocurrency, blockchain has become increasingly common. But its emergence raises privacy and security concerns, particularly with regard to digital assets and transactions. So, what do companies and developers need to consider before adopting blockchain or creating a blockchain platform? Software developer Marlon Williams says that in order to mitigate transaction exploits, designers need to implement proven frameworks when writing code to consider blockchain’s nuances and lengthy finalization times. Yet when it comes to personal digital assets, privacy remains an issue, so Marlon asserts the importance of federal regulatory guidelines to simplify asset representation and functionality and help companies build privacy features into their blockchains.  In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels interview Marlon Williams, Founder of Atlanta Blockchain Center, about considerations and concerns surrounding blockchain’s widespread use. Marlon shares tips for developing blockchain platforms, how privacy impacts brands’ use of blockchain, and the importance of regulatory guidelines in its mass adoption.

Michael Hahn is the Executive Vice President and General Counsel at the Interactive Advertising Bureau and IAB Technology Laboratory, a trade association that develops industry standards, conducts research, and provides legal support for the online advertising industry. In his role, he leads the organization’s legal affairs counsel and internal compliance efforts.  With extensive experience in litigation, Michael has provided multiparty class-action antitrust defense representation and directed lawsuits involving competitor conduct, distributional restraints, monopolization, and price discrimination claims. He serves as Co-chair of the New Jersey State Bar Association Antitrust Law Committee and previously served on the Editorial Advisory Board of Competition Law 360 and the Advisory Board of the American Bar Association Antitrust Section’s Civil Torts & RICO Committee. In this episode… Privacy regulations in the digital marketing and advertising technology space have become increasingly complex, with uncertainty surrounding the concept of data sales and the exchange of personal information. So, how can you navigate consent and interpret the many regulations in this industry? According to the settlement documents of Sephora’s enforcement action, a sale in advertising technology involves all manner of analyzing and measuring consumer data. Antitrust litigator Michael Hahn says that businesses must develop a contract that complies with state privacy laws to communicate consumer privacy preferences to organizations involved in digital ad distribution. IAB has developed a multi-state privacy agreement to help businesses remain compliant and act as a mediator in contract agreements.  In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels interview Michael Hahn, EVP and General Counsel at IAB, about managing evolving privacy consent laws in the advertising technology space. Michael discusses the conditions surrounding the sale of data, how IAB helps members comply with privacy laws, and the impact of Sephora’s settlement action on digital advertising.

Michelle Dennedy is the CEO of PrivacyCode, a privacy engineering SaaS platform that translates complex privacy policies for developers. She is also the Co-founder and Partner of Privatus Consulting, a company that assists clients with privacy engineering and governance, WickedPrivacy leadership solutions, and ESG metrics.  Michelle works closely with families, executives, and innovators at all levels and with businesses and organizations at all stages to support the combination of privacy policies, practices, and tools. She has held many leadership roles in data strategy and privacy at Sun Microsystems, McAfee, Intel, and Cisco as well as startup companies. In this episode… Data is becoming increasingly complex and nuanced, making privacy and security integral components of an organization’s enterprise — but many companies fail to budget and plan accordingly for these policies. So, how can you implement privacy strategies into your business plan? Michelle Dennedy recommends adopting a problem-solving framework known as WickedPrivacy. This involves executing immediate, systematic approaches to address complex and uncertain privacy challenges, including ethics, public safety, user data, and shareholder access. PrivacyCode helps privacy engineers and officers identify use cases to integrate and deploy privacy programs utilizing a compliance and soft systems method. In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels interview Michelle Dennedy, CEO of PrivacyCode and Co-founder and Partner of Privatus Consulting, about developing strategic approaches to privacy. Michelle explains the major privacy challenges companies face, the WickedPrivacy methodology, and advice for implementing a privacy budget.

Yacov Salomon is the Founder and Chief Innovation Officer at Ketch, a coordinated set of apps, infrastructure, and APIs designed to build trust with customers and grow with data. He is also the Chief Technology Officer at Stanza. As a recognized authority in machine learning and AI and a seasoned tech expert, Yacov has built industry-leading innovative technology and teams at startups as well as Fortune 500 companies across many verticals. Before Ketch and Stanza, he was the Head of AI and Innovation at Superset Venture Studio and a Lecturer at the University of California, Berkeley. In this episode… In the evolving privacy and security space, advertising technology is becoming increasingly invasive, with major companies like Sephora facing settlement actions over how they process consumer data, especially in digital advertising. So, how should you manage consent and develop privacy programs to control and protect your customer’s data? When navigating federal privacy laws surrounding ad tech data, Yacov Salomon recommends establishing a permission layer. This provides customers the option to consent before releasing their data to third-party systems. By implementing automated technology into your company’s ecosystem, you can identify confidential data and regain control over it to maximize customer trust and comply with privacy guidelines.  In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels sit down with Yacov Salomon, Founder and Chief Innovation Officer at Ketch, to talk about how companies can manage ad-tech, privacy, and consent requirements. Yacov discusses the three privacy issues surrounding ad tech, the implications of consumer data collection, and how companies can track their ecosystem to control and protect customer data.

Jodi Daniels is the Founder and CEO of Red Clover Advisors, a boutique data privacy consultancy and one of the few certified Women’s Business Enterprises focused solely on privacy. Since its launch, Red Clover Advisors has helped hundreds of companies create privacy programs, achieve GDPR, CCPA, and US privacy law compliance, and establish a secure online data strategy their customers can count on. Jodi is a Certified Informational Privacy Professional (CIPP/US) with over 20 years of experience helping a range of businesses — from solopreneurs to multinational companies — in privacy, marketing, strategy, and finance roles. She has worked with numerous companies throughout her corporate career, including Deloitte, The Home Depot, Cox Enterprises, Bank of America, and many more. Jodi is also a national keynote speaker, a member of the Forbes Business Council, and co-host of the She Said Privacy/He Said Security podcast. Justin Daniels is a cybersecurity subject matter expert and business attorney who helps his clients implement strategies to better manage and recover from data breaches. As outsourced general counsel for Baker Donelson, Justin advises executives on how to successfully navigate cyber business and legal concerns related to operations, M&A, incident response, and more. In 2017, Justin founded and led the inaugural Atlanta Cyber Week, where multiple organizations held events that attracted more than 1,000 attendees. Justin is also a TEDx and keynote speaker and co-host of the She Said Privacy/He Said Security podcast with his wife, Jodi. In this episode… When it comes to data collection, studies show that more than 80% of consumers value privacy. With security breaches and privacy violations becoming increasingly prevalent, how can businesses prioritize these matters to foster customer trust? To start, companies must take inventory of their data to fully understand each component and establish use cases. Another requirement is to create privacy notices, pages, or sections to connect with the consumer and develop their trust. Jodi and Justin Daniels' book Data Reimagined: Building Trust One Byte At a Time teaches businesses how to manage customer data to ensure privacy and security. In today’s episode of She Said Privacy/He Said Security, Chad Franzen of Rise25 talks with Jodi and Justin Daniels about prioritizing privacy and security concerns. Together, they discuss how businesses perceive and utilize data, the privacy and security concerns of data collection, and how to develop customer trust through privacy and security measures.

David Rhodes is the City Attorney for Peachtree Corners, Georgia, a vibrant suburb of Atlanta. He is also Legal Counsel for Curiosity Lab, which is Peachtree Corners’ publicly-funded innovation center designed to provide a real-world test environment to advance next-generation intelligent mobility and smart city technology. Previously, David served as the Judge Advocate for the Army National Guard, where he advised the brigade commander and staff on operational law, military justice, administrative separations, and command policies.  In this episode… With innovation rapidly advancing, cities are employing various smart technologies such as autonomous vehicles to streamline transportation and other services. But this requires collecting data to identify citizen use cases, which raises privacy and security concerns. So, how can cities develop new technologies to scale while ensuring data protection? When gathering sensitive data for public records, it’s critical to consider the intended purpose for that information to establish the appropriate collection methods and verify demands for it. To generate trust with citizens, cities must disclose the information and assemble safeguards to mitigate data sharing with third parties. With the American Rescue Plan Act, cities can deploy the funds to optimize and enhance their privacy and security measures. In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels chat with David Rhodes, City Attorney for Peachtree Corners and Legal Counsel for Curiosity Lab, about prioritizing privacy and security with smart technologies. David shares the privacy challenges cities encounter when deploying smart technology, how security has evolved with cyber technologies, and the future of smart cities and their implications for citizens.

David Stauss is a Partner at Husch Blackwell, a law firm offering comprehensive counsel on day-to-day operations in various industries, including banking and finance, data privacy and cybersecurity, and intellectual property. He is also chair of the firm’s Privacy and Cybersecurity Practice Group, where he counsels clients on existing and emerging state, federal, and international privacy laws. As a recognized thought leader, David is an author and frequent speaker on privacy and cybersecurity. He was selected as JD Supra’s top data privacy author in 2022 and has been published and quoted in numerous publications, including The Wall Street Journal, CBS News, and Security Magazine. He is the editor of the Byte Back blog — one of the leading data privacy blogs in the US — and hosts the Data Privacy Unlocked podcast, which focuses on the development of U.S. privacy law. In this episode… The American Data Privacy and Protection Act is in some ways unclear, leading individual states to devise their own privacy laws. So, what do these regulations entail for cybersecurity companies? According to privacy law expert David Stauss, states like Virginia and Colorado are developing laws emphasizing consent around personal data. Conversely, California will allow organizations to utilize sensitive data with certain restrictions. With disparities among each state’s regulations, David urges businesses to remain savvy and stay abreast of potential updates.  In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels sit down with David Stauss, Partner at Husch Blackwell, to discuss state and federal privacy regulations. David shares how companies can comply with state privacy laws, the potential of the American Data Privacy and Protection Act, and each state's plans for the expansion of privacy rights.

Leila Golchehreh is the Co-founder and Co-CEO of Relyance AI, a platform that uses machine learning to help companies seamlessly manage privacy, data governance, and compliance. As an entrepreneur, data protection attorney, and former data protection officer, she has extensive international experience building data protection privacy programs for diverse clients in private practice as well as global organizations. Leila’s experience with existing privacy solutions inspired her to co-found Relyance AI and reimagine data protection in a technology-driven world. In this episode… With the evolution of data privacy, businesses need to remain perceptive about their data locations and uses. But, with so many privacy and security regulations, how can you organize your workflow to maintain compliance? Most organizations’ privacy programs are underdeveloped, so data privacy expert Leila Golchehreh recommends automating your privacy and security solutions. Artificial intelligence streamlines data mapping and inventory exercises so privacy professionals can focus on potential threats. Relyance AI helps you identify and analyze new and faulty codes to detect and prevent security breaches.  In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels interview Leila Golchehreh, Co-founder and Co-CEO of Relyance AI, about implementing AI into your data privacy program. Leila shares her company’s approach to privacy automation, how AI helps businesses build data privacy programs, and the challenges organizations face when complying with data privacy laws.