Serious Privacy

Send us a textGaming! It’s all fun and games, right? Not really. There are hidden dangers in online gaming especially - dangers that many individuals don’t consider. When you are stuck at home for many weeks, chances are that you have downloaded one or more gaming apps on your phone, or purchased a game console for your living room either for yourself or for your kids. Games are hot. But games are also great sources of data collection from all corners of the world and all levels of society. What kind of data are collected? How are they used? Is it all transparent? And of course - how do we tell the children? And even more importantly: protect the children. That, and more, in this episode of Serious Privacy, Paul and K discuss the dark side of gaming with two gaming and privacy professionals Leena Kuusniemi and Ben Siegel.Join us to discuss a worldwide multibillion dollar industry, ranging from tic-tac-toe to Minecraft - and the age and the sophistication of players are equally extensive and diverse. In this episode, we discuss the most downvoted post on Reddit, ads in gaming, mobile notice, fragmented regulations, and how to educate your kids about the dangers of gaming.ResourcesFortnite: Can You Copyright a Dance Move? (Billboard)Occupied (Norwegian TV Series) - Wikipedia | Netflix (may not be available in your region)Fordham University: Study on Tracking in AppsThe Most Downvoted Comment in Reddit History (Inc)Microsoft tool https://www.livemint.com/technology/tech-news/microsoft-releases-tool-that-can-scan-chats-to-detect-pedophiles-11578569527182.htmlNY Times Article on gaming abusers https://www.nytimes.com/interactive/2019/12/07/us/video-games-child-sex-abuse.html If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textPersonal data can often be a complicated side to critical business activities, such as mergers and acquisitions and bankruptcy. Since the beginning of the year, the world has been dealing with a global health crisis. But unfortunately, that is not the only crisis the world will be dealing with this year - by now it is clear our economy will take a serious hit as well. Companies will go under, or else may become targets for mergers and acquisitions while in a weakened state. That also may have an impact on the data holdings of organisations. Can sets of customer, employee and third-party data just be handed over from one company to the other, or sold to the highest bidder to return some money to investors?  These highly impactful business activities, that are often executed rapidly, are not the times to overlook critical data allowances and restrictions. In this episode, we put these tough issues to Constantine Karbaliotis, a privacy veteran who has managed these issues for companies. Join us as we discuss how companies can prepare for and manage privacy issues in M&A and bankruptcy. We also took the opportunity to ask him for a Canadian’s perspective on the new CCPA regulations that have been filed with the California Office of Administrative Law. Resources:EDPB - Statement on the Data Protection Impact of Economic ConcentrationEDPB - Statement on Privacy Implications of MergersDutch DPA - Guidance on data processing in a bankruptcy situation (NL)CCPA Regulations filed https://oag.ca.gov/sites/all/files/agweb/pdfs/privacy/oal-sub-final-text-of-regs.pdfPrivacy and Data Security in Mergers & Acquisitions Solutions Brief   If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textWhat do you get when you put an Englishman in charge of information privacy? A lot of experience, ideas, and expertise when it is Ralph O’Brien.  With all the news on the Coronavirus, one could almost forget there are still Brexit negotiations taking place. There is still a question whether the United Kingdom can obtain an adequacy decision from the European Union. Is the UK data protection legislation enough to offer an “essentially equivalent” level of data protection? What are the British views on using and protecting personal data? What about national surveillance? And how does this all tie in to the life and work of a privacy consultant. That and more will be addressed in this episode with Ralph, a highly respected privacy professional located in the United Kingdom.We talked with Ralph to get his impressions on a variety of topics in privacy law, specifically from the UK perspective. The conversation takes us from how Ralph first entered privacy and the considerations and areas of focus at that time to how privacy has evolved. As we can imagine, the world of privacy including Brexit issues, has dramatically changed and not all changes are necessarily good. Join us as Ralph shares his thoughts on data privacy, technology, the privacy profession, and Brexit - including what caused him to "go ballistic" on Twitter.ResourcesGerman decision on banning smart watches for children - BBC NewsTop Secret America - Washington Post If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textThe 25th of May 2018 will be a day that is forever etched into our memories. It is a day Paul had been working towards for well over seven years by the time it arrived. For those of you who don’t remember: it is the day the GDPR entered into application, this week two years ago. What other topic could we possibly discuss in today’s Serious Privacy episode other than the first GDPR review?  The serious question is - is it time to celebrate?  Let’s look at lessons we learned over the past two years as well as review activities by consumers, businesses, and regulators. You will get both the U.S. and the European perspective, and we have a special guest for this episode, TrustArc’s own CEO, Chris Babel. Chris brings with him decades of experience in both security and privacy and has a front row seat in most privacy initiatives.  Being in security when it first ramped up in compliance requirements provides Chris with a solid understanding of how compliance initiatives grow, including funding challenges. Join us as we discuss the good, the bad, the ugly - and the promise of GDPR.ResourcesTrustArc Privacy Intelligence Team Blog Post on 2 Years GDPRThe Effect of GDPR Two Years On - Beta NewsCouncil of the European Union: GDPR ReviewEuropean Data Protection Board: GDPR ReviewIAPP: The GDPR at Two: Expert PerspectivesCIPL GDPR Review If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textDescribe your perfect privacy career. Do the words “vibrant,” “brilliant,” and “high energy” come to mind?  Back when we still had privacy conferences and trade shows, you could sometimes meet someone that was so vibrant, so enthusiastic and so interesting, they would make the whole event. Emerald de Leeuw, Privacy Lead in EMEA for Logitech is that kind of person. She is a fellow Dutchie to Paul and calls Ireland her home. She is an entrepreneur with a brilliant privacy mind, but allegedly also serves up a mean cocktail. We speak about building out a career in privacy, being underestimated and staying sane while working hard. Join us as we discuss a variety of topics, such as Emerald’s problem with Harry Potter movies - spoiler alert, it’s a fine difference between the books and the movies. But we also talk about the challenges that a woman in privacy and tech faces, whether at the beginning of a career, or even when she is established and successful. Being underestimated is just one of those challenges. Emerald also opens up about her career champions and the importance of being authentic as a professional. She has an upcoming webinar that is linked below for your convenience as well as a link to her TEDx Talk on online privacy. ResourcesEmerald’s mental health webinar: https://personal-leadership.ck.page/b4bd344455 TEDx Talk “Online privacy is broken; this is how we fit it” - https://www.youtube.com/watch?v=ebJnKoZwAnI  If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textWhat do you get when a European and an American discuss concerns about returning to work after the recent quarantines? With co-hosts Paul Breitbarth and K Royal, listeners get an inside view on what privacy professionals are thinking about. After two months, the worst of the Corona Crisis in many countries seems to be behind us. Slowly, countries and States are opening up, releasing roadmaps on relaxing their quarantine measures and taking steps to allow people to go back to work. Nevertheless, for the time being, it seems “continue to work from home where possible” will remain the best practice around the world. But whenever employees return to the office on a regular basis, it is clear already companies will need to prepare for that. The new normal of the six-feet-society and social distancing will cause a challenge in itself to be accommodated in offices, but also from a privacy and data protection perspective there is a lot to consider. More information on this week's episode:TrustArc COVID-19 ResourcesPaul Schwartz - Protecting privacy on COVID-19 surveillance appsEDPB - Guidelines 04/2020 on the use of location data and contact tracing tools in the context of the COVID-19 outbreakPrivacy International on contact tracing apps If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textWhat is a representative under GDPR?  Why do I need one? What do they actually do? Are these questions familiar to you? Does it sound like we are reading your mind? Then join us for this exciting unscripted conversation with Tim Bell, Managing Director of the DPR group - a walking, talking, EU representative.If a data controller or processor does not have an establishment in any of the member states of the European Union, they have to appoint a representative. This is stipulated by article 27 GDPR. But does this really happen? The EU Member States seem to have concerns. In their evaluation report of the GDPR, they say it is uncertain to what extent controllers and processors from third countries have complied with the Representation obligation. Apparently, there are cases where a representative has not been designated. Reason enough to dive a bit deeper into this topic and discuss the role of the representative and how to appoint one.  In this podcast, we address a variety of topics such as the complexities of current EU representatives established in the United Kingdom and what that means for companies who will need a UK representative in the EU or vice versa.Resources and Social MediaLinkedIn (company): https://www.linkedin.com/company/18312118Hamburg DPA Investigation: https://datenschutz-hamburg.de/assets/pdf/27._Taetigkeitsbericht_Datenschutz_2018_HmbBfDI.pdf (p. 52/53)EDPB Guidelines on Territorial Scope: https://edpb.europa.eu/our-work-tools/our-documents/guidelines/guidelines-32018-territorial-scope-gdpr-article-3-version_en  If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textPrivacy has never been so controversial! COVID-19 has sparked many discussions about privacy as the use of technology helps contain the spread of the virus. But with all this data being used to monitor contact, are the proper privacy protections being put in place? These and many other topics we discussed with Lillian Russell, Chief Privacy Officer for the County of Los Angeles.Join us in this episode with Lilly to hear about challenges with a multi-generational workforce, managing remote work environments, and the prevalence of privacy non-experts. As someone who manages privacy in one of the largest metropolitan areas (third largest economy in the world) and who crosses every area of privacy in existence, Lilly brings an experienced and insightful voice to our current events. Should you have any questions or suggestions, please reach out to us via seriousprivacy@trustarc.com, or via Twitter at @podcastprivacy. You will find K on Twitter as @heartofprivacy and Paul as @EuroPaulB. If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textDespite the Corona crisis, the California attorney general has announced the enforcement of the California Consumer Privacy Act will go ahead as planned later this year. However, in Brazil, the Senate on April 3rd adopted legislation to postpone the entry into force of the Lei Geral de Proteção de Dados Pessoais (LGPD) until 1 January 2021. Enforcement is not foreseen until August next year. But postponed or not, the new omnibus data protection legislation in Brazil will have a major impact on companies doing business in the largest country in Latin America. Reason enough to invite two Brasileiros to our program to learn all about the LGPD and the culture of privacy in Brazil. Join us to hear Rodrigo Dias de Pinho Gomes and Fabricio da Mota Alves discuss the evolution of the LGPD and concerns around its enforcement. In addition, we also touch on judicial ability to rule on cases with personal data implications and the concern about privacy among the population. We were also reminded about Brazil’s interplay with WhatsApp in the 2015 - 2017 timeframe (see link below). Should you have any questions or suggestions, please reach out to us via seriousprivacy@trustarc.com, or via Twitter at @podcastprivacy. You will find K on Twitter as @heartofprivacy and Paul as @EuroPaulB.ResourcesArticle about Brazil and WhatsApp https://www.accessnow.org/supreme-court-brazil-holds-hearings-blocking-apps/TrustArc/Nymity LGPD Accountability HandbookLGPD http://www.planalto.gov.br/ccivil_03/_ato2015-2018/2018/lei/L13709.htm (law)https://iapp.org/media/pdf/resource_center/Brazilian_General_Data_Protection_Law.pdf (English translation)Social Mediahttps://www.instagram.com/motaalves.fabricio/https://br.linkedin.com/in/fabricio-mota-alvesttps://www.instagram.com/prof_rdpg/CreditsAudio: CC-BY Private Eye by Kevin McCloudVoiceover: Tim Foley If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.

Send us a textThe times of Corona are far from behind us, so also this week, we bring you a medical topic: what is the relation between technological innovation and pharma? How can they work together to facilitate new ways of working? And why do innovation and quick thinking really count in a pandemic like we have now?Join us to hear Ashley Slavik of Veeva and Jennifer Couture of Alexion discuss the innovation they have seen over the past month - everything from how tech helps companies enhance their business activities to working with colleagues in new ways. Ashley relates how Europe thanks healthcare workers and Jennifer shares how water cooler conversations can still happen. We bring profound insights and tricks to make every day better.ResourcesVeeva is responding quickly to help clinical trial sites keep running studies and treating patients with free remote monitoring capabilities. Learn more: http://bit.ly/Remote-Monitoringhttps://www.cnbc.com/2020/03/26/veeva-systems-crm-usage-increased-tenfold-amid-race-to-find-covid-cure.htmlhttps://pharmaleaders.com/covid-19-accelerates-digital-transformation-in-life-sciences/The latest thought-leadership content about privacy is on the Privacy by Design page of Crossix.com. Crossix commitment to COVID-19 consumer education was covered in AdWeek. Social Mediahttps://www.facebook.com/VeevaSystems/https://twitter.com/veevasystemsCrossix on LinkedInCrossix on Twitter If you have comments or questions, find us on LinkedIn and Instagram @seriousprivacy, and on BlueSky under @seriousprivacy.eu, @europaulb.seriousprivacy.eu, @heartofprivacy.bsky.app and @igrobrien.seriousprivacy.eu, and email podcast@seriousprivacy.eu. Rate and Review us! From Season 6, our episodes are edited by Fey O'Brien. Our intro and exit music is Channel Intro 24 by Sascha Ende, licensed under CC BY 4.0. with the voiceover by Tim Foley.