"The Data Diva" Talks Privacy Podcast

Send us a textIn episode 239 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Saumya Gupta, Assistant Vice President for APAC and Japan at Platform 3 Solutions. Saumya brings a unique blend of deep technical expertise and strategic thinking to the conversation about data privacy in the modern enterprise. She and Debbie discuss how legacy systems represent one of the largest and most overlooked privacy risks—storing sensitive data long past its useful life and outside of governance controls. Saumya explains how data lake and lakehouse architectures can help businesses centralize, tag, and govern large volumes of structured and unstructured data more efficiently. She presents her open metadata model, a five-layer system that empowers organizations to classify data by technical properties, business relevance, operational quality, sensitivity, and compliance requirements. The conversation explores the collision between AI’s data hunger and privacy’s minimization mandate, and Saumya warns that enterprises cannot afford to ignore data lifecycle hygiene. They also discuss defensible deletion, audit readiness, and the importance of building data infrastructure with privacy as a foundational element. Saumya’s insights help organizations reframe legacy data not just as a cost center or liability, but as an opportunity to reset and future-proof their compliance strategies.Support the show

Send us a textDebbie Reynolds “The Data Diva” talks to Temi Odesanya, Director, Responsible AI and Automation. We discuss her extensive background in artificial intelligence automation, detailing her journey that began with her family's business in the Netherlands. This early exposure to technology ignited her interest in data science, leading her to pursue postgraduate degrees and a scholarship in Italy. Throughout her career, she has become increasingly aware of the critical importance of data governance and compliance, particularly regarding customer data. The conversation highlights Temi's curiosity and the significance of ethical considerations in technology, especially in the context of automated decision-making and data privacy.Support the show

Send us a textDebbie Reynolds “The Data Diva” talks to Mathew Waddell, Founder, Tactically Secure. We discuss insights from his career in the tech industry, particularly in cybersecurity, and his experience working with government agencies and large corporations. He discusses his commitment to simplifying security for individuals and protecting them from threats like ransomware.The discussion then shifts to the evolving landscape of cybersecurity threats, particularly the sophistication of ransomware attacks. Waddell stresses the need for businesses to integrate data privacy and cybersecurity strategies to combat these threats effectively. He points out the increasing trend of attackers stealing data and posting it online to coerce companies into paying ransoms, highlighting the interconnectedness of privacy violations and cybersecurity breaches. Both speakers agreed on the necessity for businesses to adopt proactive measures and recognize the importance of regulations like GDPR and CCPA in prioritizing data protection.Waddell and Reynolds address the dual potential of AI tools in cybersecurity, noting that they can enhance security measures but can also be exploited by malicious actors. They discuss the importance of training employees to recognize cyber threats and the need for effective identity verification strategies in light of emerging technologies like deepfakes and his data privacy wish for the future.Support the show

Send us a textDebbie Reynolds, "The Data Diva", talks to Michael McCracken,  a Data Privacy Strategist and Operational Expert. We discuss his career trajectory, transitioning from accounting to IT audit, which led him to specialize in data privacy, particularly concerning children's information and neurodivergence. He emphasizes the significance of inclusivity in the privacy sector, arguing that diverse teams enhance the effectiveness of privacy strategies.The conversation highlights the complexities surrounding data collection, especially regarding minors. Michael argues that businesses should prioritize individual privacy and not rely on exploiting data. Debbie pointed out the risks associated with unnecessary data collection, which can lead to breaches and erode trust.We advocate for treating data as a valuable asset requiring careful stewardship rather than a commodity to be exploited. They discussed the importance of passion and advocacy within organizations to bridge communication gaps and enhance collaboration on privacy initiatives.Michael raises concerns about the inadequacies of current legal frameworks in protecting children's privacy, warning that companies often prioritize legal defenses over accountability. He and Debbie agreed that a multifaceted approach is necessary for effective privacy regulation. They emphasize the need for transparency and organizational responsibility in privacy practices, particularly as large companies struggle to adapt to regulatory changes. The discussion also touches on the impact of GDPR on U.S. business practices and the challenges posed by the lack of a cohesive national privacy framework.In concluding,   Michael articulates his vision for a unified privacy ethic that prioritizes individual rights and ethical considerations. Debbie echoes this sentiment, advocating that organizations adopt clear ethical frameworks as guiding principles. Support the show

Send us a textIn this episode of The Data Diva Talks Privacy, Debbie Reynolds welcomes Carly Kind, the Australian Privacy Commissioner at the Office of the Australian Information Commissioner. Carly shares her remarkable journey from a career in criminal defense law and human rights advocacy to becoming one of the leading voices in global privacy regulation. She discusses her early exposure to privacy issues through work at the UN and NGOs such as Privacy International and the Ada Lovelace Institute, where she focused on the intersection of technology, human rights, and AI governance.Debbie and Carly explore the philosophical and practical dimensions of privacy, touching on its roots in human dignity, autonomy, and democracy. Carly challenges the often-framed conflict between privacy and innovation, arguing that strong privacy protections foster trust and are essential for societal progress and sustainable technological development. She also shares her insights as a regulator, describing the complex and often resource-intensive reality of enforcing privacy laws and ensuring compliance across a wide spectrum of entities.The conversation then turns to pressing global concerns, particularly the privacy implications of artificial intelligence, including the erosion of purpose limitation principles and the growing dominance of data-rich tech companies. Carly raises important concerns about biometric surveillance, data exploitation in real estate and credit sectors, and the widespread tracking of individuals’ digital behavior.One of the focal points of the discussion is Australia’s Social Media Minimum Age Act, which mandates a ban on children under 16 using social media platforms. Carly reflects on the privacy risks of increased identity verification, the evolving nature of the internet, and the unintended consequences of well-intentioned regulation. She also discusses the importance of advancing children’s online privacy rights through robust regulatory codes.In closing, Carly shares her vision for a more equitable digital future. She emphasizes the need for public reconnection with the foundational values of privacy, calls for a rebalancing of power in the digital ecosystem, and advocates for genuine consumer choice and competitive digital markets. This thought-provoking conversation offers a nuanced look at the global state of privacy, regulation, and the future of human rights in the digital age.Support the show

Send us a textDebbie Reynolds “The Data Diva” talks to Marko Dinic, CEO of Jatheon Technologies, Inc. We discuss the evolving landscape of data archiving, compliance, and artificial intelligence. Marko shares his extensive experience in the archiving space, spanning over two decades, and highlights how regulatory frameworks like Sarbanes-Oxley, GDPR, and CCPA have shaped data retention practices across industries. He explains the complexities of managing data archiving, including challenges with deletion, deduplication, and maintaining audit logs while complying with privacy laws. The conversation explores the growing tension between data retention requirements and privacy mandates, especially in light of AI advancements.Marko emphasizes how AI-driven systems are transforming corporate data management, creating both opportunities and new legal and compliance concerns. The discussion touches on the evolution of data archiving from being a compliance necessity to becoming a strategic corporate asset. Laws such as Sarbanes-Oxley, GDPR, and CCPA significantly impact how organizations must retain and manage data while balancing individuals’ right to be forgotten. AI complicates data deletion processes, raising new privacy risks as organizations increasingly rely on automated compliance workflows. The growing importance of archiving systems as enterprise-wide data hubs underscores their role in providing AI-driven insights while ensuring regulatory adherence.As AI continues to reshape the business landscape, organizations must rethink data governance strategies to navigate compliance challenges. AI models introduce complexities in legal discovery and searchability, requiring transparency in how AI-generated outputs are produced and stored. With companies leaning more heavily on archiving to manage the vast amounts of data being generated, data governance, compliance, and privacy concerns will remain central to business strategy. The integration of AI into archiving systems represents both an opportunity and a challenge, requiring careful consideration of legal, ethical, and technological factors to maintain compliance and data integrity.Support the show

Send us a textDebbie Reynolds “The Data Diva” talks to Peter Cranstone, CEO, 3PMobile, Digital Ecosystems and Consumer Choice. We discuss his personal journey in technology, beginning with his early work on data compression inspired by his uncle. He discusses the creation of the Do Not Track web standard aimed at enhancing user privacy, which faced challenges due to consumer preferences for convenience. Despite the introduction of privacy regulations such as GDPR and CCPA, he notes that users often prioritize instant gratification over privacy. His collaboration with a Kaiser Permanente executive shifted his focus from IT architecture to business strategy, broadening his understanding of how technology can be tailored to meet individual needs in healthcare.Cranstone also recountes the historical evolution of windshield wipers, illustrating how innovation can take time to gain public acceptance. He highlightes the contributions of Mary Anderson and Robert Kearns, emphasizing the importance of gradual acceptance in automotive technology. Additionally, he discusses the complexities of engaging patients in their health management, proposing a dynamic app that allows for continuous interaction with healthcare providers, thereby addressing the challenges posed by an aging population.The conversation shifts to data privacy and decentralization, with Cranstone advocating for a secure wallet system that empowers users to manage their data. He argues for a trusted web model where individuals are compensated for sharing their information, contrasting it with current practices that often exploit user data. Cranstone also addresses the need for equitable resource distribution, suggesting that the value generated by major tech companies could be redirected to alleviate issues like food insecurity. He concludes by emphasizing the importance of AI in personalizing user interactions while maintaining privacy, advocating for a moral approach to data management that respects individuals and promotes equitable distribution, and his data privacy hope for the future.Support the show

Send us a textDebbie Reynolds, "The Data Diva," talks to Caroline Lancelot Miltgen, a Social and Behavioral Scientist (PhD), Consumer/UX Privacy expert, and Responsible AI Expert (France). We discuss Caroline's expertise in consumer privacy, user experience (UX) privacy, and AI ethics. She shares insights from her academic career and extensive research on consumer behavior concerning privacy.The discussion explores several critical topics, starting with the misconception that consumers don't care about their privacy simply because they frequently share their data. Caroline explains that, in reality, many consumers feel powerless and lack the tools or understanding to protect their personal information. We also explore the challenges posed by the power imbalance between consumers and companies collecting their data, highlighting that existing U.S. and European regulations have not fully addressed this issue.The conversation also covers the differences between privacy regulations in the U.S. and Europe, particularly around consent and opting out. Caroline underscores consumers' difficulties in opting out of data collection and points out that companies often place the burden of privacy protection on the consumer. We discuss how artificial intelligence (AI) further complicates privacy matters, as many consumers unknowingly provide data used in AI models, raising concerns about AI's impact on privacy. The ethical implications of data usage in AI systems are also a focal point. Caroline calls for a multidisciplinary approach to address privacy challenges, combining legal, technical, and societal perspectives.Caroline emphasizes that trust and education are essential in improving consumer privacy and suggests that businesses need to be more transparent and less intrusive in their data collection practices. She argues that solving privacy issues requires more than legal or technical solutions, stressing the importance of a broader perspective considering consumer needs. The episode offers valuable insights into how consumers, businesses, and regulators can collaborate to create a more privacy-conscious digital landscape and her hope for Data Privacy in the future.Support the show

Send us a textDebbie Reynolds “The Data Diva” talks to Soribel Feliz, AI Governance, National Security. AI Coach - Ex-Meta. Former Diplomat. We discuss artificial intelligence policy, governance, and its societal implications. Soribel shares her unique career journey, beginning as a U.S. diplomat serving in Europe, South America, and Washington, D.C., before making a bold transition into the tech industry. She provides a behind-the-scenes look at her work at Meta, where she contributed to election integrity and content moderation, and later at Microsoft, where she helped shape the company’s response to the emergence of ChatGPT. She also discusses her time in Congress as a Rapid Response AI Policy Fellow, where she played a crucial role in helping lawmakers understand and regulate AI, leading to her current work in the US goverbment on AI compliance and governance.Throughout the conversation, Soribel examines the necessity of AI guardrails to mitigate potential harms while fostering innovation. She challenges the notion that regulation stifles technological progress, arguing that responsible AI development is essential to prevent unintended consequences and protect vulnerable populations. She also provides insight into the growing efforts within Congress to improve technological literacy, including specialized fellowships and collaborations with think tanks to ensure more informed policymaking.Debbie and Soribel also discuss the broader global impact of AI regulations, particularly the EU AI Act, which has set a precedent for risk-based governance. They explore the challenges of implementing age verification laws, weighing the benefits of child protection against the privacy risks and potential barriers to access that such laws may create. Soribel emphasizes the importance of workforce adaptation, noting that as AI reshapes industries, professionals must explore new career paths and leverage transferable skills to remain competitive. Drawing from her expertise as a career coach, she offers valuable advice on transitioning into emerging fields without the need for a complete restart.The conversation highlights growing concerns over AI’s effects on employment, economic inequality, misinformation, and data privacy. Soribel underscores the importance of making AI discussions more accessible to the public, avoiding overly technical jargon, and focusing on real-world impacts. She warns of the dangers posed by unchecked AI development but also encourages a balanced perspective that acknowledges both the risks and opportunities presented by the technology.Soribel shares her vision for a future where AI’s economic benefits are more equitably distributed and where technological advancements align with sustainability efforts. She advocates for a more responsible and ethical approach to AI development—one that prioritizes fairness, transparency, and societal well-being.This episode offers an in-depth look at the most pressing AI policy challenges and the evolving role of governance in shaping the future of technology.Support the show

Send us a textDebbie Reynolds “The Data Diva” talks to Lawrence Gentilello, CEO and Founder of Optery, a company dedicated to removing personal data from online databases to enhance privacy and security for individuals and businesses. We discuss his career journey, beginning with his early work in the data industry at BlueKai, a firm specializing in collecting intent and purchase data for targeted advertising. He discusses how the industry evolved from simple ad personalization into a vast ecosystem where personal data is used in ways that can pose risks to individuals. His decision to launch Optery in 2020 was influenced by both his professional experience and a personal incident in which criminals used publicly available information to create fraudulent IDs in his and his wife’s names.Debbie and Lawrence examine the hidden world of data brokers—companies that gather, package, and sell personal information without individuals’ direct knowledge or consent. Lawrence describes how these brokers operate across different sectors, from advertising and email prospecting to risk analytics and law enforcement databases. He highlights the difficulty individuals face in protecting their information, as the average person has around 100 exposed online profiles, making them vulnerable to identity theft, cyberattacks, and even physical security threats.The discussion also covers emerging threats, including the rise of AI-native data brokers—companies that use artificial intelligence to automate the collection and sale of personal data at an even greater scale. Lawrence describes how these firms often operate without transparency and avoid legal disclosure, making it harder for individuals to track how their information is being used. He also references a recent incident involving the Russian ransomware gang Black Basta, where leaked internal communications revealed that cybercriminals were using data broker services like ZoomInfo and RocketReach to research and target victims.Debbie and Lawrence explore the real-world consequences of unchecked data sharing, including phishing scams, cyberattacks, and even physical harm. They discuss how executives, government officials, and everyday individuals become targets due to the ease of accessing their personal data online. Lawrence explains how Optery’s services help address these risks through deep-crawling search technology, before-and-after screenshot verification, and automated monthly scans that continuously remove exposed information.Lawrence outlines his vision for improving privacy protections. He advocates for a standardized set of privacy laws across the U.S., stronger enforcement against data brokers that fail to comply with regulations, and the inclusion of authorized agent provisions in all privacy laws to ensure individuals can get assistance in managing their data. Debbie emphasizes the importance of ongoing awareness and proactive steps to combat the risks associated with data brokers. This insightful discussion sheds light on the urgent need for privacy-focused solutions and stronger policies to protect individuals and their data.Support the show