The Privacy Beat

In this episode, Goodwin Procter's Omer Tene unpacks the recent settlement between DoorDash and California's attorney general. It's the second enforcement action under CCPA, and it's significant because the DoorDash case calls into question how the CCPA's provisions on data sharing and selling could be enforced in the future. Listen up for what you need to know!

In this episode, OpenAP General Counsel and CPO Andy Dale chats with Angelique about the tactics and strategies that have helped him grow not only his privacy career, but also his tribe of peers-turned-friends. The two also discuss the regulatory squeeze adtech's feeling, the risks vs. rewards of using location data, and whether dentists are as nice as privacy pros. If you know a dentist, please have them call in.

In this episode, Phil Lee returns! Phil is a self-proclaimed tech nerd, but that comes in handy, given the uptick in questions on deploying AI without breaching privacy rules or consumer expectations. He says to understand the tech, you've got to play with the tech, which he's happy to do. More importantly, he says: To understand the potential harms of any deployment, you've got to get representatives from the potentially impacted parties in the room with you. Plus, the future of cookies. Are they dying or what?

In this episode of the podcast, host Angelique Carson chats with longtime friend and Uber CPO Ruby Zefo. The two discuss Ruby's working relationship with product & eng, the unique challenges a company like Uber faces, and why she's so focused on diversity, equity, and inclusion in the name of raising everyone's boats.

In this episode, Asana Head of Global Privacy & DPO Whitney Merrill discusses bridging the knowledge gap that most organizations face in the age of AI, why privacy pros need not wait for pending laws and regulations to do their jobs well, and how to approach the challenge of communicating privacy's pillars with cross-functional teams.

Everywhere you turn it's AI AI AI. But that's for good reason: We're deploying it now at our organizations without a full understanding of the risks we're undertaking. Plus, we don't have guardrails yet, and a federal law ain't gonna happen immediately. In this episode, let's talk about what Biden's recent executive order on AI signals you should start doing at your organization to protect it -- and you -- from the pitfalls around privacy.

In this episode, longtime friends Angelique Carson, Goodwin Procter's Gabe Maldoff, and the IAPP's Cobun Zweifel-Keegan discuss some of today's privacy pro conundrums, including data brokers' longevity, why it takes some companies so long to implement the GDPR, and Angelique's peanut butter hangover. Plus, a special guest makes a surprise cameo at the top!

In July 2023, the EU and the U.S. signed an agreement to replace the Privacy Shield with the revised Data Privacy Framework. But Schrems has said he'll try to take it down, just like he did Safe Harbor and Privacy Shield, and a French lawmaker has filed an official challenge. Julian Flamant, senior associate at Hogan Lovells, talks us through the changes and what we should EVEN DO!

In this episode, Joe Jerome makes his triumphant return across the mic from Angelique. In a free-ranging conversation, the two frenemies discuss what the metaverse actually is, the latest legislation aimed at protecting kids online, and why you should never take a photo of someone with their mouth open.

This whole privacy situation is insane these days. Sometimes it helps to have a privacy journo talk about the big themes and takeaways. Tonya Riley, a reporter for Cyberscoop, is tracking the latest trends in privacy enforcement. She'll tell you a bit about it in this insightful dispatch.

Welp, the Irish DPC fined Meta $1.3 billion, the highest ever GDPR fine, and it ordered Meta to stop transferring data from the EU to the U.S. The implication, obviously, is that every other company using SCCs to transfer data is also in breach of the GDPR. But the problem is at the political level! We can't solve this organizationally. So, what’s a company to even do? Eduardo Ustaran talks you off the ledge.

Everyone's losing it over this Washington State privacy law. The impetus for the bill was to cover gaps in HIPAA, and the Dobbs v. Jackson decision lit a fire in regulators, putting health-data privacy protections on a fast-track that never slowed. Mike Hintze, co-founder of Hintze Law, says this one “goes well beyond what any other privacy law has done.” Here's what he means.

Nazar Dudchak is a law student at Ukrainian Catholic University in Lviv, Ukraine. He recently won the prestigious honor of "best orator" at a moot court competition in Iceland. But his journey to learn privacy's main tenets and argue a successful case faced some hurdles. The main problem: Ukraine was under attack, and sometimes even electricity wasn't a guarantee.

Iowa is the first state in 2023 to pass a comprehensive privacy law. What does it contain? Is it a game-changer? In this episode, Keir Lamont, director of U.S. legislation at the Future of Privacy Forum, and David Stauss, partner at Husch Blackwell, talk us through why privacy peeps are calling this law a tech company's dream.

Jay Edelson has been using Illinois’ Biometric Privacy Act to take companies like Facebook and Clearview AI to task for alleged misuse. And he’s had great success. Without a federal law on biometrics in the U.S., states have started introducing their own versions of BIPA in rapid succession. In fact, 17 U.S. states have introduced a biometric privacy law this year already. In this episode, Edelson discusses his recent wins and his forecast for the BIPA landscape in the future.

The future of personalized ads felt wildly uncertain when the Irish DPC's final decision on the Meta case came down. The decision sent Privacy Twitter into a frenzy over the implications: You can't bundle personalized ads into the contract for the service itself, the DPC said. At the same time, the EU and U.S. are still trying to shake hands on a new data-transfer agreement. Luckily, Phil Lee is a master of both topics, and he's here to talk you off the ledge.

It's only January, and already U.S. states have introduced eight comprehensive privacy bills (and counting). In this episode, Future of Privacy Forum's Keir Lamont and Husch Blackwell's David Stauss talk about trends in each bill and what we should expect in 2023.

In this free-ranging episode, host Angelique Carson chats with longtime pals Gabe Maldoff, privacy attorney at Goodwin Procter, and Cobun Zweifel-Keegan, IAPP's managing DC director, about the big privacy news in 2022. There's lots of talk about CPRA, the Sephora case, California's need to constantly pass laws, and why Gabe hates cruises.

In this episode, part 2 of 2, California Deputy Attorney General Stacey Schesser talks about what she thinks the attorney general could have done differently, the Sephora case, and what's going on with operationalizing Global Privacy Controls.

In this interview (part 1 of 2), host Angelique Carson chats with California Deputy Attorney General Stacey Schesser on how everything changed with the CCPA. Schesser talks about the agency's recent Sephora enforcement action, Global Privacy Controls, and how she'll work with the newly-established CPPA. It's a Privacy Geek's buffet, if you will.