Privacy Please

Send us Fan MailEver wondered how evolving privacy laws impact your company’s risk profile and compliance strategies? Join us for a captivating discussion with Ray, the Chief Compliance and Data Privacy Officer at TopCon Healthcare, and K, a seasoned privacy attorney with a unique nursing background. Ray shares his journey from the early days of HIPAA to his current challenges at TopCon, while K offers insights on transitioning seamlessly between legal and non-legal roles. Together, they unravel the complex interplay between legal and consulting roles in data protection, offering valuable insights for anyone navigating the privacy landscape.From the merits of hiring consultants versus law firms to manage privacy programs to the intricacies of data inventories and impact assessments, this episode tackles the pressing issues companies face today. We explore real-world scenarios, like the innovative Harmony platform at TopCon Healthcare, demonstrating how new business activities can shift a company’s risk profile. Ray and Kay provide a balanced perspective on when to engage consultants for their hands-on expertise and when to turn to law firms for their regulatory acumen.But it’s not all serious business—Ray shares a hilarious anecdote about the precise positioning of toilet paper, adding a touch of humor to our deep dive into privacy tech evolution and the essential collaboration between privacy and security officers. Whether you’re a privacy professional or someone interested in the dynamic between legal and consulting roles, this episode is packed with insights, practical advice, and a few laughs. Tune in and gain a fresh perspective on the ever-changing world of privacy compliance and consultancy.Support the show

Send us Fan MailWhat if a single cybersecurity incident could cost your company billions? On this episode of Privacy Please, Cameron Ivey and Gabriel Gumbs dissect the monumental CrowdStrike incident that left 8.5 million Windows machines vulnerable and sent shockwaves through the IT community. As a dedicated Linux user, Gabriel lends his unique perspective, backing CrowdStrike amidst the backlash and exploring why public overreactions might be misplaced. We dig into the staggering five billion dollar financial toll and stress the importance of recognizing technology's imperfections. Our hosts also revisit cybersecurity fundamentals—confidentiality, integrity, and availability—emphasizing the crucial role of backup and recovery in maintaining these principles.But it’s not just about understanding what went wrong; preparation is key. Using the CrowdStrike incident as a pivotal case study, Cameron and Gabriel offer actionable advice on disaster recovery strategies crucial for any business. They break down the shared responsibility model in the cloud, highlighting how data and identity still lie in the hands of the customer. From adhering to the 3-2-1 rule of data protection to automating recovery processes and keeping offline guides, they cover practical steps to bolster your recovery plans. With industry-specific insights and tips tailored to sectors like healthcare and aviation, this episode provides essential guidance for any organization looking to proactively navigate IT disasters.Support the show

Send us Fan MailAn exclusive livestream episode presented by Transcend and Privacy Please. Join Cam and Gabe as they chat with industry leader Amit Danenberg, who has a proven track record of spearheading security & privacy operations at top organizations like Cisco, Sonos, and Willow Innovations.We dig into some crucial topics, including:✅ Uncovering the advantages of prioritizing security & privacy in both operational and cultural aspects✅ Learning effective ways to manage privacy programs and choosing the right technology partners who share the same vision.✅ Understanding essential steps to prepare your enterprise for AI while ensuring data privacy & security.Support the show

Send us Fan MailAs we reach the middle of the year, the focus is on responsible AI usage and the advancement of privacy measures, emphasizing their significance in both personal and business settings.Our discussion then turns to a more serious topic: the alarming increase in ransomware attacks. Occurring approximately every 17 seconds and leading to the compromise of billions of records, there's a clear need for strong data protection and recovery strategies. We delve into the evolving nature of these cyber threats and explore what businesses can do to protect their operations.Additionally, mark your calendars for our live show on July 16th featuring special guest Amit Danneberg, who will share insights on integrating privacy and security into business practices. Source - https://www.itgovernanceusa.com/blog/data-breaches-and-cyber-attacks-in-2024-in-the-usa#april-2024Support the show

Send us Fan MailHistory of location sharing, it certainly didn't start yesterday folks...😉 Younger internet users seem to be okay with sharing their location data and the convenience it offers however, what about the potential risks of being constantly tracked? Do you know how much of your life is up for grabs in the digital world? In this electrifying episode of "Privacy Please," I, your host Cameron Ivey, morph into Ace Ventura, Privacy Detective, to lead you through the chaotic jungle of digital surveillance. From the massive amounts of location data in your smartphone to the generational divide over tracking, we tackle the intricate dance between convenience and privacy. Whether you're a privacy vet or someone who shrugs off the idea of sharing your whereabouts with friends, this episode is a rollercoaster ride of insights and surprises.-Source credit to Elaine Moore for the original articleSupport the show

Send us Fan MailWhat if managing your company's digital secrets could be as seamless as sending a Slack message? Join us as we converse with Brian Vallelunga, the innovative CEO and founder of Doppler, who reveals his journey from Uber to spearheading a game-changing solution for developers. We cover Brian’s intriguing path, including a rocky venture into the world of crypto machine learning, and a transformative moment in Mexico that highlighted the pressing need for efficient secrets management. Learn how a pivotal dinner conversation and inspiration from Slack's Stuart Butterfield catalyzed the creation of Doppler, making it an indispensable tool for developers around the globe.Why do so many companies fail to protect their most sensitive data? Brian and our hosts break down the alarming oversight of "secrets" like API keys and database URLs in data security. Hear a harrowing personal story of a scam that exploited breached data, gather practical tips on safeguarding your information and much more!Support the show

Send us Fan MailEver wondered about the hidden privacy risks lurking in your everyday Wi-Fi connections? In this episode, Cameron and Gabe discuss the hidden risks of Wi-Fi based positioning systems. They highlight a paper by Eric Rye and David Levine that explores the privacy risks associated with these systems. The paper discusses case studies where sensitive information about troop movements and refugee migrations was revealed through these systems. The conversation emphasizes the need for a larger conversation about the widespread use of these systems and the potential privacy implications.Source: https://arxiv.org/abs/2405.14975Credit: https://www.linkedin.com/in/erik-rye/ & https://www.linkedin.com/in/dave-levin-658b2564/Support the show

Send us Fan MailShould AI have a role in the legislative chamber? Arizona State Representative Alexander Kolodin says "yes," leading to a groundbreaking law crafted by ChatGPT. I'm Cameron Ivey, and I’ll dissect the story behind this innovative bill addressing deepfakes in elections, made with AI assistance and causing ripples in the privacy community.This isn't just another political maneuver; it's a bold step toward a future where AI and lawmakers collaborate to shape regulations. Join me as we delve into the delicate balance of protecting free speech while curbing AI-generated misinformation. We'll explore Kolodin's approach, which includes measures for authenticating deepfakes through judicial channels, while also preserving the realms of comedy and satire.This legislation aims to control narratives and enhance the efficiency and effectiveness of AI-assisted lawmaking. Our discussion will transcend privacy, touching on the essence of truth in the digital age. Tune in, share your thoughts, and let's unpack this futuristic topic together. Love and privacy to all—Cameron Ivey Support the show

Send us Fan MailExplore the dark side of cyber threats as we unveil the terrifying impact of ransomware attacks on the healthcare sector. In a gripping discussion with Cameron Ivey and Gabe Gumbs, we uncover how healthcare institutions are targeted for their sensitive data, risking patient privacy and trust. Through real-life stories of ransom payments gone wrong and the looming threat of repeated attacks, we reveal the harsh reality: paying ransom is just the beginning of the nightmare.Drawing insights from the 2023 Verizon Data Breach Investigation Report, we highlight a disturbing trend where ransomware aims not just to steal data, but to cripple operations, leaving vital medical equipment useless and multiplying the risk of human error. We delve into the shortcomings of data backup strategies and debunk myths surrounding the security of SaaS platforms. Join us for this conversation to empower yourself with more insights to safeguard your organization's data and people against cyber threats.Support the show

Send us Fan MailDiscover the intricate dance between technology and ethics as Jake Ottenwaelder, principal privacy engineer at Integrated Privacy LLC, takes us into the heart of fractional privacy engineering. Join us for a captivating journey where Jake, pivoting from cybersecurity to privacy engineering, decodes the complexities of modern data protection laws. He artfully bridges the gap between legal mandates and technical implementation, providing a lifeline to organizations navigating the treacherous waters of GDPR compliance and beyond. This episode is a beacon for anyone seeking clarity on the interplay between privacy, technology, and legal frameworks.As we navigate the subtle distinctions between security and privacy engineering, Jake imparts wisdom on the essence of an engineering mindset in privacy practices. He dissects the rich tapestry of privacy engineering, painting a landscape where ethical data stewardship takes center stage, and integrative privacy solutions redefine how companies interact with consumer data. For those in the security sector eyeing a shift to privacy, Jake offers a roadmap, underscoring process improvement and the potential of privacy automation to transform the industry landscape.We wrap up with a profound discussion on the broader implications of privacy engineering — from the ethical quandaries in AI to the pivotal role data privacy plays in national security. Jake sheds light on the convoluted challenges faced by organizations, such as data deletion and retention, and advocates for equitable privacy that transcends user sophistication. The episode concludes with a reflection on the future of data economy ownership amidst geopolitical shifts, a conversation that will resonate with anyone invested in the intersection of technology, privacy, and global affairs.Support the show