Shows
Data Privacy DetectiveEpisode 188 — Privacy and the Big Apple: Cities and Chief Privacy Officers/CPOsJoin New York City’s Chief Privacy Officer, Mike Fitzpatrick. Explore the role of a city’s CPO. Cities must balance the interests of personal privacy and municipal operations, while complying with open records and other federal and state laws. Municipalities collect, use, and share vast databases of personally identifiable information (PII). They use PII to deter crime, advance public safety, and serve public health and other needs. Like everyone, cities can be cyber attack targets and victims of data breaches. Consider how one city’s CPO promotes a culture that embraces and protects personal privacy while preserving the essent...2025-01-1616 minData Privacy DetectiveEpisode 187 — 2025 Resolution: Make it the Year of the PasskeyThe Data Privacy Detective returns from a short sabbatical to recommend a New Year’s Resolution for 2025 - make this the Year of the Passkey. Data privacy best practice moved from passwords to multi-factor authentication. But this has not stopped the increasing online theft of assets and identities. Password-based technology is failing to stem financial and other losses that increase each year. Passkeys are on the rise. A passkey is a form of authentication technology that simplifies our online experience and increases online safety. This Episode explores why passkeys constitute best pr...2025-01-0209 minData Privacy DetectiveEpisode 186 — Data Privacy and Credit Bureaus: How false data and algorithms hurt peopleThe United States has three major credit bureaus - Experian, Equifax, and TransUnion. How they score individuals has a major impact on their lives. Credit scores can raise interest rates to double what an excellent rating would produce and can result in inability to borrow or have a credit card. How the credit rating system works is hidden to most people. The Detective turns his spyglass to how the big three credit bureaus use false data, employ algorithms that inaccurately report credit risk, and invade personal privacy without consent. Using a real time example, Episode 186 explores how...2024-10-2417 minData Privacy DetectiveEpisode 185 — Data privacy and law firms: How secure is confidential information shared with attorneys?October is Cybersecurity Awareness Month. For our personal data this Halloween, will it be trick or treat? In Episode 185, we explore one of the most private of all U.S. organizations - the law firm - to assess the security of private personal information. The American Bar Association reports that a quarter of all law firms have been the victim of a data breach and that 40% were not aware that they were attacked. What do insurance companies that serve law firms recommend as best cybersecurity practices? Even if best practices are followed, is the vast amount of...2024-10-1014 minData Privacy DetectiveEpisode 184 — September 2024 Data Privacy NewsTwo major data privacy developments from September 2024: a Staff Report from the FTC and California’s new statute about brain data. Tune in to Episode as the Data Privacy Detective provides meaning beneath the headlines. Neither of these was front page stuff. But each is more newsworthy than what company was sued for a data breach or whose privacy was invaded by a hacker. Staff reports are seldom covered as news. But the FTC staff report of September 19, 2024 is essential groundwork for regulation to follow soon or guidance for the next Congress that may reach acro...2024-10-0317 minData Privacy DetectiveEpisode 183 — Identity Orchestration (IO) in a Multi-Cloud Data World: Protecting Privacy by IO ArchitectureWhen clouds gather, we prepare for storms, sometimes hurricanes. In a data world that is increasingly multi-cloud, how can we protect data that is ever more susceptible to attack by mal-actors? Enter Identity Orchestration (IO) and Identity and Access Management (IAM). Eric Olden, author of “Identity Orchestration for Dummies” - https://www.strata.io/resources/whitepapers/identity-orchestration-for-dummies/ - and CEO of Strata.io, explains IO and IAM and why it is essential that privacy by design be the approach to secure data management. Defeating cybercrime through multi-factor authentication (MFA) and passwords is insufficient in the modern data envi...2024-09-2625 minData Privacy DetectiveEpisode 182 — How to stop your car and your privacy from being cyberjackedToday’s automobiles and trucks are more than transport vehicles. Filled with computer technology,cars and trucks are data collectors and transmitters - and a potential way for hackers to steal personal information and invade privacy. The expansive use of technology in vehicles creates risks of identity theft, invasion of privacy, and even the ability to take over a vehicle’s operation for tragic purposes. A September 6, 2024 American Automobile Association post, How to Protect Your Car from Cybercrime,describes how modern vehicular technology poses cyberattack risks and offers tips on how to fend off hackers. https://cluballiance.aaa.c...2024-09-1920 minData Privacy DetectiveEpisode 181 — Data Privacy Developments from August 2024Tune in for our August 2024 roundtable about three hot data privacy developments. Yugo Nagashima and Brio St. Amour join the Data Privacy Detective to plumb meaning beneath the headlines: The Netherland Data Protection Authority fines Uber 290 million Euros for data transfers of sensitive private information. Minnesota adopts a data privacy code. Data brokers emerge from the shadows after an enormous database hack and a call to action. Consider what happens when the European Court of Justice invalidates a U.S./EU safe harbor, and before the next one is in place, a company transfers data to the...2024-09-0522 minData Privacy DetectiveEpisode 180 — Largest Data Breach In History?We turn our magnifying glass to what some August 2024 headlines call the biggest data breach in history. One report said the entire population of the United States, Canada, and United Kingdom was hacked, with up to 2.9 billion people’s identities at risk. On closer inspection, it appears that 2.9 billion rows of data were packaged and posted for sale on the dark web for $3.5 million. Social Security numbers and other personally identifiable information were exposed, including between 100 and 300 million Social Security numbers of Americans. This was not a traditional hack or data breach National Public Data, a da...2024-08-2215 minData Privacy DetectiveEpisode 179 — Data Privacy Infrastructure 2024: Microsoft Priva in PreviewMicrosoft announced at an April 2024 IAPP conference a preview offering called Microsoft Priva. Described as a platform that helps organizations automate how they handle and deal with personal information, Priva aims to “streamline compliance across on-premises, hybrid and multicloud environments.” https://www.microsoft.com/en-us/security/business/microsoft-priva Episode 179 explores Priva as a measure of where we are on data privacy infrastructure in mid-2024. Organizations collect, process, use, share, and sell vast amounts of personal data - and are sometimes hacked for it. Legal compliance and minimizing/mitigating data breach and other risks are demanded of businesses large...2024-08-1516 minData Privacy DetectiveEpisode 178 — Google, Third Party Apps, and Data Privacy: a calendar scheduling exampleCalendar scheduling—it can be simplified with third-party apps that schedule meeting times without a lot of back and forth. But third-party apps that do such scheduling entail significant privacy risks and choices. Using Calendly as an example, we explore in Episode 178 what happens when we allow a third-party app to connect through our IT platform, in this case that of Google. Google provides ample information and details about allowing third-party apps to connect through a Google sign-in. https://support.google.com/accounts/answer/13533235?hl=en It warns about the risks and encourages users to check out the websites and pri...2024-08-0818 minData Privacy DetectiveEpisode 177 — Autos, AI safety, and Surveillance Pricing: July 2024 Data Privacy DevelopmentsJoin Brion St. Amour, Yugo Nagashima, and the Detective to review three top data privacy developments from July 2024. Our monthly review focuses on these topics: Automobiles - Are they spying on us without our consent? A letter from Senators Wyden and Markey to the U.S. Federal Trade Commission (FTC) asks for transparency and data protection from auto makers and those who share vehicle use data. What’s going on here? AI safety and the search for standards - On July 26, the U.S. Department of Commerce released guidance and software to improve the safety, se...2024-08-0123 minData Privacy DetectiveEpisode 176 — Data Provenance: It’s Time for Standards | Data & Trust Alliance’s June 2024 Version 1.0.0It’s time for standards about data provenance. Unless information is reliable and trustworthy - and able to be used properly - datasets hold doubtful value. Yet, datasets are the foundation of Artificial Intelligence. Standards for the provenance of data are thus essential, as Episode 175 explored. Enter the June 2024 release of Data Provenance Standards of the Data & Trust Alliance, or D&TA. https://dataandtrustalliance.org/work/data-provenance-standards Standards covering the Source, Provenance, and Use of data resulted from extensive cross-industry development, testing, and validation. D&TA’s pioneering work offers the opportunity for comment and participation to put...2024-07-2522 minData Privacy DetectiveEpisode 174 — The American Privacy Rights Act: Are we getting closer to a U.S. federal data privacy code?When the Chairs of Senate and House committees, one a Democrat and one a Republican, agree on a comprehensive and thorough federal data privacy statute, one might guess it will be enacted - or at least move forward to votes on amendments and packaged into a final form. Proposed by House Energy & Commerce Committee Chair Cathy McMorris Rodgers and Senate Commerce Committee Chair Maria Cantwell, the APRA offers the most comprehensive bipartisan approach yet to a comprehensive national data privacy statute. But powerful forces have postponed a mark-up of the bill. What’s blocking a deal? T...2024-07-0414 minData Privacy DetectiveEpisode 173 — U.S. Defense Department’s version 2.0 for Contractor Cybersecurity: CMMC 2.0The U.S. Defense Department is forcing its contractors and subcontractors to upgrade their cybersecurity practices through CMMC version 2.0. CMMC is shorthand for Cybersecurity Maturity Model Certification. This affects virtually all suppliers to DOD that deal in Controlled Unclassified Information. 2.0 sets demanding cybersecurity standards in an ongoing effort to protect digital data from spies, hackers, thieves, and unwanted disclosures. Learn CMMC 2.0 basics and how it may be setting a 2024 gold standard for digital data protection. Consider how it blends with NIST and other standards to upgrade digital info-architecture. Srikant Rachakonda, Founder/CEO, and Jody Stoehr, Co-founder and C...2024-06-1318 minData Privacy DetectiveEpisode 172 — May 2024 Data Privacy News: Vermont / Illinois Biometric Changes / Trends ReportVermont joined the “we have a data privacy code” group - almost a third of U.S. states now with a statute devoted to personal data privacy. Illinois modifies its code on biometrics to soften business costs of compliance. DataGrail’s 2024 Data Privacy Trends report focuses on a surge in data subject requests. Join Yugo Nagashima of Frost Brown Todd, Brion St. Amour of the Wabash Marketplace, and the Data Privacy Detective for an update on May 2024 developments. Tune in to see how Vermont provides a specific private right of action and details compliance requirements beyond what first...2024-06-0624 minData Privacy DetectiveEpisode 171 — A Global Privacy Statement: How to Draft OnePrivacy statements - how can one be written that applies globally? That seems like an impossible, even hopeless, challenge. Laws change regularly, even within countries and groupings like the EU. Rules differ. There are no “international” laws making data privacy a commonly regulated matter. This episode presents an approach to a comprehensive data privacy statement that can be used globally. Consider the essential elements. Express principles and practices that encompass the diversity of regulation while respecting commonly accepted rights of individuals whose personal information will be collected, processed, stored, and otherwise used when an organization operates cross-border. Usin...2024-05-3024 minData Privacy DetectiveEpisode 169 — Privacy, Artificial Intelligence, and the Sales IndustryHow do organizations convert leads into revenue? How can they do this effectively while being privacy-conscious, not bombarding people with unwanted cold calls or messages? In Episode 169, the Data Privacy Detective converses with Thomas Ryan, CEO and founder of Bigly Sales. https://biglysales.com. Learn how the sales industry is undergoing rapid transformation, how it is beginning to use Artificial Intelligence to shape conversations that turn leads into customers, while being respectful of individual privacy. Explore how enormous information is available publicly (or at minimal cost) to sales industry channels. Consider whether privacy is “dead” and what...2024-05-0918 minData Privacy DetectiveEpisode 168 — April 2024 Data Privacy DevelopmentsProgress towards a U.S. federal data privacy code? Consider the APRA, a bipartisan congressional effort in that direction - and its hot spots and chances. Learn about the Maryland Online Data Privacy Act and how it challenges big tech’s preferences. Discover what Max Schremms, AI, and birthdays have in common. Episode 169 explores these topics from April 2024 in fifteen minutes. Join Yugo Nagashima of Frost Brown Todd LLP in conversation with the Data Privacy Detective for this monthly update on major data privacy developments. Time stamps: 00:48 — APRA 07:58 — Maryland 15:41 — Schremms...2024-05-0223 minData Privacy DetectiveEpisode 167 — Colorado act to guard our brains: the Privacy of neural dataIn April 2024 Colorado became the first U.S. state to declare neural data - what goes on in our brains - to be “sensitive data” subject to its Privacy Act. Neural data will be treated the same as medical and other sensitive data such as fingerprints and facial images. The law will permit individuals to access, delete and correct their neural data. It will require organizations collecting neural data to obtain prior consent and disclose what they will do with it . https://leg.colorado.gov/sites/default/files/2024a_1058_signed.pdf Explore why this pioneering data...2024-04-2516 minData Privacy DetectiveEpisode 166 — Digital Identity Systems: EstoniaFor about ten years, Estonia has pioneered a digital ID system for its 1.3 million citizens. Every Estonian receives a digital identity at birth or later. Estonians use this e-ID for a host of interactions with government and the private sector. The e-ID is not guarded zealously like a U.S. Social Security number. Instead, it is a kind of public key, with personal information about the individual held separately and securely. Is Estonia’s e-ID system helpful or hurtful to individual privacy? This Episode explores Estonia’s ongoing experiment. We consider how the system works and how digita...2024-04-1813 minData Privacy DetectiveEpisode 165 — Health data, HIPAA, and PrivacyOur medical and health data are valuable - both to promote public health and to enrich data brokers selling our sensitive personal information without our consent. HIPAA is the U.S. federal statute intended to safeguard our medical information - but it does not cover many of the ways our information is released and shared, with unintended consequences and risks. Episode 165 considers the difference between PI and PII and how organizations and individuals can safeguard our health information. Learn the de-identification process of organizations that aim for both HIPAA compliance and privacy-centric reputation. John Cook, President of...2024-04-1114 minData Privacy DetectiveEpisode 164 — March 2024 Data Privacy NewsEpisode 164 covers three March 2024 developments: Florida bans social media platform accounts of children under 14 - and more; Illinois modifies its pioneering biometrics laws; and President Biden and the House of Representatives act together about the sale of personal information to countries “of concern.” Consider how social media platforms are affected by Florida’s new effort to limit social media use by most minors - and how this creates privacy risks in an unintended way. https://www.flsenate.gov/Session/Bill/2024/3/BillText/er/PDF Explore how and why Illinois’s legislature first-in-the-States code regulating biometrics is consideri...2024-04-0428 minData Privacy DetectiveEpisode 163 — You and Your Data Identity: How data private can we be?Identity Orchestration - the difference between Identity and ID. Join Gerry Gebel, IT veteran, now Head of Standards at Strata Identity - https://strata.io. Gerry leads an effort to develop Identity Query Language, a policy orchestration standard. Strata Identity pioneered the concept of Identity Orchestration, which helps organizations integrate and control incompatible identity systems. Consider the state of data privacy today in a dizzying world of information flows. Can separating credentials from identity create more secure, private ways for us to participate in the digital universe? Will passwords become an historical relic? Is anonymity possible? If n...2024-03-2815 minData Privacy DetectiveEpisode 162 — Public Records and Privacy: Rethinking what’s public about usFrom the day of birth, and perhaps even earlier, we become public data subjects. Without our express consent, our personal information is collected and poured out like salt from a shaker because of public records laws. There has been little federal attention to this for 50 years, and state laws vary. Tune in for an exploration of many ways in which we are data public beyond our personal control. Is it time to consider a change? Whether it’s to document major life events, property purchases, voting, and other things, laws require the collection and public release of va...2024-03-2113 minData Privacy DetectiveEpisode 161 — Privacy and the Online OnslaughtPrivacy - “freedom from unauthorized invasion,” says Webster’s Collegiate Dictionary, or “the quality or state of being apart from company or observation.” The Detective did not authorize an online onslaught. But every day my computer and phone are bombarded with unsolicited ads and messages. My digital space is invaded by demands for my attention. I’m forced constantly to declutter. I try to swat away these pests, like waving arms at mosquitoes in a smarmy jungle. Advertising, promotions, social media I don’t belong to clamoring to connect me with friends I’ve never met, strangers grasping to clai...2024-03-0714 minData Privacy DetectiveEpisode 160 — Data Privacy News from February 2024: California and FloridaJoin Yugo Nagashima, data privacy and technology attorney at Frost Brown Todd, as he and the Data Privacy Detective discusses two major topics from February 2024. Learn how DoorDash and California settled a dispute under California’s privacy law that raises important issues for business and consumers. DoorDash was accused of failing to inform customers about its providing their personal information to marketing co-operative members, which then sent targeted advertisements to the customers. California claimed that DoorDash did not inform its customers about this and treated the sharing as a sale of personal information banned under the CCPA. Wh...2024-02-2921 minData Privacy DetectiveEpisode 157 — Data Privacy Developments from January 2024: Videos, State Codes, and App StoresTune in for three top January 2024 data privacy developments in the Detective’s monthly update. Yugo Nagashima and Brion St. Amour, data privacy and tech attorneys at Frost Brown Todd LLP, join the Detective for a monthly roundup. Explore: How the Video Privacy Protection Act (a U.S. law from video rentals days) is alive in the internet age and a centerpiece of class actions – and how tech companies assert the First Amendment as a shield to the claims How New Hampshire and New Jersey adopt comprehensive consumer data protection statutes, accelerating a trend towards having...2024-02-0820 min
Data Privacy DetectiveEpisode 155 — Data Privacy News from December 2023Episode 155 considers three important developments as 2024 opens:
How the European Union’s pending AI Act blazes a new trail
How umbrella insurance may or may not apply to claims involving biometrics
How Quebec’s 2023 data privacy act will reshape privacy notices throughout North America.
Yugo Nagashima and Brion St. Amour, attorneys with the coast-to-coast U.S. law firm Frost Brown Todd LLP, team with the Data Privacy Detective to cover these three essential matters.On December 9, the European Union published a preliminary agreement on the Artificial Intelligence Act, a pioneering law that provides a fram...2024-01-0427 min
Frost Brown Todd PodcastEpisode 142 — September 2023 Data Privacy NewsAmazon Store challenges the European Union over whether it is a VLOP. What’s that, you ask? Find out and discover how an EU Court issued an early split decision under the EU’s Digital Services Act. America’s first state, Delaware becomes the 12th state to adopt a comprehensive data privacy code. Google agrees to pay $93 million, strengthen its privacy policies, and be more transparent about location tracking, to settle California claims.
Explore the deeper meaning of these September 2023 data privacy developments. Yugo Nagashima, Brion St. Amour, and Joe Dehner, members of Frost Brown Todd LLP’s Data Privacy and Cybe...2023-10-0523 minData Privacy DetectiveEpisode 142 — September 2023 Data Privacy NewsAmazon Store challenges the European Union over whether it is a VLOP. What’s that, you ask? Find out and discover how an EU Court issued an early split decision under the EU’s Digital Services Act. America’s first state, Delaware becomes the 12th state to adopt a comprehensive data privacy code. Google agrees to pay $93 million, strengthen its privacy policies, and be more transparent about location tracking, to settle California claims. Explore the deeper meaning of these September 2023 data privacy developments. Yugo Nagashima, Brion St. Amour, and Joe Dehner, members of Frost Brown T...2023-10-0523 minData Privacy DetectiveEpisode 138 — Data Privacy News From August 2023: India’s new Act, Biometrics, and the CFPBAugust 2023 was a news-filled month for data privacy. Tune in for a review of top developments:Biometrics – how Illinois deals with ClearviewAI’s use of facial recognition data and how a new lawsuit challenges Amazon’s and Starbucks’ use of biometric payment systems in New York CityCFPB – how the U.S. Consumer Financial Protection Bureau has declared its intent to regulate data brokersIndia – how its newly adopted Digital Personal Data Protection Act charts an independent course to protecting personal digital data privacy of Indian residents.Brion St. Amour and Yugo Nagashi...2023-09-0719 minData Privacy DetectiveEpisode 137 — Foreign Intelligence & Data Privacy - FBI Access to FISA DatabasesThe U.S. Government collects data globally about persons and organizations. In doing so, it collects vast amounts of data about U.S. persons “incidental” to collecting foreign intel for national security purposes. Since the Carter Administration when the Foreign Intelligence Surveillance Act (FISA) became law, this has raised conflicts between the personal privacy of U.S. and foreign persons and the Government’s interest in national security and crime prevention. The FBI has accessed FISA databases millions of times through U.S. person queries without a warrant – creating front-page news and raising major concerns from the left and right of...2023-08-2422 minData Privacy DetectiveEpisode 134 — Data Privacy News from July 2023: Three major developmentsJuly 2023 was hot – record setting global temperatures. Likewise in the data privacy world. Tune in for an exploration of three top topics in data privacy by Frost Brown Todd’s Yugo Nagashima and Brian St. Amour with the Data Privacy Detective.Illinois – major Supreme Court decision from the first state to adopt a biometric data privacy law – raising the stakes for businesses in using biometrics in the workplace.U.S./EU – a third attempt to facilitate personal data flows between the European Union and the United States is deemed “adequate” by the EU – will it work despite two...2023-08-0326 minData Privacy DetectiveEpisode 131 — Top Data Privacy Developments in June 2023: Oregon, California, and TikTokOregon, California, and TikTok top the list of data privacy developments of June 2023. Tune in for how Oregon’s new data privacy statute blends the best of California and other state statutes for a comprehensive code and adds a unique twist about who can enforce it. Learn how a California court extended the effective date of a California agency’s regulations drafted to implement the Golden State’s pioneering California Consumer Privacy Act. Consider a whistleblower’s sworn testimony that contradicts TikTok’s long-held position that it does not and will not share personal data of TikTok users with the Chines...2023-07-0617 minData Privacy DetectiveEpisode 130 — Privacy In The US WorkplaceEmployers and employees – how much privacy is there in the workplace? Episode 130 explores this question in the United States. What’s an employee’s reasonable expectation of privacy while working? How do federal and state laws limit employer surveillance of employee activity? What limits are there to an employer’s monitoring of employee use of company time and property? Employees use company-provided computers, phones, and other property for a variety of personal purposes, often injecting personal information through a company’s IT system. What should employers and employees do about this? And what about departing and former employees –...2023-06-2923 minData Privacy DetectiveEpisode 124 — Data Privacy & the Automobile: Your car is watching, recording, and sharing your dataThe modern automobile – a marvel of technology and transportation. It collects enormous amounts of data about us. This information is used for continuous improvement in design and safety and for our convenience. But it also creates risks to personal privacy. Episode 124 provides a tour of what automakers, suppliers, and users can do to create fair controls over how the automobile monitors, records, and shares personal information.Standard setting includes the Alliance for Automotive Innovation, in its Consumer Privacy Protection Principles. NIST (the National Institute for Standards and Technology) issued 2023 revisions to its Cyber-Security Framework. In the absence of...2023-05-1118 minData Privacy DetectiveEpisode 119 – News Digest: Data Privacy Developments — ChatGPT, Iowa, Spyware, and TikTokWhat do ChatGPT, Iowa, TikTok, and Spyware have in common? They all made data privacy news in March 2023. Italy’s Data Protection Authority blocked ChatGPT internet use on privacy grounds, the first western government to do so. Iowa became the sixth U.S. state to adopt a comprehensive personal data protection code. President Biden issued an Executive Order against federal use of social media containing spyware, without expressly naming TikTok or China as the targets.Join the Data Privacy Detective’s conversation with Mike Nitardy and Yugo Nagashima, attorneys with the Data Privacy Team of Frost...2023-04-0617 minData Privacy DetectiveEpisode 114 - News Digest: CA Privacy Rights Act, FTC settlement w/ GoodRX, and proposed EU Data ActThe Data Privacy Detective welcomes Frost Brown Todd attorneys Mike Nitardy and Yugo Nagashima to cover three important developments in the world of data privacy: -Updates to the California Privacy Rights Act (“CPRA”) – highlights of final regulations just issued-FTC settlement with GoodRX - the first enforcement of the Health Breach Notification Rule – its meaning for the healthcare industry and us-European Commission’s proposed “Data Act,” which could radically change the rules of data sharing and stimulate competition in tech sector Time stamps:01:15 - California Priva...2023-03-0217 minData Privacy DetectiveEpisode 113 - Business Email Compromise Attacks: What Can Be Done?Business Email Compromise – it’s a major way that global thieves steal trillions of dollars. Bill Repasky, an attorney at Frost Brown Todd LLP, with years of experience in electronic payments and cyber-fraud defense, explains how attacks of this type occur, why they are growing, what can be done to prevent them, and what a business can do if attacked this way.Common types of Business Email Compromise attacks are what appear to be incoming customer payments, outgoing payments to suppliers of goods and services, and internal attacks (where a mal-actor takes over an empl...2023-02-1620 minFrost Brown Todd PodcastQuick Announcement: Data Privacy Detective on Privacy Week Podcast Palooza (Thursday, Jan 26)The Data Privacy Detective Joe Dehner will be appearing as part of the LinkedIn Live event, "Privacy Week Podcast Palooza."
Tune in on Thursday, January 26 from 3:00 to 4:00 p.m. EST: https://www.linkedin.com/video/event/urn:li:ugcPost:7021476486180212738/2023-01-2401 minData Privacy DetectiveEpisode 96 - We Are Being Watched, Recorded, and Targeted by “Things”Data privacy and the laws that protect our personal information mostly deal with digital data and data equipment like computers and smartphones. But the Internet of Things – IoT – is meeting data infrastructure (listen to Episode 90 about the Edge for more on that). Things we don’t think of as data collectors collect our personal information and share it with others, often without our notice or consent, and sometimes in ways we do not want.
Is the law ready to deal with this? Daniel Murray, an intellectual property and technology transactions attorney at Frost Brown Todd LLC join the Detective in explor...2022-08-3018 minData Privacy DetectiveEpisode 95 - Russia Ratchets Control of the RussianData localization – we’ve devoted several episodes to what countries are doing to control and restrict data flows involving their residents. What happens when there’s a war (or “military operation” if you prefer) going on? Do recent actions by the Russian government reflect a growing trend toward a splinternet, treating data as though it were national cattle being locked within a corral? Or is this more a reaction to sanctions imposed by other nations, having little do with data?
This podcast considers how data localization is on the rise in democracies like Indonesia, but India’s government shelved a draft nation...2022-08-1917 minData Privacy DetectiveEpisode 93 - 5G and Data Privacy5G is the buzzword for the new generation of mobile networking. It brings blazing speed to digital communication. With that comes concern about the impact on our privacy.
5G speeds up data sharing – the good, the bad, the annoying, the criminal. With the emergence of the Edge linking devices and data infrastructure (DPD podcast 90), 5G shares information in virtual real-time about your health, your highway speed, your browsing and entertainment, your choices in a grocery store, and your location. In equally instant time, this data will be shared by a growing number of companies and people watching and listening to us...2022-07-2924 minData Privacy DetectiveEpisode 85 - Japan’s New Data Privacy Act, 4 Key DevelopmentsJapan’s Act on the Protection of Personal Information (APPI) becomes effective on April 1, 2022. The APPI strengthens the country’s comprehensive personal data privacy code and affects all businesses that collect or process personal information of Japanese residents.
Yugo Nagashima of Frost Brown Todd LLC explores four key developments that affect global business:
1. “Person Related Information” – a new category of data – with consent required to transfer such data to a person related information handler.
2. Extra-Territorial Reach – Instead of an adequacy approach (like the EU), Japan requires a business that will handle Japanese personal information outside Japan to have the consent of those perso...2022-04-0117 minData Privacy DetectiveEpisode 71 - Doxing and Kentucky’s Pioneering Anti-Doxing StatuteKentucky is perhaps the first state to adopt a comprehensive anti-doxing statute that creates a civil tort of doxing, as well as providing explicit criminal penalties for defined doxing conduct. It allows Kentucky residents to sue someone for intentionally disseminating their personal identifying information (PII) with an intent to intimidate, abuse, threaten, harass, or frighten a person or immediate family or household member.
In this podcast episode, Justin Fowles, an attorney in Frost Brown Todd LLC's Louisville, Kentucky office, shares key insights on what the new law contains and could mean for individuals' and businesses' online behavior.
What is doxxing – or...2022-01-2418 minData Privacy DetectiveEpisode 69 - Ransomware, Negotiating With Digital KidnappersRansomware. It’s in the headlines. It’s digital organized crime across borders.
When an organization’s IT system freezes with its data locked by a ransomware gang, what happens? Ransom is demanded, and ransom often gets paid. But how does this work?
In this podcast episode, Bill Repasky, attorney with Frost Brown Todd LLC, shares key insights on the process of negotiating with ransomware criminals. They want payment in cryptocurrency. Victims want their data and systems restored. This becomes a business transaction. But not a typical one.
Ransomware strikes in 2021 involve highly sophisticated criminal syndicates. To them it’s about th...2021-08-0516 min
Data Privacy DetectiveEpisode 47 - Cookies and California, Businesses BewareCookies in the internet sense are packets of data that a persons’ computer receives when visiting a website. Without a cookie sent by an online retailer, every time one moves to a different page on a site, the visitor would need once again to supply account data and other information – a terrible burden! But cookies also represent a potential threat, as disguised cookies can install viruses or malware on our computers, and supercookies and zombie cookies pose other threats to personal privacy.
Because a cookie can represent a third party that is accessing personal information of someone visiting a website, webs...2019-12-2308 min
Data Privacy DetectiveEpisode 43 - What You Need To Know About Maine’s New Privacy LawSometimes it seems the United States is more a loose federation than a national government. States have a major role in law-making. Data privacy is no exception. A recent law adopted by the State of Maine differs greatly from the California act that will come into force on January 1, 2020. Maine’s law will be effective on July 1, 2020. This podcast hits the highlights of it.
Melissa Kern, Co-Chair of Frost Brown Todd LLC’s Privacy and Data Security Team explains that the Maine law applies to broadband internet access services – the folks who bring us access to the internet – not website hosts, n...2019-08-2809 min
Data Privacy DetectiveEpisode 37 - Catching Serial Killers, Employee Biometrics, Tracking and Personal Data PrivacyWhat do serial killers, employees who don’t want their fingerprints shared and a U.S. Senator have in common? Data privacy. In this podcast, Victoria Beckman, Co-Chair of Frost Brown Todd’s Privacy and Data Security Team, discusses this and other news.
If you have ideas for more interviews or stories, please email info@thedataprivacydetective.com.2019-06-0812 min
Data Privacy DetectiveEpisode 36 - Five Hot U.S. Data Privacy DevelopmentsThe Data Privacy Detective turns the spotlight on five American data privacy developments in a conversation with Melissa Kern, Co-Chair of Frost Brown Todd’s Privacy and Data Security Team.
1. California’s data privacy law, CCPA, comes into force in 2020. It’s occupied attention because of California’s size and its potential extraterritorial application. It provides limited rights for individuals to sue companies that violate CCPA, restricted to certain cases of data breach. Privacy advocates were disappointed when the California State Senate rejected a bill to empower individuals to sue companies that violate any part of CCPA, a big win for the...2019-05-2410 min
Data Privacy DetectiveEpisode 35 - Hot Topics In Data Privacy - From The US FrontThe May 2-3, 2019 International Association of Privacy Professionals Conference featured leading U.S. officials and participants in the data privacy field. Mike Nitardy, a certified Privacy Professional (U.S.) and data privacy attorney at Frost Brown Todd LLC shares highlights from the conference.
If you have ideas for more interviews or stories, please email info@thedataprivacydetective.com.2019-05-1312 min
Data Privacy DetectiveEpisode 31 - Data Incidents And Breaches: What Mid-Sized Companies Do When One HitsData incidents arise regularly for businesses. The perpetrators range from sophisticated scoundrels seeking a quick ransom payment, to foreign governments conducting industrial espionage, to thieves seeking inside information, to distant hackers seeking personal data to sell on the dark web. When an incident arises, companies turn to legal counsel as part of the response team. In this podcast, Bob Dibert, a Frost Brown Todd attorney with 30 years’ experience and a veteran of data incidents, discusses how incidents arise and how they’re handled.
There’s a three-step approach when an incident arises:
1. Contain: Immediately aim to stop further leakage and preven...2019-03-0315 min
Data Privacy DetectiveEpisode 26 - How Safe Is The Personal Data You Provide To State Governments?Because U.S. states employ over 16 million people and hold the data of almost all American residents, state governments are major targets for data villains seeking to obtain data about us. How safe is our personal information in the hands of state governments and what security challenges must states address to better protect personal data?
Podcast guest Trey Grayson is a veteran of these issues, having served as Kentucky’s Secretary of State for eight years and later as director of Harvard’s Kennedy School of Government’s Institute of Politics and member of the President’s Commission on Election Administ...2018-08-1310 min
Data Privacy DetectiveEpisode 11 - Tech Support Scams: How to avoid them and what to do if you fall for oneIn this podcast, the Data Privacy Detective talks about tech support scams with Michael Severini, Director of Information Security for one of America’s large law firms, Frost Brown Todd LLC.
A tech support scam can start with a phone call claiming to provide computer support and security. But increasingly this scam pops up when you click on a website and your screen freezes, with a warning page that your pc is infected and you need to call a toll-free number immediately for help.
If you have ideas for more interviews or stories, please email info@thedataprivacydetective.com.2017-08-2406 min
Roundsourcing: in a globalized world, opportunities for sourcing goods, services, talent, technology and ideas come from anywhere around the globe.Final Thoughts From BrazilAs the 2016 SOAR Business Mission to Brazil concludes, this podcast episode offers parting thoughts from the airport in Belo Horizonte. Despite a highly protectionist national economy, the bustling economy of Belo Horizonte is evidence that roundsourcing is moving Brazil to a new level on the world scene.2017-03-2203 min
Roundsourcing: in a globalized world, opportunities for sourcing goods, services, talent, technology and ideas come from anywhere around the globe.The iPhone and Us- should China or U.S.A. assemble iPhones?Apple iPhones come from China. Should the U.S. slap huge tariffs on their import? Let’s consider the facts.
The iPhone is an American product sourced of U.S.-based inspiration and design. Conceived and engineered in California and North Carolina, its brain, chips, audio elements and glass are made by workers in Texas, Kentucky, Ohio, California and other states. Apple sources everything where quality and cost dictate, even having its arch-rival Samsung provide its microchips. A French-Italian company in Switzerland provides one critical component where it’s best in class. Japan, South Korea, Taiwan and other high-wage countries cont...2017-01-0205 min
Roundsourcing: in a globalized world, opportunities for sourcing goods, services, talent, technology and ideas come from anywhere around the globe.Interview With Alana Portes, International Analyst for the State of Minas Gerais (Brazil)The Roundsourcerer visited Minas Gerais in Southeastern Brazil, where he met with Alana Portes to discuss the state’s investment in international partnerships to benefit science, technology and innovation. Portes is an international analyst at the National and International Partnership Advisory for the State Secretariat.2016-11-2203 min
Roundsourcing: in a globalized world, opportunities for sourcing goods, services, talent, technology and ideas come from anywhere around the globe.Interview with Fabiana Kent Paiva at the FINIT Innovation Fair(Brazil)Belo Horizonte was host to the first ever International Fair of Business, Innovation and Technology (FINIT). Organized by the Minas Gerais Secretariat of Science, Technology and Higher Education, the four-day event was one of the biggest technology and innovation events in the world with some 10,000 visitors daily. The goal of the event was to bring together startups, large companies, students, researchers and other professionals in technology and innovation. This episode of the Roundsourcing podcast series from Brazil is an interview with Fabiana Kent Paiva, international analyst for the government of Minas Gerais, recorded at FINIT.2016-11-2002 min
Roundsourcing: in a globalized world, opportunities for sourcing goods, services, talent, technology and ideas come from anywhere around the globe.Interview with Tulio Teixeira, international business analyst for FIEMG in Belo Horizonte (Brazil)The metropolitan area of Belo Horizonte in Minas Gerais, Brazil, is the fifth largest industrial region of Latin America. Over the last decade, its GDP has grown more than that of Sao Paulo and Rio de Janeiro respectively, while enjoying a nearly 30% lower cost of living. The area has successfully attracted foreign investment and has established itself as the second largest exporter in the country. FIEMG (The Federation of Industries of Minas Gerais) is an umbrella organization supporting the growth and sustainability of the industry in the state. This episode of the Roundsourcing podcast series from Brazil is an interview...2016-11-1803 min
Roundsourcing: in a globalized world, opportunities for sourcing goods, services, talent, technology and ideas come from anywhere around the globe.Embraer: How the world’s third largest airplane maker sources from the USA (Brazil)The Brazilian aerospace manufacturer Embraer is one of the largest manufacturers of commercial jets in the world, but only sources 18% of its content value in Brazil. It indicates the supply chain is highly global, even within an exceptionally protectionist country like Brazil.2016-11-1504 min
Roundsourcing: in a globalized world, opportunities for sourcing goods, services, talent, technology and ideas come from anywhere around the globe.The intertwining economies of the North and South American Giants (Brazil)While visiting Brazil on an inbound trade mission in November 2016, the Roundsourcer had the opportunity to meet with the Honorary Consul of Brazil to the State of Washington, Pedro Augusto Leite Costa. Costa has a wealth of experience when it comes to Americans doing business in Brazil and shared his top tips for successful interactions with the largest country and economy in South America.2016-11-1303 min
Roundsourcing: in a globalized world, opportunities for sourcing goods, services, talent, technology and ideas come from anywhere around the globe.Will Britain Exit Brexit?For the United Kingdom to leave the European Union, it must start the process by sending a letter beginning a formal process. Who has authority to send the letter? Many assume it is the British Prime Minister. But that’s not at all clear. What if it requires a vote of Parliament? Then Britain may exit Brexit and stay in the European Union after all. What’s ahead in this process? Roundsourcing explores this mystery from Luxembourg, home of the European Court of Justice, with a British-born attorney practicing in Brussels.2016-10-0206 min