Privacy Ref Blog

What is the difference between privacy and security?

One question that I am frequently asked is “what is the difference between privacy and security?” It sounds simple enough, but the response often gets complicated. Maybe an analogy will help. Continue reading this post…

Posted on May 24, 2016 by Bob Siegel - No Comments
Tags: ,

 


My Mother Understands

Throughout my years in IT, product management, software development, and systems analysis, my Mother never understood what I do. It hasn’t been her fault, but mine; I couldn’t explain in “plain English” what I did. Since becoming a privacy professional she now understands. It may be not as good as being a doctor, but at least she can explain it to her friends.

Continue reading this post…

Posted on May 4, 2016 by Bob Siegel - No Comments
Tags:

 


Don’t Take the Bait

Irony is a state of affairs or an event that seems deliberately contrary to what one expects and is often amusing as a result.  So when I got a phone call asking to speak with Bob Siegel about his room for the upcoming IAPP Summit, I was surprised by the ironic situation I was faced with.  After all, one would expect that an event specifically about privacy would not be dealing with issues like phishing.

Continue reading this post…

Posted on February 29, 2016 by Ben Siegel - No Comments

 


Data Ages like Milk…

Very common questions we get from clients are how much information should they collect and how long they should keep it.  The standard answer is always to collect only what you need to do business and get rid of it when you no longer need it.  Now the questions become what information is truly needed and when is it no longer going to be used?

Continue reading this post…

Posted on February 23, 2016 by Ben Siegel - No Comments

 


Human Errors Will Create Privacy Issues

Regardless of the technology you put in place, the safeguards you have implemented, and the training you have provided, ultimately the success of your privacy program relies on the individuals in your organization. The most recent example of this came at the expense of the US National Women’s Soccer Team (USWNT). Continue reading this post…

Posted on February 8, 2016 by Bob Siegel - No Comments
Tags: , , , , ,

 


New Rules for Moving Data Across the Pond

Does your US organization do business in Europe? If so, the rules for collecting and moving the personal data of EU citizens across borders and into the US are about to change. A new EU regulation is taking shape under a tight deadline and intense pressure that will force changes to some common practices in the digital age which are regarded very differently by the two regions.

Continue reading this post…

Posted on February 5, 2016 by Kathy Stershic - No Comments

 


EU-US Privacy Shield is coming. Now what?

There seems to be a light at the end of the tunnel for organizations previously exporting personal information from the EU to the US under Safe Harbor, the EU-US Privacy Shield. Unfortunately the details of Privacy Shield are not yet available, so what is a privacy officer to do to prepare for utilizing the new agreement? Continue reading this post…

Posted on by Bob Siegel - No Comments
Tags: ,

 


All Steamed Up

Earlier this month, Valve experienced an issue with data caching and what some call a data breach.  Valve is a gaming company famous for many titles, but also for their virtual storefront, Steam.  The short story is that Valve’s virtual storefront, known as Steam, had a glitch that allowed someone logged in to potentially see another user’s personal information.  The personal information included names, digital identities, emails, and possibly credit card information.  For a more complete summary, check out this video.

Continue reading this post…

Posted on January 4, 2016 by Ben Siegel - No Comments

 


Three privacy thoughts to start 2016

Over the past few days I have been pondering everything that has happened in privacy in 2015 and the impact on organizations. My intent was to write a retrospective blog entry, but this morning I decided to look ahead and not in the rear-view mirror. So here are three thoughts to kickoff 2016. Continue reading this post…

Posted on December 31, 2015 by Bob Siegel - No Comments
Tags: , ,

 


Privacy Impact Assessments: Organization-specific or Generic PIAs

I recently had a conversation with a colleague about privacy impact assessments, PIAs, and the tools available to administer them. We quickly became philosophical, trying to weigh whether a generic tool would work or if something that is organization specific is necessary.
Continue reading this post…

Posted on December 7, 2015 by Bob Siegel - No Comments
Tags: , ,

 


« Previous PageNext Page »

Subscribe to our mailing list

Please fill out the form below.

Required

Want to find out more?

Simply go to the contact page, fill out the form, and someone from Privacy Ref will be in touch with you. You can also send an email to info@privacyref.com or call (888) 470-1528.

News

May 10, 2017

Predictive Breach Cost Model
Download our predictive breach cost modelhere.

Latest Blog Posts

May 10, 2017

Accountability
You may be interested in how Wells Fargo has been handling the fallout from their recent scandal.  The summary of the incident is that sales personnel at Wells Fargo were so pressured to meet numbers that they created fake accounts using real consumer information. The practice was rampant at the company.  After being fined just short of $200 million by the Consumer Financial Protection Bureau, Wells Fargo’s executive board was faced with new challenges, specifically holding onto their positions on the board. Continue reading this post...

April 12, 2017

Planning for Summit 2017
With the IAPP Privacy Summit less than a month away, it is time to start planning what you will be doing there.  If you are going to the Summit this year, there are a large number of sessions, speakers, and exhibitors for you to check out and learn from.  This stands alone from the thousands of attendees, all of whom have some level of privacy expertise and experience that you can learn from. Continue reading this post...

Other Recent Posts

PRIVACY REF