The most Epik breach

Behold! The Worst Breach Response! In the last five years, I have seen a fair number of breaches and most of them are similarly—notify appropriate authorities, stop any further damage, […]

WhatsApp paying 225 Million Euro Fine

Earlier today, the Irish Data Protection Commission (DPC) announced a 225 million euro fine against WhatsApp. As many know, WhatsApp is owned by Facebook and this fine was targeted at […]

What’s in a name (or Why Privacy Ref)

An important decision when starting a company is the name. Many people have asked me “why Privacy Ref?” There are actually four reasons the name was chosen.

Dungeons and Data Breaches

It is no mystery that I am a fan of most nerdy things, most of all table-top games like Dungeons and Dragons. Interestingly, the skills necessary to play such games […]

Databreach or Ransomware?

An interesting point about ransomware was made to me after my most recent quarterly breach webinar. Essentially, the statement noted that ransomware is a not the same as a data […]

In person training is back!

COVID is not over, but life is returning to what is being called “normal”. I’m looking forward to traveling, seeing my family, eating in restaurants, going to the movies, and […]

Making Privacy Impact Assessments less of a PIA

Every day I speak with clients about a number of different privacy related matters. However, the one that has become most prominent is setting up or running privacy impact assessments. […]