Here, Ben Siegel breaks down the idea of “personal information” in terms anyone can understand to help your privacy office succeed. Please share this micro-training within your organization. Want to see more videos like this one? Let us know! Email us at info@privacyref.com
Personal Information Read More »
Ben Siegel, Sr. Privacy Consultant, has extensive experience in conducting and managing privacy risk assessments. In this video, he provides a clear and concise explanation of PIAs, including their purpose, benefits, and key steps involved. Want to see more videos like this one? Let us know! Email us at info@privacyref.com
A Quick Rundown on PIAs Read More »
If you are considering or currently studying for one of the IAPP certifications, you probably have a few questions. I answer these questions all the time, and I haven’t gotten tired of it. But I figured it would be a good idea to centralize a list of answers so others can find them quickly and
So You Want to Pass the IAPP’s Certification Exam? Read More »
The National Institute of Standards and Technology (NIST) Privacy Framework is a free online tool for organizations that can be used to measure privacy risk while protecting individuals’ privacy. The framework was created in 2020 in collaboration with both private and public sector stakeholders to be agnostic to any technology, sector, law, or jurisdiction. It
U.S. State Privacy Laws vs NIST Privacy Framework Read More »
I wrote previously about how privacy doesn’t really care about AI in particular, but that the use of personal information overall is the concern. However, I did not go into detail about what the process for assessing such processing would look like. I want to take some time to give some guidance on how you
Assessing Privacy Processes Read More »
Among the four newly passed comprehensive privacy laws signed in April and May–Kentucky, Maryland, Minnesota, and Nebraska—there are new takes on some common requirements from the existing laws and some entirely new requirements. New Takes on Recent Trends Right to a list of specific third parties The Oregon Consumer Privacy Act introduced a consumer’s right
New State Laws, New Spin on Requirements Read More »
Every organization regularly has to consider budgets. It’s simply a fact of life that companies must determine how best to allocate resources. Privacy professionals know this all too well. Asking for more budget for basic operations, let alone any special projects or new initiatives that need to be undertaken can be a daunting task. So
Selling Privacy to Executives Read More »
California AG CCPA enforcement trends and takeaways The California Attorney General has enacted two major California Consumer Privacy Act (CCPA) enforcement actions so far, respectively against Sephora and DoorDash. A few takeaways can be made by comparing the two cases. Broad interpretation of “sale” of personal information The actions of these organizations were considered sales
CCPA enforcement action takeaways Read More »
The EU AI Act has been agreed upon by the Parliament, Commission, and Council of the European Union and will bring with it obligations for organizations looking to use artificial intelligence. Notable amongst the requirements is the conformity assessment for high-risk uses of AI. We have seen similar requirements in the GDPR with Article 35
Conformity Assessments Read More »
As more US states pass comprehensive privacy laws with technological advances in mind, a recent trend emerging is a requirement that controllers’ websites comply with universal opt-out mechanisms. Here’s a breakdown of everything you need to know about implementing the specific law requirements. What is a universal opt-out mechanism (UOOM)? The term universal opt-out mechanism
Universal Opt-Out Mechanisms FAQ Read More »
