The Data Protection and Privacy Podcast

What The EXPERTS Do Not TELL Us About Data Protection? Part 29. Aakash Suri on Privacy, AI, and Culture Change

Mon, 29 Dec 2025 17:00:00 +0000

Aakash Suri joins David Clarke to reveal how privacy can drive business, demystify AI governance, and end tick-box compliance for good.

Guest: Ash Siri, Founder of AS Privacy and AI Solutions Ltd

1. Privacy as a Strategic Enabler — Not a Blocker

Ash positions privacy as a business asset, not a compliance burden.
He communicates legal requirements in plain English and offers practical steps, gaining trust from senior stakeholders.
By aligning privacy with business goals, he earns top-down buy-in and builds privacy into strategic objectives.

Insight: Translate law into value. Privacy earns respect when it drives business outcomes.

2. In-Person Training > Tick-Box E-Learning

Ash designed live privacy training that replaced generic e-learning.
Used interactivity, real examples, and group tasks to create engagement and cultural change.
Everyone from customer service to board members participated.

Insight: Changing behaviour requires human connection, not slide decks.

3. Proactive AI Governance is Missing

Most companies rush into AI for efficiency but lack governance.
Ash advises organisations to ask: “Where’s your policy? Who’s accountable?”
Governance doesn’t have to be complex — just clear, intentional, and privacy-by-design.

Insight: If you're using AI without a policy, you’re gambling with compliance.

4. Incident Management Requires Calm, Speed, and Process

Built practical incident response systems — forms, workflows, and clear roles.
Created a safe culture where teams felt comfortable reporting issues.
Emphasised speed of execution, not fear.

Insight: Most failures happen in the first 2 hours. Clarity beats chaos.

5. Build Privacy Culture Through Simplicity, Trust, and Visibility

Ash used SharePoint hubs, quizzes, sweet incentives, and dialogue to make privacy visible and normal.
Delivered transparency training that related directly to people’s day-to-day jobs.

Insight: Privacy works when people understand how it affects them, not just the business.

You can contact Aakash Suri here

https://www.linkedin.com/in/aakashsuri-thoughtleader/

The latest in Data Protection and Privacy Podcast by David Clarke
Follow me on Twitter @1davidclarke 96.1k Followers
Join Linkedin GDPR Group 33,475 Others Members for FREE
CoAuthor of an ICO certified GDPR scheme

What The EXPERTS Do Not TELL Us About Data Protection? Part 28: The Hidden Link Between GDPR and Competition Law

Mon, 06 Oct 2025 12:00:00 +0100

In this episode Arletta Gorecka Ph.D in Competition law | Lecturer in law at GIC | discusses competition law and privacy

🎙️ Top 5 Insights from the Podcast with Arletta Gorecka

Topic: Competition Law, Privacy & the Facebook Case

1. Facebook’s Exploitation = Competition Breach via Privacy Violations

The German competition authority found Facebook abused its dominant position not through pricing or exclusion but by violating users' privacy.
Consent was often buried in complex terms; users weren’t truly aware they were agreeing to pervasive data tracking.
Insight: This case set a precedent for framing GDPR breaches as competition law violations.

2. Excessive Data Collection Can Be Anti-Competitive

Under Article 102 TFEU, collecting personal data in ways users don’t understand can be seen as an exploitative abuse.
Even “privacy-enhancing” features like Apple ATT and Google Privacy Sandbox may still mislead or confuse users.
Point: Quality degradation (privacy loss) can now be treated as harm to consumers — even if there’s no price involved.

3. “Privacy Traps” Are a Growing Concern

Whether a platform claims to be privacy-friendly or not, users can still be manipulated or exploited.
Alet introduces the idea of the “privacy trap” — where both pro-privacy and anti-privacy approaches can lead to exploitative practices.
Key Thought: It’s not just about collecting data — it’s about how and why it’s being collected.

4. EU Law Now Recognises GDPR Breaches in Competition Context

The CJEU (Court of Justice of the EU) now affirms that GDPR violations can be considered under competition law, but it’s not automatic.
Collaboration between Data Protection Authorities (DPAs) and Competition Authorities is crucial — though still inconsistent across EU states.
Takeaway: Legal coordination is improving, but still needs reform (e.g., decentralising enforcement beyond Ireland).

5. Transparency Is the Solution — For Both Consumers & Businesses

People often don’t read or understand terms, and consent is mostly uninformed.
Alet recommends practical transparency tools like videos, visual cues, or real-time data usage popups to help users understand what’s happening.
Advice to businesses: Be clear, simple, and proactive about data use.
Advice to users: Know that your data = your value, even if you don’t pay with money.

You can contact Arletta Gorecka Ph.D here

https://www.linkedin.com/in/arletta-gorecka-25110413b/

Views are personal. Not legal advice. Info based on public sources at time of recording.

What The EXPERTS Do Not TELL Us about Data Protection? Part 27 – Securing AI Before It Secures You – With Stas Levitan from DeepKeep.ai

Wed, 01 Oct 2025 09:00:00 +0100

In this episode with Stas Levitan, AI Governance Expert & Co-founder @ DeepKeep we dive deep into the wild west of AI security, shadow AI, and the real risks lurking behind your favourite GenAI tools. Stas shares hard-hitting insights on why most companies are blind to their AI usage, and how governance isn’t just about tick-box compliance — it’s about survival.

Here’s what we covered:

AI Risk Starts Way Before You Deploy It Most think risk begins at runtime. Nope. It starts the moment you grab that model from a repo — and trust me, most are not as “safe” as they look.
Shadow AI Is Everywhere Employees are quietly using ChatGPT, Gemini, and open-source models — often with good intentions, but zero oversight. Big risk, bigger blind spot.
Guardrails Aren’t Optional Anymore Enterprise AI needs serious guardrails — not just generic APIs. Think AI-native tools that track, monitor, and enforce behaviour in real time.
LLMs Don’t Forget… Ever Feed your chatbot personal data, and you might just see it pop up later — possibly in someone else’s output.
AI Security ≠ Traditional SecurityFirewalls won’t save you here. This is about controlling model behaviour, not just access and networks. Totally different mindset needed.
Big AI Providers = Not Enterprise-Ready The default tools don’t cut it. The second you fine-tune a model or use it with your data — you own the risk.
EU AI Act Isn’t Just Hype — It’s Happening Risk assessments, monitoring, documentation — this isn’t optional for high-risk sectors. And no, you probably aren't ready yet.
Step One: Get Visibility You can’t protect what you can’t see. Start by discovering what AI is actually being used in your org — you might be shocked.

It’s a frank and eye-opening conversation that every CIO, CISO, and compliance lead should hear. Tune in — and if you’re using GenAI without a plan, maybe… stop.

Stas Levitan can be contacted here

•DeepKeep official website: https://www.deepkeep.ai
•Stas Levitan LinkedIn: https://uk.linkedin.com/in/stas-levitan

What The EXPERTS Do Not TELL Us about Data Protection? Part 26 – Emeka Mosanya, CTO at Certifaction: The Only E-Signature Platform That Can’t See Your Documents. Built for Privacy. Compliant by Design.

Sun, 18 May 2025 07:00:00 +0100

Emeka Mosanya, CTO of Certifaction, talks to David Clarke about how their Swiss-based e-signature platform ensures total document confidentiality using end-to-end encryption and local processing—ideal for sectors like healthcare and finance.

Top 5 Key Points:

Zero Document Access: Certifaction never sees or stores your documents—everything is fully encrypted.
Local Processing: All signing happens in your browser or via an on-premise gateway—no cloud exposure.
Strict Compliance: Fully aligned with GDPR and Swiss data protection laws; identity is traceable but private.
ISO 27001 Certified: Strong security framework with end-to-end encryption and no backdoors.
Fast Integration & White Labelling: Simple Docker-based API, designed to embed easily into third-party platforms.

Emeka Mosanya CTO at Certifaction can be contacted here https://www.linkedin.com/in/emekamosanya/ info@certifaction.com

What The EXPERTS Do Not TELL Us about Data Protection ? Part 25 Lorenza Binkel CEO at prodify.it AI regulation platform that enables a company to use any AI platform safely. Without Worrying About Data Leaks

Wed, 06 Nov 2024 07:00:00 +0000

5 Key Points from the Podcast with Lorenza Binkel CEO of prodify.it

1.Data Protection Challenges: Companies, especially in regulated industries, struggle with secure AI usage due to data leakage risks, prompting many to ban certain AI tools.

2.Prodify's Security Approach: Prodify uses encryption and role-based permissions to control data access, ensuring that sensitive information remains protected within company systems.

3.Compliance and Integration: Prodify supports compliance with GDPR and other regulations by tracking data usage and offering default settings for various regulatory frameworks.

4.Cross-Industry Relevance: While critical in sectors like finance and healthcare, Prodify's solution is adaptable across industries, benefiting teams in areas like sales, law, and creative fields.

5.Implementation Flexibility: Companies can quickly integrate Prodify's basic functions, with more comprehensive solutions available for long-term, secure AI implementation.

Lorenza Binkel CEO at prodify can be contacted here
https://www.linkedin.com/in/lorenza-binkele-17319254/ https://prodify.it/home
https://prodify.it/home

What The EXPERTS Do Not TELL Us about Data Protection ? Part 24 Revolutionizing Data Privacy: How AI is Transforming Privacy Management with Leila Golchehreh of Relyance.ai

Thu, 29 Aug 2024 12:00:00 +0100

5 Key Points from the Podcast with Leila Golchehreh from Relyance.ai

Legacy Issues and Modern AI-Driven Privacy Solutions:
- Traditional privacy tools are outdated, slow, and inefficient. Reliance AI provides a modern, AI-powered platform that automates key tasks like DSARs, data mapping, and records of processing activities, reducing manual effort and increasing accuracy.
AI as Both a Challenge and an Opportunity in Privacy Management:
- AI complicates data privacy but also provides solutions to manage these complexities. Reliance AI uses static code analysis and large language models to predict data processing behaviors and ensure compliance, making privacy management more efficient and scalable.
Benefits of Reliance AI Software:
- - Minimal engineering resources needed for implementation.
  - Fast setup with automation that reduces reliance on manual processes.
  - Provides continuous monitoring and alerts for data inconsistencies, reducing risks.
  - Acts as a "co-pilot" for privacy professionals, enhancing capacity and reducing time spent on repetitive tasks.
Balancing AI Automation with Human Expertise:
- AI handles repetitive and data-intensive tasks, but human experts are essential for strategic decision-making, such as evaluating alternative data processing methods and negotiating nuanced contracts.
Embedding Privacy as a Core Business Function:
- Organizations must go beyond compliance by integrating privacy deeply into all functions. Building cross-functional teams, securing executive buy-in, and leveraging AI like Reliance AI are critical to fostering a privacy-focused culture that builds trust with customers.

Leila Golchehreh, Co-Founder & Chief Strategy Officer can be contacted here https://www.linkedin.com/in/leilagolchehreh/

https://www.relyance.ai/company#contact

What The EXPERTS Do Not TELL Us about Data Protection ? Part 23 Fortified Security: Protecting Legal Data in a Digital World with Rich Kanadjian from Kingston Technology .

Tue, 16 Jul 2024 11:00:00 +0100

Top 5 Key Points from the Podcast with Rich Kanadjian from Kingston Technology

1. Cybersecurity Importance:

Critical for legal professionals to protect client confidentiality.
Increased vulnerabilities due to remote work from the pandemic.

2. Common Vulnerabilities:

Internal servers need strong intrusion protection.
Human errors, stolen credentials, and social engineering are major breach causes.

3. Best Practices:

Use air-gapped systems to disconnect sensitive data from the internet.
Employ hardware encrypted drives like Kingston’s IronKey for data security.

4. Travel Risks:

Public Wi-Fi at airports, hotels, and coffee shops are hotspots for hacking.
Carry data on encrypted drives instead of connecting devices to public networks.

5. Customs and Legal Compliance:

Customs can image devices, exposing data.
Use encrypted drives with features like crypto erase to protect sensitive information.

Rich Kanadjian, Global Business Manager – Encrypted Solutions at Kingston Technology can be contacted here:

www.kingston.com / richard_kanadjian@kingston.com / www.linkedin.com/in/richkanadjian/

What The EXPERTS Do Not TELL Us about Data Protection ? Part 22 Dr. Rachel O'Connell CEO of TrustElevate discusses how to create a safer internet for children by verifying the ages of users under 13 and confirming parental responsibility.

Wed, 03 Apr 2024 14:00:00 +0100

Top 5 Key Points from the Podcast with Dr. Rachel O'Connell CEO of TrustElevate

Overview and Mission of TrustElevate:
- TrustElevate aims to create a safer internet for children by verifying the ages of users under 16 and confirming parental responsibility. This is crucial for companies to comply with data protection laws regarding children’s data.
Methodology for Verification:
- The verification process uses a zero-knowledge privacy model, where parents provide minimal information (child’s name, DOB, parent’s mobile number) that is checked against hashed, authoritative data sources without storing personal data.
Regulatory Environment and Compliance:
- The importance of regulatory compliance is highlighted, noting that regulations like GDPR have increased scrutiny on how companies process children’s data. TrustElevate’s service helps companies navigate these regulations by verifying user ages and parental relationships.
Technological Innovation and Challenges:
- TrustElevate employs AI and multi-factor authentication to verify details provided by parents. The discussion also touches on the limitations of age estimation technologies and the ongoing challenges posed by criminals using deep fakes and other methods to circumvent age verification measures.
Future Vision and Advice for Companies:
- The conversation envisages a future where TrustElevate’s verification process is integrated into various services (e.g., social media, banking) to ensure children’s safety online. Companies are advised to adopt clear policies and collaborate across teams to meet their duty of care towards young users, emphasizing trust as a market differentiator.

Dr. Rachel O'Connell CEO of TrustElevate can be contacted here https://www.TrustEleavate.com/ info@TrustEleavate.com

What The EXPERTS Do Not TELL Us about Data Protection ? Part 21 Alexander Garcia Tobar CEO of ValiMail discusses the Rising Issue of Email Spoofing and AI-Generated Disinformation ,The Prevalence of Fake Emails ,Challenges in Email Authentication Impleme

Mon, 01 Jan 2024 21:00:00 +0000

Top 5 Key Points from the Podcast with Alexander Garcia Tobar, CEO of ValiMail.
Rising Issue of Email Spoofing and AI-Generated Disinformation: Alexander Garcia Tobar discusses the significant increase in email spoofing and fake messages, emphasizing the role of AI in creating realistic disinformation. This technology allows almost anyone to generate credible-looking content, posing serious challenges to discerning truth from falsehood.

Importance of Email Authentication: The core service of ValiMail., email authentication, is highlighted as a crucial countermeasure against the issue of email spoofing. This process ensures that only authorized entities can send emails on behalf of a company or individual, providing a binary, yes-or-no solution to verify email sources.

The Prevalence of Fake Emails: Tobar reveals a startling statistic: 89% of phishing attacks and a significant portion of cyber attacks begin with fake or spoofed emails. He emphasizes the need for widespread implementation of email authentication standards like DMARC to combat this threat.

Challenges in Email Authentication Implementation: Despite the rising adoption of email authentication, Tobar notes that many companies struggle to implement these protocols correctly. Only a small percentage of domains have successfully applied these measures due to the complexity of email systems and the need for expertise in the field.

ValiMail.’s Role and Mission: As the leader in the email authentication space, ValiMail. is actively involved in setting global standards and provides both free and paid services to help companies implement and manage email authentication effectively. Their mission is to enhance trust in email communication, which remains a primary mode of interaction in the digital age.

The podcast provides valuable insights into the challenges and solutions related to email security and the broader implications of AI in creating disinformation. Alexander Garcia Tobar's expertise offers a clear perspective on the importance of email authentication in maintaining digital trust and security.

Alexander Garcia Tobar CEO of ValiMail can be contacted here https://www.valimail.com/ info@valimail.com

What The EXPERTS Do Not TELL Us about Data Protection ? Part 20 Chiara Rustici discusses what business needs to know about the Data Governance Act .Open Data Directive , Digital Markets Act ,Digital Services Act

Sun, 13 Nov 2022 20:00:00 +0000

Dott. Chiara Rustici discusses the Data Governance Act, Open Data Directive, Digital Markets Act, Digital Services Act how they fit together and look at applicable and upcoming data regulation in the EU and tries and draw some conclusions on what that means for business /revenue models and operating models of data-rich businesses.

Dott. Chiara Rustici is a legal analyst and IT law expert with a focus on the new Brussels-Washington digital regulation drive. She is an independent legal scholar affiliated with the Department of Information Engineering, Electronics and Telecommunications (DIET) of La Sapienza University, in Rome. She was elected Chair of the Law Specialist Group at the BCS, formerly known as British Computing Society and ranked among the top 20 GDPR experts by the GDPR institute, a Swiss membership body for professional data protection practitioners. She is a soight after conference speaker and is widely quoted and published on both sides of the Atlantic. She runs her consultancy and research activities between London, Rome and the Italian Alps.

Dott. Chiara Rustici can be contacted via Linkedin here

https://www.linkedin.com/in/chiararustici/

What The EXPERTS Do Not TELL Us about Data Protection ? Part 19 Mihai Ghita Co-founder at Sypher - The Virtual Assistant for Privacy , Discusses Managing Privacy and Data Protection Using the Sypher Platform

Fri, 29 Jul 2022 15:00:00 +0100

Mihai Ghita Co-founder at Sypher - The Virtual Assistant for Privacy Professional https://www.sypher.eu/
Mihai Ghita , discusses how to manage Data protection using the Sypher platform which acts as a virtual assistant to enable complex data protection processes to be managed easily.

Use Sypher to —

Build and maintain accurate ROPA
Create smart privacy notices, connected to ROPA updates
Document technical and organizational security measures
Conduct risk assessments for vendors and processors
Keep track of contracts and data processing agreements
Identify high-risk activities and conduct DPIAs
Manage data subjects requests
Log security incidents and data breaches

https://www.sypher.eu/free-tools

GDPR Readiness Assessment
Website cookie scanner
Sypher is a technology company that develops solutions that help businesses simplify the GDPR compliance process. Our headquarters are in Bucharest, Romania.

This Episode is sponsored by www.iso27k.co.uk

We help Companies , start-ups to meet privacy and cyber security requirements and standards so they close sales deals quicker and can achieve cyber privacy alignment certifications in minimum time

The DataprotectionPrivacy.co.uk podcast is hosted by David Clarke follow me on twitter @1davidclarke 102k followers
https://twitter.com/1DavidClarke

Founder of the linkedin GDPR Technology Group 21k + members
https://www.linkedin.com/groups/12017677

Connect with David Clarke on Linkedin https://www.linkedin.com/in/1davidclarke/

What The EXPERTS Do Not TELL Us about Data Protection ? Part 18 Andrea Giannangelo founder of Iubenda Discusses privacy and online legal compliance tools relating to websites and apps .

Mon, 11 Jul 2022 17:00:00 +0100

Andrea Giannangelo founded Iubenda in 2011, a leading company for privacy and online legal compliance tools relating to websites and apps, where he serves as the CEO of the company. Fast forward 11 years later, he has led it to over 90,000 clients in 100+ countries.

The post-pandemic world has become more and more reliant on digital products and services. In addition, data privacy has increasingly become a top priority for many countries and regions. As a result, many regions have put in place robust and enforceable data regulations by which businesses are expected to comply.

Getting your website or app to be compliant with international privacy laws can be tedious and difficult. iubenda has been designed and developed over the years to make this process rather the opposite: effortless and seamless. The cloud software provides four main customisable products that you can easily integrate into your website or app, to help you comply with popular worldwide regulations.

How listeners can get in touch with iubenda - You can visit our website by heading over to iubenda.com where you can learn more about us and our full product offering. We are also on social media. You can find us on Twitter, Facebook, Linkedin and Instagram by searching for iubenda. Finally, we have a free weekly newsletter for everyone from Business owners to Data Protection Professionals that delivers the latest from the data protection and privacy world. every week to your email inbox. You can sign up free by heading over to dponewsletter.com

What The EXPERTS Do Not TELL Us about Data Protection ? Part 17 Sealit.id discusses Zero Trust Security , Data localisation and keeping control of data via encryption.

Tue, 31 May 2022 20:00:00 +0100

CTO of Sealit.id , Revolutionary Email & File Security discusses Zero Trust security , Data Localisation ,Zero Trust Security and why it is important , Dual key encryption – one key is not held by Sealit.id which means not even Sealit can decrypt your data, Automatically localized data keeping your data in your local region, easily with Zero trust Technology.

The Zero Trust Model ensures no one other than you and your collaborators can decrypt your data
Book a demo to get a 20% lifetime discount, just send an email and reference data protection podcast to sales@sealit.id

Email Sealit at info@sealit.id Website www.sealit.id

What The EXPERTS Do Not TELL Us about Data Protection ? Part 16 Omar ElNaggar, founder and CEO of Weavechain discusses the future privacy of personal data, web 3 , decentralized science ,Privacy Data Lineage, Privacy Data brokerage.

Sun, 15 May 2022 14:00:00 +0100

Omar ElNaggar, founder and CEO of Weavechain , Weavechain brings enterprise big data to Web3. That’s impossible today because public blockchains don’t meet enterprise data governance standards, and no blockchains meet big data performance needs. Our middleware leaves the data in existing high performance databases and uses our smart hashing technology in coordination with a variety of blockchains that meet security needs. This unlocks basic Web3 benefits like tamper-proofing and built-in monetization, and connects Web2 companies to Web3 customers and more.

Join our Discord! The link is on www.weavechain.com

Email us at hello@weavechain.com (hint: it goes straight to Omar)

https://www.weavechain.com

https://www.linkedin.com/company/weavechain/

https://twitter.com/weavechainweb3

https://discord.gg/VjuPrwe4ub

This Episode is sponsored by www.vciso.co

We help Companies , start-ups to meet privacy and cyber security requirements and standards so they close sales deals quicker and can achieve cyber privacy alignment certifications in minimum time

The DataprotectionPrivacy.co.uk podcast is hosted by David Clarke follow me on twitter @1davidclarke 102k followers
https://twitter.com/1DavidClarke

Founder of the linkedin GDPR Technology Group 21k + members
https://www.linkedin.com/groups/12017677

Connect with David Clarke on Linkedin https://www.linkedin.com/in/1davidclarke/

What The EXPERTS Do Not TELL Us about Data Protection ? Part 15 Denis O'Shea, Founder of Mobile Mentor discusses their latest research on Gen Z views on Data protection and Cyber Security and how it is very different to pre pandemic.

Mon, 02 May 2022 17:00:00 +0100

Denis O'Shea, founder of Mobile Mentor. The company was named Microsoft’s 2021 Global Partner of the year for Modern Endpoint Management .Mobile Mentor is a global leader in the endpoint ecosystem, helping clients to navigate the right balance between security and employee experience.

Denis' company has just published the results of a study to understand the hybrid workforce, specifically remote workers coming out of the pandemic https://endpointecosystem.com . A ground breaking new study about how people are actually using devices in high-risk and highly regulated industries. Some of the findings were very surprising he shares some of the key points in the podcast.

The blurred lines between work and personal devices
The changing attitudes of workers since the start of the pandemic.
Gen Z’s new role in the workforce
Privacy notices and GenZ
Cyber training and Gen Z

You can also check out Denis's website: http://www.mobile-mentor.com

This Episode is sponsored by the http://www.TrustBridge.co.uk

We help Companies , start-ups to meet privacy and cyber security requirements and standards so they close sales deals quicker and can achieve cyber privacy alignment certifications in minimum time

The DataprotectionPrivacy.co.uk podcast is hosted by David Clarke follow me on twitter @1davidclarke 102k followers
https://twitter.com/1DavidClarke

Founder of the linkedin GDPR Technology Group 21k members
https://www.linkedin.com/groups/12017677

Connect with me on Linkedin https://www.linkedin.com/in/1davidclarke/

What The EXPERTS Do Not TELL Us about Data Protection ? Part 14 Erwin Grootes discusses Opensource software for Privacy and Security

Mon, 14 Feb 2022 14:00:00 +0000

Erwin Grootes of Mindful IT discusses opensource technology and the difference between security and privacy and how companies can use alternative software to control privacy and security.

https://www.mindfulit.net

Data Protection and Privacy Podcast By David Clarke
@1davidclarke 102k followers
https://www.linkedin.com/in/1davidclarke/
www.vciso.co
Who’s Who in Cybersecurity? 2022 --
Top 20 Privacy Thought Leaders September 2021
Thinkers 360 -- Top 100 Global Thought Leaders and Influencers to follow on Social Media 2020 -- Top Privacy and Thought Leader Thinkers360 2020

This episode is brought to you by Vciso.co !

We help SAAS Companies SAAS Unicorns, B2B SAAS and Pre Revenue SAAS start-ups. to meet privacy and cyber security requirements and standards so they close sales deals quicker and can achieve cyber , privacy alignment certifications faster in minimum time .
www.vciso.co

The DataprotectionPrivacy.co.uk podcast is hosted by David Clarke follow me on twitter @1davidclarke 102k followers
https://twitter.com/1DavidClarke

Founder of the linkedin GDPR Technology Group 21k members
https://www.linkedin.com/groups/12017677

Connect with me on Linkedin https://www.linkedin.com/in/1davidclarke/

What The EXPERTS Do Not TELL Us about Data Protection ? Part 9 Robert Baugh ,CEO at Keepabl Ltd

Sat, 18 Jul 2020 17:00:00 +0100

Robert Baugh CEO at Keepabl Ltd,Privacy-as-a-Service solution, Engineer/Lawyer,General Counsel discusses :
Cyber Essentials and ISO27001, and his findings on the takeup of these certifications.
Demonstrating Compliance with GDPR.
Vendor due diligence.
Complications of GDPR.
Data protection is a team sport.
DPO's marking their own homework.
Robert can be contacted at
https://www.linkedin.com/in/robertbaugh/
hello@kepabl.com
Robertb@keepable.com

Where the Law meets Privacy! Part 2 Lisa Wilson

Mon, 02 Mar 2020 12:00:00 +0000

Carol Tullo OBE (Legal Counsel) chats to Lisa Wilson Data Privacy Specialist experienced with Global Corporates, Local Authorities, and one man Bands

Lisa Wilson can be found on Linkedin
https://www.linkedin.com/in/lisa-wilson-000109153/

What The EXPERTS Do Not TELL Us about Data Protection ? Part 8 Jen GDPR House

Fri, 28 Feb 2020 18:00:00 +0000

Jen House CEO of On Track GDPR talks to David Clarke,
Jen is releasing business secrets so that GDPR/Privacy and Data Protection consultants can grow their businesses,

Jen is also leading a group of Lawyers and GDPR consultants to deliver an article 40 code of conduct.

Jen has released the 5 Day Challenge for GDPR Professionals

The 5-day Challenge is coming…09/03/2020
There were 5.9 million SMEs in 2019 that made up 99% of all UK businesses. They are not buying your GDPR compliance solutions but they need them.

Arm your consultancy business with the FREE tools to convert the notoriously tricky SME market into regular monthly revenue.

The 5-day Challenge is coming…09/03/2020

What is the 5 Day Challenge?
It's an opportunity to transform your business by taking new services to market. We'll support you to take real action and aim for real results.

Join the Challenge

https://www.ontrackgdpr.com/pages/ontrack-partners

To contact Jen support@ontrackgdpr.com

Where the Law meets Privacy! Part 1 Hayley Jaffrey

Thu, 27 Feb 2020 12:00:00 +0000

Carol Tullo OBE (Legal Counsel ) chats to Hayley Jaffrey ,(Global Privacy Leader )

An interesting discussion on how a legal background can help with Privacy ...in some cases.plus much much more!

Hayley Jaffrey,
A passionate and pragmatic privacy professional (CIPP/E & Post Grad Data Protection Law & Info Governance) with a solid background in operational efficiency (LEAN Six Sigma) and a keen interest in digital analytics, adtech, social media, and marketing. , Hayley can be found on Linkedin

https://www.linkedin.com/in/hayley-jaffrey-pgcert-dp-law-cipp-e-98544010/

What The EXPERTS Do Not TELL Us about Data Protection ? Part 6 Josh Amishav-Zlatin

Wed, 26 Feb 2020 12:00:00 +0000

Great Discussion with Josh Amishav-Zlatin CEO of https://breachsense.io/

Josh Explains that one of the most vulnerable parts of IT is the Password and our us eof them contributes to most breaches no matter how good the infrastructure.!
.
A very interesting Outer cycle security defense.

"The average person uses the same password across four different accounts. This means that even if your organization is properly locked down, many of your user’s credentials have been disclosed elsewhere. Instead of reacting after an attack occurs, Breachsense enables you to proactively defend your users who have had their passwords compromised. Breachsense alerts you in real-time when your user’s credentials appear in 3rd party data breaches."

What The EXPERTS Do Not TELL Us about Data Protection ? Part 5 Martin Jackson

Mon, 24 Feb 2020 14:00:00 +0000

Martin Jackson https://www.linkedin.com/in/martin-jackson-ab4147b/ is a GRC , Compliance Manager, Subject Matter Expert, Data Protection Officer Governance,

Martin Jackson, Talks about PET, Privacy Enhancing Technology and the Digital Single Market which is a policy belonging to the European Single Market that covers digital marketing.

Martin has massive experience in Risk & Compliance consultancy & training operation, including GRC, ISO27001/2, NIST Cybersecurity Framework, Cyber Essentials, ISO 31000, ISO 19011 and discusses how it all fits together.

What The EXPERTS Do Not TELL Us about Data Protection ? Part 4 Emma Hall

Sat, 22 Feb 2020 14:00:00 +0000

Emma Hall , Privacy Lead and Legal Counsel, Group Data Protection Officer (GDPO) as well as a fully qualified Solicitor of England and Wales. Talks with David Clarke about Operationalising Data Protection across UK and international jurisdictions including Germany, Italy, France, Spain, Portugal, and Australia.

What The EXPERTS Do Not TELL Us about Data Protection ? Part 3 Rob Andrews

Fri, 21 Feb 2020 14:00:00 +0000

Rob Andrews from www.rethinkingprivacy.com chats to David Clarke about managing cookies at scale "automated over 95% of conventional deployment requirements; removing project management, consultancy, IT, training and support. 10 days for 1000 sites, is realistic"

What The EXPERTS Do Not TELL Us about Data Protection ? Part 2 Dev Bhatt

Thu, 20 Feb 2020 15:00:00 +0000

Dev Bhatt ,Data Protection Officer · Data Consultant · Compliance Manager, Chats to David Clarke about Data Protection in SME's linkedin.com/in/jaydev1/

What The EXPERTS Do Not TELL Us about Data Protection ? Part 1

Tue, 11 Feb 2020 18:00:00 +0000

David Clarke talks to Waqas Hassan, CEO of
Facit Data Systems https://www.facitdatasystems.com/ who has the technology to redact video CCTV quickly and easily, without affecting the data subjects in the video. Waqas Explains the concept, ease of use and how video redaction helps with data compliance, with no extra hardware and easily acquired skills.

EU Representatives After Brexit Jan 31 2020

Fri, 31 Jan 2020 18:00:00 +0000

Today we recorded a half hour podast with Stuart Anderson (XpertDPO) and David Clarke (The Trust Bridge) looking at what happens from midnight tonight (bong from Big Ben or not) with regards to GDPR adequacy and Nominated Representatives in the EU and UK.