News Stream Books Videos Web Conferences Subscriptions Advertise About IAPP Publications
Daily Dashboard Daily Dashboard

The day’s top stories from around the world

 Privacy Perspectives Privacy Perspectives

Where the real conversations in privacy happen

 The Privacy Advisor The Privacy Advisor

Original reporting and feature articles on the latest privacy developments

 Privacy Tracker Privacy Tracker

Alerts and legal analysis of legislative trends

 Privacy Tech Privacy Tech

Exploring the technology of privacy

 Canada Dashboard Digest Canada Dashboard Digest

A roundup of the top Canadian privacy news

 Europe Data Protection Digest Europe Data Protection Digest

A roundup of the top European data protection news

 Asia-Pacific Dashboard Digest Asia-Pacific Dashboard Digest

A roundup of the top privacy news from the Asia-Pacific region

 Latin America Dashboard Digest Latin America Dashboard Digest

A roundup of the top privacy news from Latin America

 U.S. Privacy Digest U.S. Privacy Digest

A roundup of US privacy news
Overview KnowledgeNet Chapters Sections Affinity Groups Volunteer Annual Awards Member Directory Privacy List Career Central
Find a KnowledgeNet Chapter Near You

Talk privacy and network with local members at IAPP KnowledgeNet Chapter meetings, taking place worldwide.

 Virtual Networking

Connect with IAPP members around the globe without ever leaving your home. Find a Virtual Networking event today.

Join the Privacy List

Have ideas? Need advice? Subscribe to the Privacy List. It’s crowdsourcing, with an exceptional crowd.

 IAPP Job Board

Looking for a new challenge, or need to hire your next privacy pro? The IAPP Job Board is the answer.

 Member Directory

Locate and network with fellow privacy professionals using this peer-to-peer directory.
Overview Online Training Live Online Training In-Person Training Books Sample Questions Train Your Staff Official Training Partners Web Conferences
European Data Protection (CIPP/E)

Understand Europe’s framework of laws, regulations and policies, most significantly the GDPR.

 U.S. Private-Sector Privacy (CIPP/US)

Steer a course through the interconnected web of federal and state laws governing U.S. data privacy.

 Privacy Program Management (CIPM)

Develop the skills to design, build and operate a comprehensive data protection program.

Privacy in Technology (CIPT)

Add to your tech knowledge with deep training in privacy-enhancing technologies and how to deploy them.

 CCPA Training

Gain the knowledge needed to address the widest-reaching consumer information privacy law in the U.S.

 GDPR Training

Learn the legal, operational and compliance requirements of the EU regulation and its global influence.

 Privacy Law Specialist Training (PLS)

Meet the stringent requirements to earn this American Bar Association-certified designation.
Overview Certification Programs Get Certified How to Prepare Continuing Privacy Education (CPE) Fees Certify Your Staff Verify a Certification
CIPP Certification CIPP Certification

The global standard for the go-to person for privacy laws, regulations and frameworks

 CIPM Certification CIPM Certification

The first and only privacy certification for professionals who manage day-to-day operations

 CIPT Certification CIPT Certification

As technology professionals take on greater privacy responsibilities, our updated certification is keeping pace with 50% new content covering the latest developments.

 FIP Designation FIP Designation

Recognizing the advanced knowledge and issue-spotting skills a privacy pro must attain in today’s complex world of data privacy.

 Privacy Law Specialist Privacy Law Specialist

The first title to verify you meet stringent requirements for knowledge, skill, proficiency and ethics in privacy law, and one of the ABA’s newest accredited specialties.

 CIPP/E + CIPM = GDPR Ready CIPP/E + CIPM = GDPR Ready

The IAPP’S CIPP/E and CIPM are the ANSI/ISO-accredited, industry-recognized combination for GDPR readiness. Learn more today.

 Certificação CDPO/BR Certificação CDPO/BR

Disponível em breve - Certificação para funções de DPO combinando a certificação CIPM com uma prova específica sobre LGPD.

 Certification CDPO/FR Certification CDPO/FR

Certification des compétences du DPO fondée sur la législation et règlementation française et européenne, agréée par la CNIL.
Tools and Trackers Research Glossary DPAs Enforcement Database Westin Research Center Web Conferences Jobs Privacy Vendor Marketplace
Privacy Vendor Marketplace Privacy Vendor Marketplace

Use the Vendor Demo Center, Privacy Vendor List and Privacy Tech Vendor Report to easily identify privacy products and services to support your work.
COVID-19 Resources

Access a collection of privacy news, resources, guidance and tools covering the COVID-19 global outbreak.
CCPA Genius

This tool maps requirements in the law to specific provisions, the proposed regulations, expert analysis and guidance regarding compliance, the ballot initiative, and more.
GDPR Genius

This interactive tool provides IAPP members access to critical GDPR resources — all in one location.
CCPA and CPRA

IAPP members can get up-to-date information here on the California Consumer Privacy Act and the California Privacy Rights Act.
EU General Data Protection Regulation

The IAPP's EU General Data Protection Regulation page collects the guidance, analysis, tools and resources you need to make sure you're meeting your obligations.
White Papers

Access all white papers published by the IAPP.
Reports and Surveys

Access all reports and surveys published by the IAPP.
Infographics

Access all infographics published by the IAPP.
US State Law Tracker

The IAPP’s state law comparison tracker consists of proposed and enacted comprehensive privacy bills from across the U.S.
Global Privacy Summit Online 2021 Global Privacy Summit Online 2021

Access critical information and tactics you need to navigate privacy risks and regulations from anywhere with an internet connection.

 Data Protection Intensives Data Protection Intensives

Choose from four DPI events near you each year for in-depth looks at practical and operational aspects of data protection.

Canada Privacy Symposium Canada Privacy Symposium

Find answers to your privacy questions from keynote speakers and panellists who are experts in Canadian data protection.

 Privacy. Security. Risk. (P.S.R.) Privacy. Security. Risk. (P.S.R.)

P.S.R. offers the best of the best in privacy and security, with innovative cross-education and stellar networking.

 ANZ Summit ANZ Summit

Delivering world-class discussion and education on the top privacy issues in Australia, New Zealand and around the globe.

Europe Data Protection Congress Europe Data Protection Congress

The hub of European privacy policy debate, thought leadership and strategic thinking with data protection professionals.

 Asia Privacy Forum Asia Privacy Forum

World-class discussion and education on the top privacy issues in Asia Pacific and around the globe.

Mark Your Calendar

Review upcoming IAPP conferences to see which need to be included in your schedule for the year ahead.

 Speak at an IAPP Event

View our open calls and submission instructions.

 Sponsor an Event

Increase visibility for your organization—check out sponsorship opportunities today.

Individual Membership Corporate Membership Group Membership Student Membership
Become a Member

Start taking advantage of the many IAPP member benefits today

 Corporate Members

See our list of high-profile corporate members—and find out why you should become one, too

 Renew Your Membership

Don’t miss out for a minute—continue accessing your benefits

 ANZ Members

Review current member benefits available to Australia and New Zealand members
{[product.name]} {[ product.name ]}
clear
mode_editEdit
remove_circle_outline {[ getCartItemQuantity(product.id) ]} add_circle_outline
{[ product.price | currencyFilter ]}
TOTAL: {[ getCartTotalCost() | currencyFilter ]} Update cart for total shopping_basket Checkout

The Privacy Advisor | The Privacy Advisor Podcast: Kirk Nahra talks data ethics, third-party vendors and deidentification Related reading: The security of IoT: Is your Fitbit a key for criminals?

rss_feed

""

In this episode of The Privacy Advisor Podcast, Kirk Nahra, CIPP/US, of Wiley Rein talks about the challenges of working in the health care space these days, particularly the challenges health care entities have in managing the multitude of third-party vendors and the “ongoing element of risk” involved in trying to ensure not only your organization is in compliance with regulations, but vendors are, too. He also discusses the explosion of available data not covered under current health care laws, like the data from your wearable devices and whether that data is regulated by any body of law at all. “We’ve got this enormous gap right now,” and the new administration isn’t particularly interested in figuring that out, Nahra says, but he’s hopeful U.S. state attorneys general are going to pick up the slack. Want to keep up with new episodes? Be sure to subscribe to our feed here. 


Approved
CIPM, CIPP/A, CIPP/C, CIPP/E, CIPP/US, CIPT
Credits: 0.5

Submit for CPEs

Author
Headshot Angelique Carson, CIPP/US Nonmember Contributor
Tags
Internet of Things
Privacy Law
Privacy Operations Management
Comments

If you want to comment on this post, you need to login.

Related Stories
Is your Fitbit a key for criminals?
The FBI has said that IoT breaches could affect end users even more than typical enterprise data breaches. The FBI isn’t the only agency concerned with the information security of personal devices. In January 2015, the Federal Trade Commission issued a staff report on the security of consumer device...
Read More queue Save This
Vendor management: Yes, it’s an issue
SC Magazine rounds up a pair of reports issued this week, adding more evidence that vendor management is a major concern for those heading up privacy and security departments. Bomgar’s “Vendor Vulnerabilty” report, surveying IT and security professionals in the U.S., U.K., Germany, and France, found...
Read More queue Save This
EDPB adopts opinions on draft UK adequacy decision
During its 48th plenary session, the European Data Protection Board adopted two opinions on the European Commission's draft U.K. adequacy decision. The EDPB found areas of "strong alignment" between the EU and U.K.'s data protection frameworks while pointing out areas the commission should monitor i...
Read More queue Save This
Related Stories
Tags
Internet of Things
Privacy Law
Privacy Operations Management
Recent Comments