The IAPP's Privacy. Security. Risk. conference in San Jose, California, tackled a wide array of topics and featured speakers from myriad backgrounds and areas of expertise. If you missed our live coverage, here's a roundup of what kind of knowledge got dropped for you to use at your own organization.
US gov't releases guidance on senior privacy roles
On Thursday, the U.S. federal government released updated guidance at the Privacy. Security. Risk. conference in San Jose, California, on the role of the senior agency official for privacy. Specifically, the Office of Management and Budget’s guidance establishes that privacy and security are distinct disciplines and require distinct training and perspectives. In a blog post, Marc Groman, CIPP/US, senior advisor for privacy at OMB, said the guidance further "recognizes that the success of an agency's privacy program depends upon its leadership.” But, more importantly, privacy must be considered in all aspects of government agency work. Notably, “the SAOP shall have a central policymaking role in the agency’s development and evaluation of legislative, regulatory, and other policy proposals that have privacy implications.” And with today’s data-driven culture, there are few agency efforts that don’t have such implications, making the SAOP a vital leader in doing the people’s work. Angelique Carson, CIPP/US, has the coverage for The Privacy Advisor.
Data ethics and shaping corporate value systems
Companies are able to collect and process more data than ever before, and with that comes the opportunity for research and testing at unprecedented and potentially life-saving levels. Such research could come in the relatively harmless form of A-B testing to unveil how the color of a company’s logo translates to better user engagement, but also move into more murky efforts intending to find solutions for the social good, such as discovering a cure for cancer. At the Privacy. Security. Risk. conference on Thursday, tech privacy leaders from Facebook and LinkedIn discussed the complexities of data ethics and privacy protection, and how a corporate ethos helps forge an ethical value system for organizations handling vast troves of consumer data. The answers and solutions aren’t easy, the lines aren’t clear, but what certainly is clear is that privacy pros have a massive role to play in determining the ethical direction a company takes. Jedidiah Bracy, CIPP, has the coverage.
Privacy notice change management
It might be the oldest topic in the IAPP canon: What makes a good privacy notice? In fact, while attendees of Privacy. Security. Risk. were mingling in San Jose, California, the U.S. Federal Trade Commission was discussing that very topic in Washington, DC, as part of its workshop series. Somehow, though, there remains grist for the mill. The panelists at P.S.R.’s “Making the Grade: Moving Beyond Compliance into Data Stewardship,” moderated by the IAPP’s Jedidiah Bracy, CIPP, even found something to disagree about in a lively session that looked at what privacy industry leaders are doing to inform consumers and engage with them. Sam Pfeifle has the coverage.
OneTrust acquires Optanon, website auditing solution
Automated PIA and data mapping solution provider OneTrust announced at P.S.R. the acquisition of U.K. firm Optanon, a software maker that provides website auditing and cookie compliance solutions. To discuss the deal, IAPP Publications Director Sam Pfeifle caught up with Alan Dabbiere, OneTrust chairman. “This gave us a huge expansion of our product line and got us there at a rational price, with solid technology and happy customers,” he said. Editor’s Note: OneTrust and the IAPP recently released a PIA automation tool exclusively for IAPP members.
Finding the balance between innovation and risk managment
Perhaps an overused moniker, big data — in its most concrete forms — has challenged traditional privacy concepts, particularly parts of the Fair Information Practice Principles. Well-established business norms around notice and choice, for example, are becoming difficult to implement in certain frameworks. At P.S.R., Acxiom Ex Officio Chief Privacy Officer Jennifer Barrett Glasgow, CIPP/US, Federal Trade Commission Commissioner Maureen Ohlhausen, and Wilson Sonsini Partner Lydia Parnes explored the answer to that question and much more. Jedidiah Bracy, CIPP, has the coverage.
2016 IAPP-HPE award winners announced
The International Association of Privacy Professionals has presented its 14th annual HPE-IAPP Privacy Innovation Awards in its small organization and large organization categories to Nymity and Vanguard Group, Inc., respectively. Nymity won the award for its Attestor accountability and compliance program, while Vanguard took home the prize for its internal Enterprise Data Identification and Tracking system. “The Innovation Award strives to spotlight those who set the standard for well-executed, thoughtful and effective privacy practices,” said IAPP President and CEO Trevor Hughes, CIPP. “It is clear that our winners are fine examples of the best our field has to offer, and will continue to serve as pace-setters in the future.”
O’Neil to privacy pros: Help me destroy big data’s lies
Cathy O'Neil is out for blood. Her target? Big data. That was the message she delivered to privacy pros during her keynote address yesterday at Privacy. Security. Risk. 2016, and she asked for help in her mission. To be clear, what O'Neil really aims to destroy are the algorithms employed in the name of utilizing big data to make decisions, algorithms she calls weapons of math disruption, or WMDs, which she says have very real negative impacts on vulnerable populations. But it's not so much the algorithms themselves that are the problem. We, as human beings plugging in the data and creating the algorithms, are the problem. "It's about fairness. We as technologists try to put those questions at arm's length, and we try to act as if the algorithm is somehow elevated above moral values, but it's not.” Angelique Carson, CIPP/US, has the coverage.
Students compete to create breach-cost prediction tool
Last week, two-person teams of St. Joseph’s (of Philadelphia) undergrads embarked on a quest for the Analytics Cup. It’s 80 inches tall, a gleaming plastic, and is bestowed by professor Ronald Klimberg on the team that does the best work in using data analytics to solve a business problem. Some of them will analyze historical data on consumption at a local brewery. Others will look at a soccer team’s season ticket holders’ behavior. What gets alumni to give to St. Joe’s? That's on tap, too.
If you want to comment on this post, you need to login.