Rita Heimes
Rita Heimes, CIPP/US, CIPM
Research Director
Recent Comments
DPO Confessional RSS Feed
rss_feed
BigID_ad_781_111_advanced2_071108
MediaPro_2018EyeOnPrivacyReport_728x90_061518

""

DPC18_Web_300x250-COPY
Notes from the IAPP DPO on how she's doing her work.
Cookies and consent at the IAPP

Cookies and consent at the IAPP

Rita Heimes, CIPP/E, CIPP/US, CIPM and Stephen Schoepke, CIPP/US
13
Today, the IAPP launched a new cookie notice and cookie consent tool. The process of creating this notice and tool took several months and involved a cross-departmental team with members from marketing, privacy/legal, and (most significantly) IT. We thought it might be interesting to hear about the ...
Read More queue Save This
DPO Confessional: The prep for GDPR Day
DPO Confessional: The prep for GDPR Day
Rita Heimes, CIPP/E, CIPP/US, CIPM
‘Twas the night before GDPR…. May 25 feels like a holiday of sorts. Not because there’s anything to celebrate or honor, necessarily, but because preparing for it was much like getting ready to have guests visit the house. Guests one really wants to or needs to impress, moreover, like the in-laws or...
Read More queue Save This
DPO Confessional: Think globally, but direct market locally
DPO Confessional: Think globally, but direct market locally
Rita Heimes, CIPP/E, CIPP/US, CIPM
2
Like many privacy lawyers, I came to the field from an intellectual property law practice. Property rights are inherently territorial, so holding a patent or trademark in one country does not provide enforcement rights in another; one must register anew in each territory of interest.  This is a bit...
Read More queue Save This
Explaining the GDPR to an American
Explaining the GDPR to an American
Rita Heimes, CIPP/E, CIPP/US, CIPM
14
Law students at American law schools take property, torts, and contracts during their first year. It is difficult not to view consumer privacy interests through one or more of those lenses, particularly when U.S. consumer privacy law has been based on a notice and consent, enforced by principles of ...
Read More queue Save This
Responding to subject access requests
Responding to subject access requests
Rita Heimes, CIPP/E, CIPP/US, CIPM
1
IAPP Research Director and DPO Rita Heimes, CIPP/E, CIPP/US, CIPM, discusses the challenges of responding to subject access requests and offers a step-by-step look into her process in this DPO Confessional post....
Read More queue Save This
Making a (privacy) statement
Making a (privacy) statement
Rita Heimes, CIPP/E, CIPP/US, CIPM
1
This week, the IAPP posted a new privacy statement. We encourage our members not only to read it so they can better understand what personal information the IAPP collects and how it’s processed, but also to provide feedback, comments and suggestions on what might be missing or how it can be improved...
Read More queue Save This
When is a vendor a processor?
Rita Heimes, CIPP/E, CIPP/US, CIPM
2
Privacy professionals have been involving themselves in their organizations’ vendor management programs for a few years now. Indeed, according to the 2016 IAPP-EY Privacy Governance Survey, 70 percent of respondents (up from 63 percent in 2015) were involved in a formal vendor management program — a...
Read More queue Save This
The GDPR in 20 Minutes
The GDPR in 20 Minutes
Dan McCue
11
In June of this year, I started an internship at the IAPP as the University of Maine School of Law’s inaugural Privacy Fellow. My goal was to spend the summer helping the IAPP’s Data Protection Officer, Rita Heimes, CIPP/US, CIPM, work toward IAPP compliance with the upcoming General Data Protection...
Read More queue Save This