Introduction to Resource Center
This page provides an overview of the IAPP's Resource Center offerings.

Contact Resource Center
For any Resource Center related inquiries, please reach out to resourcecenter@iapp.org.

Privacy Tech and Privacy by Design
 

Resource Center / Topic Pages / Privacy Tech and Privacy by Design

Image

Privacy Tech and Privacy by Design

TOPIC PAGE

Navigate by Topic

Here, you can find the IAPP’s collection of coverage, analysis and resources related to privacy technology and privacy by design. The IAPP Resource Center includes separate topic pages for Adtech, Artificial Intelligence, Cybersecurity Law and Cloud Computing, as well as a Privacy Engineering Section, which offers a range of programs, events, content and networking opportunities through which privacy pros working in IT and related fields can connect and advance.

Featured Resources

Back to top

BOOK

An Introduction to Privacy for Technology Professionals

In “An Introduction to Privacy for Technology Professionals”, leading minds in the field address how privacy and technology intersect.
Read More

BOOK

Strategic Privacy by Design

This textbook contains a methodology for building privacy into a product, service, or business process, challenging traditional thought and offering a new way to think of and build up privacy.
Read More

REPORT

Privacy Risk Study 2023

This report represents the most comprehensive study of privacy risk undertaken by the IAPP in collaboration with KPMG.

INFOGRAPHIC

AdTech 2024: A Look Back

This infographic traces how adtech law, policy, litigation and enforcement have grown and evolved in 2024.
Read More

BOOK

Cybersecurity Law Fundamentals

“Cybersecurity Law Fundamentals” serves cybersecurity practitioners looking for a refresher and also guiding generalists and newcomers to the field.
Read More

INFOGRAPHIC

Cybersecurity Law Basics

This resource provides an overview on the basics of cybersecurity law, including definitions, as well as information on the sectors it applies to and the significant laws and regulations that impact it.
Read More

Back to Top

Back to top

Privacy Engineering

IAPP Privacy Tech Vendor Report

REPORT

NoSQL vulnerabilities: What privacy pros need to know

ARTICLE

Digital product passport: A key tool for the circular economy, but data protection must be addressed

ARTICLE

What robots can teach us about AI governance

ARTICLE

IAPP P.S.R. 2024: NIST sees nontechnical barriers to agencies’ PETs adoption

ARTICLE

Top 10 operational impacts of the EU AI Act – Obligations on providers of high-risk AI systems

RESOURCE ARTICLE

A look at the DAA’s shift in how it handles consumer opt-outs

ARTICLE

Google ends third-party cookie phaseout plans

ARTICLE

Navigating the legal and ethical landscape of brain-computer interfaces: Insights from Colorado and Minnesota

ARTICLE

Have your cake and eat it, too: Federated learning and edge computing for safe AI innovation

ARTICLE

Pursuit of app-iness: the legal considerations of SDKs

ARTICLE

Adtech: Practical takeaways from recent EU developments

WEB CONFERENCE

A comprehensive guide to creating a sustainable cookie program

ARTICLE

Thoughts on behavioral advertising, Meta and privacy

ARTICLE

Top trends in cybersecurity: A discussion with James Dempsey and John Carlin

PODCAST EPISODE

Mastercard releases privacy-enhancing technologies guide

ARTICLE

Privacy attacks on AI systems: A current concern for organizations

ARTICLE

Apple to upgrade iMessage to fight future decryption methods

ARTICLE

Demystifying data mapping: Why it matters and how to do it well

WEB CONFERENCE

Pay or OK: Practical considerations for adtech and beyond

VIDEO

Opting In-n-Out: Five key analyses for adtech privacy law compliance

ARTICLE

IAB Tech Lab report highlights advertisers’ concerns with Google’s Privacy Sandbox

ARTICLE

Google releases report on commercial surveillance vendors

ARTICLE

ICO – Tech Horizons Report

REPORT

EU crusade against web cookies faces uncertain future

ARTICLE

New association wants to professionalize the AI auditing industry

ARTICLE

Unprotected APIs: How software development teams can support data privacy compliance

ARTICLE

Marketing privacy: Overlooked aspects, key questions and practical audits

WEB CONFERENCE

Synthetic data: What operational privacy professionals need to know

ARTICLE

Empowering users: A universal interface for digital ad preferences

ARTICLE

A ‘slippery slope’ of ‘sousveillance’

ARTICLE

Building a modern data protection technology stack

ARTICLE

In an AI-powered world, marketers need a new data strategy

ARTICLE

EU DPAs seek proper clampdown on adtech industry

ARTICLE

Pay or consent:’ Personalized ads, the rules and what’s next

ARTICLE

EDPB issues binding decision banning Meta’s targeted advertising practices

ARTICLE

The case for static code analysis for privacy

ARTICLE

The half-baked future of cookies and other tracking technologies

RESOURCE ARTICLE

Privacy professionals need to be aware of tech abuse

ARTICLE

AEPD publishes guidance on PETs

ARTICLE

ACLU report examines impact of edtech surveillance industry

ARTICLE

The flawed IT asset management paradigm: Key considerations for privacy professionals

ARTICLE

IAB discusses adtech’s state privacy law compliance concerns

ARTICLE

Building the next generation of security and privacy professionals

WHITE PAPER

Is this the end of consent-less tracking by online platforms in the EU?

ARTICLE

Legal basis and consequences for personalized advertising

VIDEO

Leveraging technology and innovation to ensure privacy

ARTICLE

Embedding privacy by design to enforce responsible use of data

WEB CONFERENCE

Breach of privacy by design and default: Privacy’s good beyond privacy

ARTICLE

PrivTech Talks: Emerging privacy-enhancing technologies

VIDEO

The latest in homomorphic encryption: A game-changer shaping up

ARTICLE

Generative AI: Privacy and tech perspectives

ARTICLE

Mozilla Android unveils ‘Total Cookie Protection’

ARTICLE

PrivTech Talks: Privacy tech in health care and medical research

VIDEO

Standardization landscape for privacy: Part 3 — W3C and IEEE

ARTICLE

Standardization landscape for privacy – Article Series

ARTICLE SERIES

Federated learning: Supporting data minimization in AI

ARTICLE

EU policymakers have adtech in sight for future regulation

ARTICLE

‘Neurorights’ and the next flashpoint of medical privacy

ARTICLE

NIST’s Reva Schwartz on the new AI Risk Management Framework

PODCAST EPISODE

Five ways to build a bulletproof PBD program with your security partners

WEB CONFERENCE

US NIST publishes AI Risk Management Framework 1.0

ARTICLE

U.S. National Institute of Standards and Technology (NIST) – Resources

GUIDANCE

Data clean rooms: An adtech privacy solution?

ARTICLE

EDPB’s Meta decisions explained: Resolving the adtech dispute

VIDEO

Shining a Light on Dark Patterns – Good Marketing vs Consumer Manipulation

WEB CONFERENCE

Unpacking DPC Ireland’s Meta decisions: AdTech and beyond

VIDEO

Security & Privacy by Design Principles (S|P)

INFOGRAPHIC

Model Written Information Security Program

GUIDANCE

Irish DPC fines Meta 390M euros over legal basis for personalized ads

ARTICLE

Self-sovereign identity: a primer for privacy pros

VIDEO

Are cookies a new currency for the online world?

ARTICLE

Synthetic data a key to privacy by design practices in new Canadian smart city partnership

ARTICLE

Data transfers: Could a technical solution be the future?

ARTICLE

The FTC’s rapidly evolving standards for MFA

ARTICLE

Is GPC the new ‘do not track’?

ARTICLE

Non-Fungible Tokens – Privacy and Cybersecurity Risks

WHITE PAPER

Self-sovereign identity as future privacy by design solution in digital identity?

WHITE PAPER

Where is my personal data bill of materials?

ARTICLE

Reed Smith – Guide to the Metaverse, Second Edition

REPORT

Guide on Personal Data Protection Considerations for Blockchain Design

GUIDANCE

What does the newest U.S. privacy bill mean for cybersecurity?

ARTICLE

Privacy Technology Evolution: From Point Solutions to Data Governance

WEB CONFERENCE

Privacy Engineer Your Operations for Excellence

WEB CONFERENCE

Standardization landscape for privacy: Part 1 — The NIST Privacy Framework

ARTICLE

Standardization landscape for privacy: Part 2 — ISO/IEC

ARTICLE

Exceptions in new US state privacy laws leave data without security coverage

ARTICLE

Talking Strategic Privacy by Design with R. Jason Cronk

ARTICLE

Privacy Management Principles

CHART

Successful adoption of mobile ID hinges largely on protection of citizen privacy

ARTICLE

Information Security Management – An Executive View

GUIDANCE

Perkins Coie – 2022 Emerging Technology Trends

REPORT

How To Build An Effective Privacy Engineering Team

VIDEO

CDT — Responsible Technology Training Series for Education Practitioners

GUIDANCE

iOS App Report: Surveillance Marketing Still Going Strong

REPORT

Privacy and responsible AI

ARTICLE

Age verification and data protection: Far more difficult than it looks

ARTICLE

Privacy as code: A new taxonomy for privacy

ARTICLE

The Privacy and Equity Implications of Using Self-Harm Monitoring Technologies: Recommendations for Schools

REPORT

Privacy by Design: Exceeding Customer Expectations

REPORT

More than Face Value: Facial Recognition Technology & Privacy

WEB CONFERENCE

Understanding Machine Learning Technology and Developing A Risk-Based Approach

WEB CONFERENCE

LBS — IAPP CIPT: Technology Innovation and the Need for the Privacy Technologist

WEB CONFERENCE

KPMG — Privacy Technology: What’s next?

REPORT

Privacy Tech’s Third Generation: A Review of the Emerging Privacy Tech Sector

REPORT

Marketing Technology 101 for Privacy Officers

WEB CONFERENCE

The Skill Set Technologists Need to Implement a Privacy Risk Management Framework

WHITE PAPER

How to get started in privacy engineering

INFOGRAPHIC

The Skill Set Needed to Implement the NIST Privacy Framework

WHITE PAPER

ePrivacy and Data Protection: The Complex Web of Data Privacy and its Influence on AI Ethics, Competition and Tech Evolution

REPORT

Privacy 2020: 10 Privacy Risks and 10 Privacy-Enhancing Technologies to Watch in the Next Decade

REPORT

Enhancing Privacy Education with a Technical Emphasis in IT Curriculum

REPORT

The Skill Set Needed to Implement a Global Privacy Standard: ISO/IEC 27701 alignment with IAPP CIPM and CIPP/E certifications

WHITE PAPER

How Privacy Tech Is Bought and Deployed

REPORT

Check or Mate? Strategic Privacy by Design

WHITE PAPER

The ransomware epidemic – Article Series

ARTICLE SERIES

Back to top

Back to Top

Additional News and Resources

IAPP Privacy Tech Vendor Report

REPORT

Uncapping risk: The growing burden of data privacy liability in tech contracts

ARTICLE

Discussing privacy and technology with Dan Solove

PODCAST EPISODE

Privacy in the age of robotics

ARTICLE

Stakeholders discuss building safe online environment for children

ARTICLE

Online consent: How can it be made valid in practice?

ARTICLE

Holistic mobile app privacy risk prevention: Dynamic and static app scanning

WEB CONFERENCE

What’s in a name?’: EDPB publishes draft guidelines on pseudonymization

ARTICLE

New tools aim to improve data activity monitoring, compliance efficiency

ARTICLE

Effective data governance key to MiCA-compliant crypto privacy

ARTICLE

Open source in the age of AI

ARTICLE

Women in privacy: Unpacking dark patterns in ads, AI and beyond

WEB CONFERENCE

Meta reshapes EU personalized advertising offerings again

ARTICLE

Unlocking privacy by design through effective records of processing activities

WEB CONFERENCE

NoSQL vulnerabilities: What privacy pros need to know

ARTICLE

Digital product passport: A key tool for the circular economy, but data protection must be addressed

ARTICLE

What robots can teach us about AI governance

ARTICLE

IAPP P.S.R. 2024: NIST sees nontechnical barriers to agencies’ PETs adoption

ARTICLE

Top 10 operational impacts of the EU AI Act – Obligations on providers of high-risk AI systems

RESOURCE ARTICLE

A look at the DAA’s shift in how it handles consumer opt-outs

ARTICLE

Google ends third-party cookie phaseout plans

ARTICLE

Navigating the legal and ethical landscape of brain-computer interfaces: Insights from Colorado and Minnesota

ARTICLE

Have your cake and eat it, too: Federated learning and edge computing for safe AI innovation

ARTICLE

Pursuit of app-iness: the legal considerations of SDKs

ARTICLE

Adtech: Practical takeaways from recent EU developments

WEB CONFERENCE

A comprehensive guide to creating a sustainable cookie program

ARTICLE

Thoughts on behavioral advertising, Meta and privacy

ARTICLE

Top trends in cybersecurity: A discussion with James Dempsey and John Carlin

PODCAST EPISODE

Mastercard releases privacy-enhancing technologies guide

ARTICLE

Privacy attacks on AI systems: A current concern for organizations

ARTICLE

Apple to upgrade iMessage to fight future decryption methods

ARTICLE

Demystifying data mapping: Why it matters and how to do it well

WEB CONFERENCE

Pay or OK: Practical considerations for adtech and beyond

VIDEO

Opting In-n-Out: Five key analyses for adtech privacy law compliance

ARTICLE

IAB Tech Lab report highlights advertisers’ concerns with Google’s Privacy Sandbox

ARTICLE

Google releases report on commercial surveillance vendors

ARTICLE

ICO – Tech Horizons Report

REPORT

EU crusade against web cookies faces uncertain future

ARTICLE

New association wants to professionalize the AI auditing industry

ARTICLE

Unprotected APIs: How software development teams can support data privacy compliance

ARTICLE

Marketing privacy: Overlooked aspects, key questions and practical audits

WEB CONFERENCE

Synthetic data: What operational privacy professionals need to know

ARTICLE

Empowering users: A universal interface for digital ad preferences

ARTICLE

A ‘slippery slope’ of ‘sousveillance’

ARTICLE

Building a modern data protection technology stack

ARTICLE

In an AI-powered world, marketers need a new data strategy

ARTICLE

EU DPAs seek proper clampdown on adtech industry

ARTICLE

Pay or consent:’ Personalized ads, the rules and what’s next

ARTICLE

Privacy Engineering Domains

CHART

EDPB issues binding decision banning Meta’s targeted advertising practices

ARTICLE

The case for static code analysis for privacy

ARTICLE

The half-baked future of cookies and other tracking technologies

RESOURCE ARTICLE

Privacy professionals need to be aware of tech abuse

ARTICLE

AEPD publishes guidance on PETs

ARTICLE

ACLU report examines impact of edtech surveillance industry

ARTICLE

The flawed IT asset management paradigm: Key considerations for privacy professionals

ARTICLE

IAB discusses adtech’s state privacy law compliance concerns

ARTICLE

Building the next generation of security and privacy professionals

WHITE PAPER

Is this the end of consent-less tracking by online platforms in the EU?

ARTICLE

Legal basis and consequences for personalized advertising

VIDEO

Leveraging technology and innovation to ensure privacy

ARTICLE

Embedding privacy by design to enforce responsible use of data

WEB CONFERENCE

Breach of privacy by design and default: Privacy’s good beyond privacy

ARTICLE

PrivTech Talks: Emerging privacy-enhancing technologies

VIDEO

The latest in homomorphic encryption: A game-changer shaping up

ARTICLE

Generative AI: Privacy and tech perspectives

ARTICLE

Mozilla Android unveils ‘Total Cookie Protection’

ARTICLE

PrivTech Talks: Privacy tech in health care and medical research

VIDEO

Standardization landscape for privacy: Part 3 — W3C and IEEE

ARTICLE

Standardization landscape for privacy

ARTICLE SERIES

Federated learning: Supporting data minimization in AI

ARTICLE

EU policymakers have adtech in sight for future regulation

ARTICLE

‘Neurorights’ and the next flashpoint of medical privacy

ARTICLE

NIST’s Reva Schwartz on the new AI Risk Management Framework

PODCAST EPISODE

Five ways to build a bulletproof PBD program with your security partners

WEB CONFERENCE

US NIST publishes AI Risk Management Framework 1.0

ARTICLE

U.S. National Institute of Standards and Technology (NIST) – Resources

GUIDANCE

Data clean rooms: An adtech privacy solution?

ARTICLE

EDPB’s Meta decisions explained: Resolving the adtech dispute

VIDEO

Shining a Light on Dark Patterns – Good Marketing vs Consumer Manipulation

WEB CONFERENCE

Unpacking DPC Ireland’s Meta decisions: AdTech and beyond

VIDEO

Security & Privacy by Design Principles (S|P)

INFOGRAPHIC

Model Written Information Security Program

GUIDANCE

Irish DPC fines Meta 390M euros over legal basis for personalized ads

ARTICLE

Self-sovereign identity: a primer for privacy pros

VIDEO

Are cookies a new currency for the online world?

ARTICLE

Synthetic data a key to privacy by design practices in new Canadian smart city partnership

ARTICLE

Data transfers: Could a technical solution be the future?

ARTICLE

The FTC’s rapidly evolving standards for MFA

ARTICLE

Is GPC the new ‘do not track’?

ARTICLE

Non-Fungible Tokens – Privacy and Cybersecurity Risks

WHITE PAPER

Self-sovereign identity as future privacy by design solution in digital identity?

WHITE PAPER

Where is my personal data bill of materials?

ARTICLE

Reed Smith – Guide to the Metaverse, Second Edition

REPORT

Guide on Personal Data Protection Considerations for Blockchain Design

GUIDANCE

What does the newest U.S. privacy bill mean for cybersecurity?

ARTICLE

Privacy Technology Evolution: From Point Solutions to Data Governance

WEB CONFERENCE

Privacy Engineer Your Operations for Excellence

WEB CONFERENCE

Standardization landscape for privacy: Part 1 — The NIST Privacy Framework

ARTICLE

Standardization landscape for privacy: Part 2 — ISO/IEC

ARTICLE

Exceptions in new US state privacy laws leave data without security coverage

ARTICLE

Talking Strategic Privacy by Design with R. Jason Cronk

ARTICLE

Privacy Management Principles

CHART

Successful adoption of mobile ID hinges largely on protection of citizen privacy

ARTICLE

Information Security Management – An Executive View

GUIDANCE

Perkins Coie – 2022 Emerging Technology Trends

REPORT

How To Build An Effective Privacy Engineering Team

VIDEO

CDT — Responsible Technology Training Series for Education Practitioners

GUIDANCE

iOS App Report: Surveillance Marketing Still Going Strong

REPORT

Privacy and responsible AI

ARTICLE

Age verification and data protection: Far more difficult than it looks

ARTICLE

Privacy as code: A new taxonomy for privacy

ARTICLE

The Privacy and Equity Implications of Using Self-Harm Monitoring Technologies: Recommendations for Schools

REPORT

Privacy by Design: Exceeding Customer Expectations

REPORT

More than Face Value: Facial Recognition Technology & Privacy

WEB CONFERENCE

Understanding Machine Learning Technology and Developing A Risk-Based Approach

WEB CONFERENCE

LBS — IAPP CIPT: Technology Innovation and the Need for the Privacy Technologist

WEB CONFERENCE

KPMG — Privacy Technology: What’s next?

REPORT

Privacy Tech’s Third Generation: A Review of the Emerging Privacy Tech Sector

REPORT

Marketing Technology 101 for Privacy Officers

WEB CONFERENCE

The Skill Set Technologists Need to Implement a Privacy Risk Management Framework

WHITE PAPER

How to get started in privacy engineering

INFOGRAPHIC

The Skill Set Needed to Implement the NIST Privacy Framework

WHITE PAPER

ePrivacy and Data Protection: The Complex Web of Data Privacy and its Influence on AI Ethics, Competition and Tech Evolution

REPORT

Privacy 2020: 10 Privacy Risks and 10 Privacy-Enhancing Technologies to Watch in the Next Decade

REPORT

Enhancing Privacy Education with a Technical Emphasis in IT Curriculum

REPORT

The Skill Set Needed to Implement a Global Privacy Standard: ISO/IEC 27701 alignment with IAPP CIPM and CIPP/E certifications

WHITE PAPER

How Privacy Tech Is Bought and Deployed

REPORT

Check or Mate? Strategic Privacy by Design

WHITE PAPER

The ransomware epidemic

ARTICLE SERIES

Back to top

Back to Top

Back to top