A closer look at Carnegie Mellon's privacy engineering program

(Sep 20, 2019) Though the privacy engineering field is relatively new, there’s been at least one school that’s been at the forefront of this nascent profession. Carnegie Mellon University launched its MSIT- Privacy Engineering Program in 2013. It remains the only privacy engineering-focused master’s program in the country. As industry demand for privacy professionals with technical skills accelerates, it is worth taking a deeper look at the program and how it prepares new professionals for this burgeoning fiel... Read More

How to manage, monitor and validate third-party data sharing

(Sep 19, 2019) When companies manage how personal data is shared and transferred to third parties, much of the effort lately has been focused on bringing legal contracts in line with requirements under the EU General Data Protection Regulation and now, increasingly, the California Consumer Privacy Act.  How can organizations effectively ensure they have the requisite data knowledge to validate data flows and the purpose of processing, as well as monitor data transfers to flag when personal data is going where... Read More

How to balance third-party data sharing and compliance requirements

(Sep 19, 2019) When companies manage how personal data is shared and transferred to third parties, much of the effort lately has been focused on bringing legal contracts in line with requirements under the EU General Data Protection Regulation and now, increasingly, the California Consumer Privacy Act. BigID Head of Product Nimrod Vax looks at how organizations can balance sharing data with third parties to ensure they stay on top of compliance requirements while not standing in the way of business initiatives... Read More

New app acts as 'private content recommendation system'

(Sep 19, 2019) VentureBeat reports Canopy has created an iPhone-only app that is a "private content recommendation system." Instead of sending personal data between the device and a remote server, all of the machine learning and data processing occurs on the device itself. Tonic recommends articles based on subscriber preference and does not store IP addresses or device IDs. "It's a crucial difference for our approach," Canopy CEO Brian Whitman wrote in a co-authored blog post. "Even in the worst case of the e... Read More

Design considerations for building privacy-protecting analytics services

(Sep 18, 2019) If data is the new oil, then analytics are the new refinery without which any modern business is unable to make informed decisions. However, data analytics and privacy are seldom assumed to go together. If media reports and regulatory actions are any indication, services and platforms that utilize or enable analytics have consistently been under scrutiny in terms of meeting reasonable privacy expectations. Conflict between data analytics and privacy Whether the issues are related to adequate p... Read More

How data analytics and privacy can coexist

(Sep 18, 2019) "If data is the new oil, then analytics are the new refinery without which any modern business is unable to make informed decisions," writes Mode Analytics Head of Security and Privacy Rafae Bhatti, CIPP/US, CIPM. "However, data analytics and privacy are seldom assumed to go together. If media reports and regulatory actions are any indication, services and platforms that utilize or enable analytics have consistently been under scrutiny in terms of meeting reasonable privacy expectations." In thi... Read More

Web con: 'How Privacy Tech Is Bought and Deployed'

(Sep 18, 2019) For the second straight year, the IAPP and TrustArc released their survey on how privacy technology products are purchased and deployed within an organization. Join the IAPP Oct. 15 for this sponsored web conference to learn about the key takeaways from the survey, including what technology is commonly used versus solutions that are far from the mainstream, the tools that are better suited for the privacy officer rather than in information technology or infosecurity, and how technologies with bu... Read More

Tide Foundation introduces 'splintering' as encryption solution

(Sep 18, 2019) In an effort to protect against data breaches, the Tide Foundation has introduced a new approach to encryption called "splintering," TechRepublic reports. The not-for-profit open source foundation is using "an encryption scheme that distributes password authentication across a decentralized network." Tide Foundation Co-Founder Yuval Hertzog recognizes the process isn’t perfect, saying, "Our mechanism, while it's not solving all the password issues, is actually narrowing down the solution to at l... Read More

Organizations launch $100M grant for alternatives to ad tracking

(Sep 17, 2019) Mozilla, Creative Commons and Coil have announced the launch of a $100 million grant to fund projects that will create alternatives to the ad-tracking business model, CNET reports. Grant for the Web will distribute the money to projects that let content creators make a profit while ensuring the privacy rights of internet patrons are respected. Mozilla Foundation Executive Director Mark Surman said the grant was not established to eliminate ad tracking. "It would be folly to think that magically ... Read More

What organizations should do to find the best privacy tech solution

(Sep 13, 2019) The amount of privacy technology offerings has continued to increase for years now; however, once the the EU General Data Protection Regulation was announced, the industry went to into hyper-drive. While larger companies offer a suite of tools, there are plenty of niche players that can solve or otherwise fill your automated privacy program needs. In this piece for Privacy Tech, Privacy Ref Consultant Linda Brust, CIPM, runs down what organizations should do to find the best solution to fit thei... Read More