marc

Charting the Course: Navigating Global Privacy and AI Regulations with Bermuda’s Privacy Commissioner

Event Date/Time:

Friday, May 31, 2024 | 1:00 – 2:00 p.m. ET

Jump into the forefront of privacy regulation with Bermuda’s privacy commissioner, Alexander White, and Venable privacy attorney David Patariu as they guide you through the realms of privacy, AI, and cybersecurity. Explore the aftermath of Global Privacy Assembly (GPA) 45 in Bermuda, uncovering insights and key takeaways that are reshaping global privacy agendas. Delve into the work of the International Enforcement Working Group (IEWG) and Bermuda’s strategic alignment as a signatory to the IEWG’s Joint Statement, signaling a commitment to articulating privacy expectations for both companies and individuals. Gain exclusive insights into the intricate decision-making process behind Bermuda’s participation and get a sneak peek into the future with our preview of GPA 46. This webinar isn’t just an invitation—it’s your gateway to staying ahead in the ever-evolving world of privacy regulation, ensuring you are prepared for the challenges and opportunities that lie ahead.

Speakers:

Alexander White
Privacy Commissioner
Bermuda

Alexander White currently serves as Bermuda’s first privacy commissioner, appointed by H.E. the Governor of Bermuda, to take office in January 2020 as founding head of the country’s data protection authority. Commissioner White is a lawyer licensed in Illinois and the District of Columbia. He served as a founding member of the International Association of Privacy Professionals’ Privacy Bar Section Advisory Board and founded the IAPP State, Local, and Municipal Government Affinity Group. On January 10, 2017, Commissioner White was appointed by former Secretary Jeh Johnson to the U.S. Department of Homeland Security Data Privacy and Integrity Advisory Committee (DPIAC) for a three-year term.

Prior to establishing the Office of the Privacy Commissioner for Bermuda, Commissioner White served as state deputy chief privacy officer for South Carolina, developing a statewide privacy program from its earliest days for over 70 state agencies and entities operating in finance, healthcare, education and higher education, law enforcement, and other sectors.

David Patariu, Esq., PLS; IAPP FIP, CIPP/E/US, CIPM; ISC2 CISSP, CCSP
Associate
Venable LLP

David N. Patariu focuses his practice on matters related to artificial intelligence, privacy, cybersecurity, and data protection. David has counseled clients on regulatory compliance, litigation, mergers and acquisitions (M&A), intellectual property (IP), product development, and due diligence. He has a background in the technology industry, advising clients on compliance with laws and regulations at the state, federal, and global levels. His knowledge spans a range of security issues, including data breaches, information privacy, cyberattacks, network architecture, incident responses, and risk management.

David is a member of the bar in California, Texas, Illinois, Minnesota, New York, New Jersey, and the District of Columbia.

Navigating the Intersection of AI, Data Protection, and Cross-Border Flows: A Transatlantic Perspective

Event Date/Time:

Friday, May 17, 2024 | 11:00 a.m. – 12:00 p.m. ET

Join MUSA as we explore cross-border data flows, data protection, web scraping, and artificial intelligence, focusing on the European Union and the United States. We’ll examine the key tensions and their implications at the confluence of these critical topics.

Speakers:

Alex Joel
Scholar-in-Residence and Adjunct Professor
Washington College of Law

Alex Joel is a Scholar-in-Residence and Adjunct Professor at the Washington College of Law. He is conducting research, developing programming, and teaching courses focused on the intersections of the law, national security, technology, and privacy. Previously, he was a senior officer with the Office of the Director of National Intelligence (ODNI), where until June 2019 he served as the Chief of the Office of Civil Liberties, Privacy and Transparency (CLPT). CLPT works to ensure that the intelligence community carries out its national security mission in a manner that protects privacy and civil liberties, and provides appropriate public transparency. As Chief of CLPT, Mr. Joel was the ODNI’s Civil Liberties Protection Officer, a position established by the Intelligence Reform and Terrorism Protection Act of 2004. Mr. Joel served in that position since the ODNI was established in 2005.

David Patariu, Esq., PLS; IAPP FIP, CIPP/E/US, CIPM; ISC2 CISSP, CCSP
Associate
Venable LLP

David N. Patariu focuses his practice on matters related to artificial intelligence, privacy, cybersecurity, and data protection. David has counseled clients on regulatory compliance, litigation, mergers and acquisitions (M&A), intellectual property (IP), product development, and due diligence. He has a background in the technology industry, advising clients on compliance with laws and regulations at the state, federal, and global levels. His knowledge spans a range of security issues, including data breaches, information privacy, cyberattacks, network architecture, incident responses, and risk management.

David is a member of the bar in California, Texas, Illinois, Minnesota, New York, New Jersey, and the District of Columbia.

Beyond the Law: Understanding the Essence of Data Privacy and Trust in the Digital Age

Event Date/Time:

Tuesday, May 14, 2024 | 1:00-2:00 p.m. ET

In the modern digital landscape, safeguarding data privacy has emerged as a paramount issue. While laws and regulations provide a framework for data protection, understanding the deeper significance of data privacy for everyday users is essential. Join us for a webinar as we delve into why data privacy matters beyond mere compliance with regulations. We’ll explore the profound implications of trust and its relationship with data privacy, shedding light on how our digital footprint shapes the fabric of our online interactions and beyond.

Speakers:

Jodi Daniels
Founder & CEO
Red Clover Advisors

Jodi Daniels is the founder & CEO of Red Clover Advisors, a privacy consultancy that brings data privacy strategy and compliance together with its flexible and scalable approach, which simplifies data privacy complexity; refines, updates, or builds privacy structure; and makes both the business and the legal issues accessible and actionable for all. Jodi is a Certified Informational Privacy Professional (CIPP/US) with 24 years of experience who serves as the outsourced privacy office for companies, helping a range of businesses, from startup to Fortune 100 create privacy programs, build customer trust and achieve GDPR and U.S. privacy law compliance.

Since launching in 2017, Red Clover Advisors has helped hundreds of companies create privacy programs and establish a secure online data strategy their customers can count on. Jodi makes privacy easy to understand by breaking it down into measurable steps, using plain language her clients can relate to. She is a national keynote speaker and a co-host of the She Said Privacy / He Said Security podcast and has been featured in IAPP, The Economist, Forbes, Inc., Authority Magazine, ISACA, and many other publications. Jodi holds a master’s of business administration and a bachelor of business administration from Emory University’s Goizueta Business School. She passionately supports the idea that privacy is more than just compliance and concern over fines. It’s a human right we all deserve. Jodi has made it her mission to help businesses build trust and transparency with this core value at its foundation. She lives in Atlanta, Georgia with her husband, two girls, and a big, fluffy dog named Basil.

David Patariu, Esq., PLS; IAPP FIP, CIPP/E/US, CIPM; ISC2 CISSP, CCSP
Associate
Venable LLP

David N. Patariu focuses his practice on matters related to artificial intelligence, privacy, cybersecurity, and data protection. David has counseled clients on regulatory compliance, litigation, mergers and acquisitions (M&A), intellectual property (IP), product development, and due diligence. He has a background in the technology industry, advising clients on compliance with laws and regulations at the state, federal, and global levels. His knowledge spans a range of security issues, including data breaches, information privacy, cyberattacks, network architecture, incident responses, and risk management.

David is a member of the bar in California, Texas, Illinois, Minnesota, New York, New Jersey, and the District of Columbia.

MUSA and IEWG Panel at IAPP Global Privacy Summit

1. The IAPP Panel:

On Wednesday, April 3, 2024, MUSA participated on a panel with the Global Privacy Assembly’s International Enforcement Group (IEWG), to discuss the IEWG’s Data Scraping Joint Statement. The IAPP GPS24 panel, “A Global Initiative to Elevate Safeguards Against Data Scraping,” included the following regulators and MUSA representative David Patariu:

  • Moderator: Brent Homan, Data Protection Commissioner, The Office of the Data Protection Authority (Guernsey)
  • Stephen Almond, Executive Director, Regulatory Risk, U.K. Information Commissioner’s Office
  • Philippe Dufresne, Privacy Commissioner of Canada, Office of the Privacy Commissioner of Canada
  • Carly Kind, Australian Privacy Commissioner, Office of the Australian Information Commissioner
  • David Patariu, CIPP/E, CIPP/US, CIPM, FIP, PLS, Attorney, Venable for the Mitigating Unauthorized Scraping Alliance (MUSA)

2. Regulator’s Perspective:

The “Key Data Scraping Takeaways” pointed out by the regulators included the following (see presentation):

  • Publicly accessible personal information is still subject to data protection and privacy laws
  • Social media companies have legal obligations to protect personal information from unlawful data scraping
  • Mass data scraping can constitute reportable data breaches
  • Individuals can take actions to protect themselves and mitigate the harms of data scraping

3. MUSA’s Perspective:

MUSA explained to the audience:

  • What scraping is in an easy-to-understand and engaging way
  • How it is difficult to distinguish end users from scrapers
  • That social media companies are victimized by scrapers
  • That regulatory focus needs to shift from social media companies to the threat actors who scrape, and to the marketplaces for scraped data and
  • That unauthorized scraping is an abuse—and should not be considered a breach

4. Attendance and Feedback:

About 200 people attended the panel. Feedback and press about the panel were positive and robust. One Canadian regulator remarked that she did not realize it was hard to distinguish an end user from a scraper, and had never thought about the scraping problem in that way.

MUSA was quoted in the news as well (e.g., “…data scraping should be at the top of everyone’s lists when it comes to their organization’s privacy frameworks”).

Several company representatives approached David Patariu/MUSA after the panel, inquiring about membership. We are following up on those requests.

Please let us know if you have any questions about this event.

Defining Web Scraping to Improve Mitigation by Morgan Guesdon

In his white paper, Morgan Guesdon outlines the steps involved in a web scraping operation, also known as data extraction. By establishing a consensus on these specific steps, the various actors involved in mitigation of unauthorized web scraping can more efficiently coordinate and exchange relevant information. The primary goal of this framework is to streamline communication and enhance the effectiveness of countermeasures against such activities.

Loader Loading...
EAD Logo Taking too long?

Reload Reload document
| Open Open in new tab

Download PDF [698.24 KB]

Webinar: Defining Web Scraping: A Path to Improved Mitigation

Event Date/Time:

March 28, 2024 | 1:00 p.m. – 2:00 p.m. ET

At a time when data privacy has become increasingly important, understanding and effectively mitigating unauthorized scraping activities is paramount. Join us for an insightful webinar as we delve into the nuances of web scraping, inspired by cybersecurity analyst Morgan Guesdon’s white paper, “Defining Scraping to Improve Mitigation.”

This webinar is intended to elucidate the intricacies of unauthorized scraping operations, also known as data extraction, by establishing a consensus on the specific steps involved. Authored with the goal of enhancing communication and bolstering countermeasures against unauthorized scraping, the white paper provides a foundational framework for various stakeholders involved in the mitigation process.

Speakers:

Morgan Guesdon
Cyber Threat Analyst, OWN

David Patariu, Esq., PLS; IAPP FIP, CIPP/E/US, CIPM; ISC2 CISSP, CCSP
Associate, Venable LLP