Life with GDPR

• Navigating GDPR in Global Outsourcing with Inge Zwick

  Tom Fox takes a solo turn as Jonathan Armstrong is on assignment. Today, Tom visits with Inge Zwick, Executive Director, Head of Europe, and ESG Lead at Emapta Global, a global outsourcing company. They discuss the company’s operations, with a particular focus on managing GDPR compliance within the outsourcing framework. They also discuss common misconceptions about outsourcing under the GDPR, risk assessment processes, handling data subject access requests, and integrating compliance into business operations. Zwick also shares insights into how EMAPTA collaborates with clients to ensure compliance and offers advice to business leaders on future-proofing their outsourcing strategies in light of GDPR requirements. Additionally, the discussion explores the integration of ESG initiatives within the company’s operations. Key takeaways: Outsourcing and GDPR Compliance Risk Assessment and Data Security Subject Access Requests (SAR) Outsourcing Contracts and GDPR Obligations Integrating Compliance into Operations Resources: Connect with Tom Fox LinkedIn Connect with Inge Zwick LinkedIn Connect with Emapta Global Website LinkedIn Life with GDPR was recently honored as a Top Data Security Podcast.   Learn more about your ad choices. Visit megaphone.fm/adchoices

  --------  

  23:20

  --------

  23:20
• AI in Recruitment: Navigating GDPR Compliance and Challenges

  Tom Fox and Jonathan Armstrong, renowned cybersecurity experts, co-host the award-winning Life with GDPR. This episode explores the complex intersection of AI and recruitment, focusing on compliance challenges under GDPR and potential risks. Jonathan highlights that AI is often more prevalent in recruitment processes than many compliance officers realize, often through third-party vendors. He discusses the regulatory landscape in the UK and EU, sharing insights on recent cases related to automated decision-making and the transparency required for such systems. Jonathan offers a seven-point plan for organizations that use or are considering using AI in recruitment, covering provider selection, due diligence, transparency obligations, and mechanisms for handling data subject requests. The conversation underscores the need for proactive engagement between data protection officers, compliance teams, and recruiters to ensure that AI tools are used responsibly and transparently. Key takeaways: AI in Recruitment: An Overview Legal and Ethical Concerns Transparency and Fairness in AI Decisions Practical Steps for Companies Future of AI in Recruitment Resources: Connect with Tom Fox LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn PunterSouthall Life with GDPR was recently honored as a Top Data Security Podcast. Learn more about your ad choices. Visit megaphone.fm/adchoices

  --------  

  16:32

  --------

  16:32
• Cookie Compliance

  Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. In this episode, they discuss Cookie Compliance Under GDPR. Their discussion highlights the increasing enforcement actions surrounding website cookies, emphasizing that this is a data protection issue and a broader compliance challenge. Specific case studies, such as the Dutch regulator’s fine against Pool Blue and fines in other EU countries, illustrate the significant financial penalties companies can face for non-compliance. Jonathan outlines an eight-point plan to help organizations ensure their cookie practices are current, including regular checks, proper configuration of cookie banners, and transparency about data retention periods. The episode also touches on the role of third-party cookies, potential litigation, and regulatory actions. Compliance with cookie regulations is becoming increasingly important, with groups like NOYB driving many complaints and regulatory bodies across Europe ramping up enforcement efforts. Listeners are encouraged to assess their cookie practices and make necessary adjustments to avoid fines and maintain compliance. Key takeaways: The Rise of Cookie Enforcement Global Fines and Consequences Practical Compliance Tips Challenges with Cookie Banners Understanding Your Own Cookies Guidelines for Cookie Retention Resources: Connect with Tom Fox LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn PunterSouthall Life with GDPR was recently honored as a Top Data Security Podcast. Learn more about your ad choices. Visit megaphone.fm/adchoices

  --------  

  17:46

  --------

  17:46
• Navigating CCO and CISO Liability Trends

  Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. This episode discusses the complex topic of liability for the Chief Compliance Officer (CCO) and Chief Information Security Officer (CISO). Tom and Jonathan begin by examining notable cases like Joe Sullivan, the former CISO at Uber, who faced prosecution for mishandling a ransomware threat. They also cover other significant cases like Carlos Abarca from TSB Bank and Tim Brown from SolarWinds, highlighting the increasing trend towards personal liability among high-ranking compliance and security officers. Jonathan points out that prosecutors and legislators focus more on individual accountability, driven by the belief that this approach will encourage others to adhere to standards more rigorously. They explore the implications of misleading LinkedIn profiles and the importance of thorough due diligence when taking on new roles. The episode provides practical advice for C-suite executives to protect themselves, including negotiating indemnity clauses and ensuring accurate job descriptions. Key takeaways: Chief Compliance Officer Liability Overview Case Studies: Joe Sullivan and Uber, Carlos Barker and TSB Bank and Tim Brown and SolarWinds Legislation and Trends in Personal Liability SEC Formula for CCO Liability Resources: Connect with Tom Fox LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn PunterSouthall Life with GDPR was recently honored as a Top Data Security Podcast  Learn more about your ad choices. Visit megaphone.fm/adchoices

  --------  

  24:25

  --------

  24:25
• Navigating the EU AI Act

  Tom Fox and Jonathan Armstrong, renowned expert in cyber security, co-host the award-winning Life with GDPR. In this episode, they discuss a pressing deadline for compliance officers: the February 2nd enforcement of the EU AI Act’s prohibitions on unacceptable AI risk. Tom and Jonathan look at the phased implementation of this complex legislation, detailing the obligations of businesses using AI in their EU operations. Jonathan emphasizes the importance of identifying ‘shadow AI’ within organizations, from HR recruitment tools to consumer applications, and the substantial penalties for non-compliance, which can reach up to $35 million or 7% of global annual revenue. They also cover a practical five-step plan to help companies move towards compliance, involving board awareness, an AI inventory, assessment of AI tools, contract reviews, and transparency measures. Tune in to understand the nuances of this legislation and how to prepare your organization before the rapidly approaching deadline. Key takeaways: Understanding the EU AI Act Prohibited AI Applications Corporate and Personal Liability Steps to Compliance Resources: Connect with Tom Fox LinkedIn Connect with Jonathan Armstrong Twitter LinkedIn PunterSouthall Learn more about your ad choices. Visit megaphone.fm/adchoices

  --------  

  30:05

  --------

  30:05

More Business podcasts

Trending Business podcasts

About Life with GDPR

Life with GDPR: Podcasts in Family