A Their Story conversation with Sean Martin, Marco Ciappelli, and Imperva
Over 100+ countries and counting (along with a growing number is U.S. states) have enacted data privacy legislation, creating a super-complex global data privacy landscape. Unless, of course, you approach the situation with a different mindset.
Join us to explore the relationship between privacy, security, compliance, and ethics as organizations try to find the perfect balance in data creation, collection, storage, usage, and collaboration.
Don’t worry, we’ll set the record straight for the differences between the “DPO” and the “DPO” … as well as the participation and responsibilities of security, privacy, engineering, legal, compliance, and more.
Note: This story contains promotional content. Learn more.
Part 1: Data Privacy Strategy & Planning
Guest
Kate Barecchia
Deputy General Counsel & Global Data Privacy Officer at Imperva [@Imperva]
On Linkedin | https://www.linkedin.com/in/kate-barecchia-82759a14/
In this first episode, we take a quick look at the history of privacy law and regulation. We explore how the definitions and requirements are expanding for the benefit of consumers and the impact and challenges they create for the business.
We also get into the differences between data privacy, compliance, and security and how organizations can determine what its data privacy posture will look like in comparison/contrast to its security posture.
Is it a one-size-fits-all approach? As an engineer turned legal professional turned privacy executive, you might be surprised to hear what Kate’s recommendations are.
Additional Resources
Product: Imperva Data Security Fabric
Data Discovery Solution: Data discovery and classification
Data Security Solution: Sensitive and personal data security
Webinar: What Security Professionals Need to Know About Privacy in 2023
Whitepaper: A data-centric cybersecurity framework for digital transformation
Part 2: Implementation & Measurement
Guest
Kate Barecchia
Deputy General Counsel & Global Data Privacy Officer at Imperva [@Imperva]
On Linkedin | https://www.linkedin.com/in/kate-barecchia-82759a14/
In this second episode, we take a closer look at actionable strategies and steps organizations can take to operationalize data privacy compliance and how to leverage data privacy initiatives to create a stronger security posture. As we explore these challenges, we begin to uncover the realities of the increased complexity that comes with each decision the business makes to create, collect, store, process, and share sensitive information throughout multiple business systems, applications, and geographies. While there is a clear need to protect the data from being inappropriately accessed by authorized or unauthorized users, a better strategy can be found in the simplification of the business systems and processes thereby avoiding (or at least reducing) the exposure to compliance and security risk.
Whatever the drivers are behind your business outcomes and IT operations decisions, having an outcome in mind for privacy and security will give you something to shoot for. Whether it's creating the strongest posture possible or simply checking the boxes for compliance, at least you know where you're going and can begin to head down that path. Clarity and consistency in action brings improved preparedness and increased confidence to the conversation, which leads to more positive outcomes all the way around.