Episode 260 – Jon Bello: The Evolution of Privacy in the Philippines and Across Asia

In this episode of The Data Diva Talks Privacy Podcast, Debbie Reynolds, The Data Diva, speaks with Jon Bello, Partner at MBS Law Offices and IAPP 2025 Vanguard of the Year, about how the Philippines has emerged as a regional leader in privacy and data protection. They discuss how the country transitioned from business process outsourcing compliance to a culture of national awareness, and how its unique cultural and legal frameworks continue to influence privacy in Asia. Jon explains that the Philippines was one of the first Asian nations to pass a comprehensive data privacy law after the EU Data Directive but before the GDPR. He and Debbie examine how the Filipino language lacks a direct translation for the word “privacy,” reflecting a family-centric culture that values openness and community. They explore how this cultural context has shaped attitudes toward data sharing and protection. Jon also highlights how the National Privacy Commission has creatively raised public awareness through social media, educational jingles, and outreach campaigns aimed at children.

The discussion explores how the BPO industry contributed to the passage of the 2012 Privacy and Cybersecurity Laws and how many organizations now operate under three concurrent frameworks: U.S. privacy laws, such as HIPAA and PCI DSS, the Philippine Data Privacy Act, and the GDPR. Jon explains the importance of the Philippine requirement for a “privacy manual,” which goes beyond a privacy policy to define accountability and governance, as well as the legal requirement to register Data Protection Officers. Debbie and Jon also examine the region’s growing focus on AI governance, including Japan’s soft-law model and the Philippines’ proposed registration system for high-risk AI. The episode highlights the cultural diversity and context-specific nature of Asia’s privacy frameworks, underscoring their critical role in the global dialogue on privacy and technology.

Episode 259 – Andreea Lisievici Nevin: Building Global Privacy Leadership and Culture

In this episode of The Data Diva Talks Privacy Podcast, Debbie Reynolds, The Data Diva, speaks with Andreea Lisievici Nevin, Privacy, Digital, and AI Lawyer at PrivacyCraft, about how privacy leadership must extend beyond compliance to become an integral part of organizational culture and accountability. They discuss how privacy has evolved from a niche legal concern into a global business imperative that demands collaboration across legal, technical, and operational teams. Andreea explains that while many professionals understand the rules, the real challenge lies in translating those rules into effective, repeatable business processes. She and Debbie explore the difference between describing what compliance requires and operationalizing those requirements inside complex organizations.

The discussion examines how privacy professionals serve as bridge builders between legal, business, and technical domains, using communication and practical governance to ensure accountability. Andreea describes the cultural differences between privacy leadership in the European Union and the United States, noting that U.S. privacy officers often take a more proactive and decision-making role, while EU data protection officers function as independent advisors rather than implementers. Debbie and Andreea also emphasize the importance of tone from the top, explaining that privacy culture cannot thrive without active leadership support and visible alignment with company values. They explore why accountability must be embedded through clearly defined roles, responsibilities, and reporting lines, rather than being treated as a checkbox exercise. The conversation also covers the role of certification in the profession and why credentials alone do not ensure true capability. Andreea explains that continuous learning, mentorship, and collaboration are essential for sustaining privacy excellence. The episode highlights how communication, trust, and shared ownership define mature privacy programs and how strong leadership helps organizations transform compliance into enduring value.

Episode 258 – Terry Bollinger: Understanding the Limits of Artificial Intelligence

In this episode of The Data Diva Talks Privacy Podcast, Debbie Reynolds, The Data Diva, speaks with Terry Bollinger, retired technology analyst at MITRE, about the limits of artificial intelligence and the growing risks of relying on systems that only mimic human understanding. They discuss how large language models operate as mimicry machines, imitating intelligence rather than achieving it, and how this design choice leads to fundamental weaknesses in trust, accuracy, and accountability. Terry explains that AI models based on probability and pattern replication erase uniqueness, creating false confidence in their results. He warns that by averaging data rather than analyzing meaning, these systems blur important distinctions, making it difficult to detect errors, anomalies, or malicious activity. Debbie and Terry explore why true privacy and security depend on identifying outliers —the small deviations that reveal hidden threats, rather than relying on average trends.

Terry describes how traditional security systems are built on clearly defined boundaries, data paths, and verification processes, while modern AI systems often remove those controls. He emphasizes that when data is distributed, reweighted, and stored probabilistically, it becomes nearly impossible to verify what has been learned, lost, or leaked. The conversation examines the risks of utilizing LLMs in sensitive environments, where transmitting confidential data to remote commercial systems can compromise containment and integrity. Terry discusses how interpolation, or the act of filling in the blanks when data is missing, leads AI to generate convincing but incorrect answers, what he calls “random noise masquerading as insight.” Debbie and Terry also examine why intelligence, wisdom, and comprehension cannot be replicated through scale or speed. The episode concludes with a reflection on the importance of human judgment, accountability, and boundary control in an era where automation is expanding faster than understanding.

The Data Diva Talks Privacy Podcast – Episode 257 with Gina King, Cyber vCISO and Communications Consultant, King and Company Capital, with Debbie Reynolds ‘"The Data Diva”

Struggling to bridge the gap between business and technology teams? In this episode, Gina King shares how building trust and understanding unlocks stronger security outcomes. She also explains why companies rushing into AI without cleaning up their data first are putting their organizations at serious risk.

Gina and I discuss how she bridges communication between technical teams and business leadership, and why understanding motivations and emotions drives better collaboration. We explore how overlooked “folklore processes” create hidden risks, how insider threats and employee churn accelerate knowledge loss during the AI rush, and why privacy and cybersecurity must work symbiotically. Gina explains why data problems almost always precede privacy problems, the dangers of AI drift and misapplied answers, and the legal risks created by unclear contracts, consent gaps, and ambiguous rights to use AI.

We also examine the growing problem of fake AI companies, data-siphoning tools, and the risk they pose to small businesses, and why business leaders must align their data story before adopting AI.

This podcast reaches listeners in 140+ countries and 3,000+ cities and features leaders shaping global privacy, AI, and emerging technology strategy. If you are a business leader, CISO, or privacy professional, this episode will help you prevent AI chaos by fixing your data story and building trust between teams.

Subscribe to The Data Diva Talks Privacy Podcast for more conversations with global leaders shaping the future of privacy, data, and emerging technology.

#dataprivacy #datadiva #privacy #cybersecurity #AI #datagovernance #businessrisk

Episode 256 – Jennifer Wondracek, Director of the Law Library and Professor of Legal Research and Writing, Capital University Law School, ABA Women of Legal Tech Honoree

What happens when courts rely on fake cases created by AI? Jennifer Wondracek examines the risks associated with AI in legal research and education.

On The Data Diva Talks Privacy Podcast, Debbie Reynolds, “The Data Diva,” speaks with Jennifer Wondracek, Director of the Law Library and Professor of Legal Research and Writing at Capital University Law School, and ABA Women of Legal Tech Honoree, about the risks of AI in legal research and the responsibility of lawyers and educators to ensure its proper use. Wondracek highlights how courts have already faced real-world consequences when AI systems generated fabricated cases, exposing serious risks to professional practice.

She shares her perspective as a leader in law librarianship and legal technology, describing the epidemic of misattributed citations in legal filings and the dangers of allowing AI to revise legal writing without proper oversight. Wondracek explains why lawyers must verify sources rather than rely blindly on AI outputs, and why technology competency is now a critical requirement in the profession. She traces the shift from print to digital research and considers how AI represents the next stage of transformation. The discussion also addresses how legal education must adapt to prepare students for AI-driven research and practice, ensuring the next generation is ready to use these tools responsibly.

This episode offers valuable insights not only to lawyers and educators but also to anyone curious about how AI is reshaping trust, accountability, and knowledge in fields that impact society as a whole.

Hosted by Debbie Reynolds, “The Data Diva,” bringing global leaders together on privacy, cybersecurity, and emerging technology.

Episode 255 – Don Morron, Founder and CEO of Highland Tech, AI Agents for Enterprise

What does it take to build resilience in a world of constant cyber threats? Don Morron shares strategies for adapting without losing control.

On The Data Diva Talks Privacy Podcast, Debbie Reynolds, “The Data Diva,” interviews Don Morron, Founder and CEO of Highland Tech, AI Agents for Enterprise, about how executives can build resilience into their organizations in the face of a constantly evolving cyber threat landscape. Morron shares lessons from his leadership journey in cybersecurity and explains why resilience cannot be bolted on after the fact but must be embedded into enterprise systems from the very beginning.

The conversation covers how AI is reshaping cybersecurity, both by enabling attackers with new tools and by empowering defenders with advanced capabilities. Morron provides practical insights into managing enterprise security operations in rapidly changing conditions without compromising organizational control. He stresses the importance of communication and collaboration across teams, highlighting how siloed approaches undermine resilience. The episode also explains why proactive governance and long-term planning are far more effective than reactive firefighting.

These insights are useful not only for executives and security leaders but also for anyone interested in how organizations adapt to technology-driven risks and build strength in uncertain times.

Hosted by Debbie Reynolds, “The Data Diva,” bringing global leaders together on privacy, cybersecurity, and emerging technology.

Episode 254 – Bryan Lee, Founder and General Partner, Privatus Consulting

Why do privacy programs fail even when companies want to succeed? Bryan Lee explains why communication is the missing piece.

On The Data Diva Talks Privacy Podcast, Debbie Reynolds, “The Data Diva,” welcomes Bryan Lee, Founder and General Partner at Privatus Consulting, to discuss why effective privacy programs succeed through strong communication rather than technical jargon. Lee explains how privacy engineering serves as a critical link between policy, compliance, and technical teams, and why clear communication is often the deciding factor in whether organizations achieve their privacy goals.

He explains why many companies fail at privacy, despite genuine intent, often because coordination among stakeholders breaks down. Lee reflects on his own career path, transitioning from intelligence work to privacy consulting, and shares insights into how organizations can overcome communication barriers to develop programs that are both compliant and effective. The conversation also covers the risks of misjudging AI, particularly the mistake of treating systems as if they were human, and how this misunderstanding creates governance and operational problems.

This episode offers strategies for bridging gaps, enhancing collaboration, and addressing complex issues, resonating with privacy leaders, compliance professionals, and anyone seeking to understand how effective communication drives successful outcomes in organizations.

Hosted by Debbie Reynolds, “The Data Diva,” bringing global leaders together on privacy, cybersecurity, and emerging technology.

Episode 253 – Priya Gnanasekaran, Senior Security Engineer at LAB3 (Australia)

Can AI be both a risk and a defense? In this episode, Priya Gnanasekaran shares how organizations can manage today’s most pressing cybersecurity challenges.

On The Data Diva Talks Privacy Podcast, Debbie Reynolds, “The Data Diva,” speaks with Priya Gnanasekaran, Senior Security Engineer at LAB3 (Australia), about the complex challenges cybersecurity leaders face with AI, IoT, and cloud security. Drawing on her decade-long career spanning DevSecOps, engineering, and operations, Gnanasekaran explains why cybersecurity cannot be reduced to a single field but must be understood as an amalgamation of multiple interconnected disciplines. She highlights the distinction between IT and cybersecurity and explains why this distinction is crucial for executives making risk and investment decisions.

The conversation examines AI’s dual role in cybersecurity, acting both as a new attack vector and as a defensive tool that, when used responsibly, can strengthen organizational security. Gnanasekaran also details the risks of shadow AI and unmonitored enterprise use, exposing businesses to unmanaged vulnerabilities. She addresses weaknesses in IoT ecosystems, including outdated devices and hardware flaws, and argues that these cannot be solved through patchwork responses. Instead, she emphasizes the importance of “shifting left” by embedding security earlier in DevSecOps processes. Gnanasekaran stresses that cybersecurity cannot be treated like a fire department that responds only after damage has been done.

This discussion offers valuable lessons on resilience, innovation, and proactive strategy, applicable not only to security professionals but also to anyone interested in understanding how digital systems can be better protected and managed.

Hosted by Debbie Reynolds, “The Data Diva,” bringing global leaders together on privacy, cybersecurity, and emerging technology.

🎙️ Episode 252 of The Data Diva Talks Privacy Podcast – J. Mark Bishop and Debbie Reynolds, The Data Diva, on AI myths, GDPR safeguards, and energy costs of large models

In this episode, I speak with J. Mark Bishop, Professor of Cognitive Computing Emeritus at Goldsmiths, University of London, and Scientific Advisor to Fact360, about the myths and realities of artificial intelligence.

Our discussion begins with how we describe AI itself. Mark challenges the language we use, terms like “learning” in machine learning, and argues that much of what is happening is, in fact, just optimization. We examine how anthropomorphic language about AI can create misplaced expectations, shaping how the public and policymakers perceive these technologies.

We examine the tension between AI and privacy, particularly in relation to transparency. Mark reflects on the protections built into frameworks like the GDPR, which explicitly address how personal data may be used when AI makes or informs significant decisions. We examine how these rules strike a balance between individual rights and the need to utilize AI systems in business and government.

Another major theme is metadata analysis. Mark shares insights from his work at Fact360, where analyzing patterns of communication without even looking at message content can reveal signals of organizational change, insider threats, or misconduct. This approach has roots in traffic analysis techniques dating back to World War II, showing how metadata continues to play a powerful role in intelligence and security.

We also discuss the scaling laws of AI and whether building increasingly larger data centers will ultimately lead to artificial general intelligence. Mark strongly critiques this idea, raising concerns about the energy demands of massive AI models. He points out the environmental and ethical costs of data centers, which consume energy on the scale of entire nations, especially when many communities still live in energy poverty.

This episode brings together philosophy, technology, governance, and ethics, a conversation that questions not just what AI is, but what it should be.

Subscribe to “The Data Diva” Talks Privacy Podcast, now available on all major podcast directories, including Apple Podcasts, Spotify, Stitcher, iHeart Radio, and more.

Hosted by Data Diva Media
Debbie Reynolds Consulting, LLC

#AI #ethics #metadata #GDPR #datagovernance #sustainability
#dataprivacy #datadiva #privacy #cybersecurity

In episode 251 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Ilia Dubovtsev, Founder of Dub Consulting, joining from Moscow, Russia. he discussion centers on the complexities of privacy in the workplace and how emerging technologies, especially AI, are reshaping the boundaries of personal data and institutional responsibility. Ilia shares his framework for operationalizing privacy—built on the principles of accountability, fairness, and balancing interests, and explains why this model is essential when managing employee data in digitally driven environments.

Ilia shares his belief that privacy is the maximum expression of individual liberty. He developed a three-pillar framework for privacy programs: accountability, balance of interest, and fairness. He explains how these principles can be applied across jurisdictions, whether in Russia, Europe, or the United States. Despite the United States’ lack of a comprehensive federal privacy law, Ilia notes that core principles like non-discrimination and transparency often serve as common ground for workplace privacy protections.

Debbie and Ilia dive deep into the complexities of employee privacy, comparing regulatory and cultural variations. They acknowledge that workplace data, often governed by contract law, labor law, and surveillance practices, is uniquely sensitive because employees have fewer choices about whether and how their data is collected. The conversation shifts to the influence of AI in the workplace. Ilia envisions AI empowering employees by reducing dependency on traditional corporate structures, potentially shifting employer-employee dynamics to a more equitable “peer” relationship. He proposes a new privacy policy model that includes (1) transparent data practices, (2) distinct policy boundaries across employment stages, and (3) accessible remedies for challenging data misuse. Ilia stresses the need for literacy, both technical and legal, to protect workers and hold employers accountable.

The episode concludes with a thoughtful exchange on liberty, trust, and the potential of fair AI governance. Ilia emphasizes that privacy must be preserved through principled regulation and public education, rather than a proliferation of fragmented, burdensome rules. He cites the U.S. scholarly conversation around the “duty of loyalty” and calls for frameworks that ensure both data accountability and empowerment for individuals.

#EmployeePrivacy #GlobalPrivacyFramework #AIinWorkplace #DubConsulting #PrivacyRights #DigitalGovernance #DataLiberty #WorkplaceEthics #AIandHR #PrivacyLiteracy

In episode 250 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Marianne Mazaud, Co-Founder of AI ON US, an International Executive Summit Focused on Responsible Artificial Intelligence, co-created with Thomas Lozopone. They explore the powerful relationship between AI, privacy, and trust, emphasizing how leaders can take actionable steps to create inclusive and ethically grounded AI systems.

Marianne shares insights from her extensive experience in creative performance marketing and brand protection, including how generative AI technologies have created both opportunities and new risks. She stresses the importance of privacy and inclusion in AI governance, especially in high-risk sectors like healthcare and education.

The conversation moves to public trust in AI. Marianne references a study revealing widespread distrust in AI systems due to cybersecurity concerns, algorithmic bias, and lack of transparency. She highlights the need to involve more diverse voices, including individuals with disabilities and children, in the development of emerging technologies. Marianne and Debbie also examine the role of data privacy in consumer trust, citing a PricewaterhouseCoopers report showing that 83% of consumers believe data protection is essential to building trust with businesses.

They compare AI regulatory landscapes across the European Union and the United States. Marianne outlines how the EU AI Act places joint responsibility on AI developers and providers, which can introduce compliance complexities, especially for small businesses. She explains how these regulations can be difficult to implement retroactively and may impact innovation when not considered early in the development process.

Marianne closes by introducing the AI On Us initiative and the International Summit on Responsible AI for Executives. These efforts are designed to support leaders navigating AI governance through immersive workshops, best practices, and applied exercises. She also describes the Arborist Charter, a commitment to gender equality and inclusion in AI that has been adopted by 150 companies globally.

In episode 249 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Marlyse McQuillen, Vice President of Regulatory Compliance, Privacy, and AI at IntegraConnect LLC. Their conversation offers a multidimensional exploration of privacy, from professional ethics and emerging legal conflicts to education policy and AI governance.

Marlyse shares her journey into privacy law, which began during her work as a corporate attorney and expanded through roles in sectors such as health care, finance, and security. She reflects on her professional evolution and her aspirations to bring her cross-industry expertise to companies, especially as organizations increasingly confront regulatory pressure in the areas of consumer data and artificial intelligence.

The conversation dives into privacy issues in healthcare, where Marlyse emphasizes the risks of digital health data in a landscape that continues to shift toward value-based care. She highlights how HIPAA and HIPAA adjacent laws or obligations create complexities in addressing data outside of traditional clinical systems. This becomes especially urgent when companies face financial instability. Marlyse details the example of 23AndMe, a major bankruptcy involving genetic data, in which states raised objections to the sale of consumer health information, and the court ultimately appointed a consumer privacy ombudsman. She and Debbie underscore the long-term damage to trust when sensitive personal data is treated as a transferable asset during bankruptcy proceedings.

The discussion also touches on public digital exposure through the lens of the “Coldplaygate” incident, where a viral Kiss Cam moment led to the resignation of a company CEO. Marlyse and Debbie reflect on how these seemingly lighthearted digital moments can carry real consequences, especially in an era of high surveillance and online amplification. They emphasize the importance of discretion and privacy boundaries, even in public settings.

Marlyse brings a strong policy perspective, advocating for legislative updates to genetic privacy laws and more comprehensive protection for children in schools. She is actively working with the Plunk Foundation to build a digital literacy curriculum that educates young people on safe AI use and privacy rights. She envisions federal mandates for consumer data protection education as a way to create foundational awareness early in life.

The episode closes with personal reflections on the rewarding yet difficult work of privacy leadership, the importance of soft skills development, and Marlyse’s creative approach to privacy education, including a song she wrote to raise awareness about data rights. Throughout, she champions practical reforms, better breach responses, and a cultural shift toward accountability in both public and private uses of technology.

#DigitalHealthPrivacy #GeneticData #AIinEducation #ConsumerTrust #Coldplaygate #PrivacyEducation #PlunkFoundation #PrivacyBankruptcy #PrivacyLeadership #DigitalLiteracy #DataRights

Debbie Reynolds, “The Data Diva,” speaks with Damilola Adenuga-Taiwo, a cybersecurity and compliance professional with extensive expertise in payment systems, PCI DSS, ISO standards, and governance frameworks. We discuss his unconventional path into the field, beginning with teaching postgraduate technology courses and evolving into global consulting roles focused on cybersecurity risk, assessments, and compliance. Damilola explains the critical role of standards like PCI DSS in securing cardholder data, how global payment brands shaped their adoption, and why such frameworks succeed even without legal mandates.

We explore the nuanced differences between privacy and cybersecurity, the challenges of implementing compliance in high-friction environments such as digital payments, and how financial institutions have effectively balanced innovation with data protection. Damilola also explores the convergence of security and privacy, illustrating how standards require organizations to consider not only what data is collected, but also why, for how long, and under what conditions it must be deleted.

A major theme of the episode is the growing concern over AI misuse, ranging from deepfakes and fraud to the psychological implications of relying on generative AI daily. Damilola reflects on how tools like ChatGPT are rapidly transforming work habits, raising ethical questions about digital dependency, and blurring the line between convenience and risk. We also discuss the widening regulatory gap, the need for proactive standards, and how cybersecurity professionals can bridge the chasm between policy, practice, and public trust.

This episode offers practical and philosophical insights for anyone grappling with the accelerating pace of AI, the rigor of compliance, and the evolving definitions of data responsibility. We hope for a future where robust compliance frameworks, informed users, and ethical innovation collaborate to ensure digital safety and personal autonomy.

Debbie Reynolds, “The Data Diva,” talks to Michael Robbins, Social Entrepreneur and Civic Builder, and a visionary in building human-plus-digital learning ecosystems. We discuss his decades-long journey at the intersection of education, technology, and community, from grassroots innovation to White House policy. Michael shares a compelling vision for the future of AI in education, centered on empowering individuals to create and control their own AI narratives. He introduces his data model, called DOTES (Do, Observe, Tell, Explore, Show), which captures real-world learning experiences and enables the training of personalized AI agents grounded in data integrity and digital personhood.

Our conversation explores the concept of implication models, AI systems that learn from and work for people, rather than exploiting their data. Michael draws parallels between decentralized data governance and the design of AI trusts, where individuals have full control over their digital identities and contributions. We also explore the limitations of current large language models and discuss new frameworks that could rebuild AI from the ground up, centering privacy, consent, and community.

Together, we envision a future where youth and adults alike use AI not as a replacement for human intelligence but as a tool for self-expression, empowerment, and democratic participation. This episode is a masterclass in AI ethics, digital sovereignty, and the urgent need to shift from extractive technologies to human-first ecosystems. We hope for a future where data privacy is not just a legal checkbox, but a fundamental principle of technological design and societal infrastructure.

In episode 246 of “The Data Diva” Talks Privacy Podcast, Debbie Reynolds talks to Aparna Bhushan, In episode 246 of “The Data Diva” Talks Privacy Podcast, Debbie Reynolds talks to Aparna Bhushan, a co-host of the Rethinking Tech podcast and a seasoned data protection and governance attorney licensed in both the U.S. and Canada. Together, they explore the critical intersection of geopolitics, tech policy, and data ethics. Aparna shares her professional journey from startups to global corporations and international organizations, such as UNICEF, where her passion for ethical and practical data governance took root. The conversation examines the fast-paced and often contradictory dynamics facing governments, companies, and users in the digital age, highlighting how the collapse of traditional rules has left many institutions struggling to find direction.

Debbie and Aparna discuss how companies are navigating conflicting global regulations, the growing risks of consumer backlash, and the real-world consequences of poor data decisions, such as the fallout from GM’s data broker scandal and the potential sale of sensitive genetic data in the 23andMe bankruptcy. They also address the dangers of regulation lag, scope creep, and public distrust in platforms that mishandle personal data. Aparna shares her perspective on the emerging global impact of the EU AI Act and the regulatory vacuum in the U.S., arguing that proactive privacy strategies and consumer trust are more valuable than merely checking compliance boxes.

We dive deep into the complexities of age verification laws, questioning the practicality and privacy implications of requiring IDs or weakening encryption to protect children online. They emphasize the need for innovation that respects user rights and propose creative approaches to solving systemic data challenges, including Aparna’s vision for AI systems that can audit other AI models for fairness and bias.

To close the episode, Aparna shares her global privacy wish list: a more conscious and intentional user culture, and a renewed investment in responsible technology development. This thoughtful and wide-ranging conversation is a must-listen for anyone interested in the ethical evolution of data governance in a rapidly shifting global landscape.

In episode 245, Debbie Reynolds, “The Data Diva” talks to Onur Korucu, a Non-Executive Director, Managing Partner, Advisory Board Member, IAPP, who brings a rare combination of legal and engineering expertise to the fields of privacy, governance, and artificial intelligence. We discuss how Onur’s early fascination with cybersecurity shaped her dual career as both a technology expert and a data protection strategist. She shares insights from her work advising companies across Europe, the Middle East, and beyond on the safe and ethical deployment of AI systems. Onur emphasizes that privacy must be embedded into the foundation of AI models, not just layered on later, and that risk management must include human-centered perspectives from design through deployment.

We explore the practical challenges of global compliance, how organizations struggle to keep up with the rapid pace of AI development, and the ethical dilemmas posed by technologies such as deepfakes and surveillance systems. Onur shares her vision for holistic governance frameworks that empower privacy professionals, policymakers, and engineers to work collaboratively. She also discusses the role of education, mentorship, and community support in building resilience within the data protection profession. This episode offers a global perspective on the convergence of AI and privacy, expressing hope for an ethical digital future where transparency, accountability, and human oversight are not optional but essential, and this is also reflected in Data Privacy in the future.

In episode 244, Debbie Reynolds, “The Data Diva” talks to Aleksandr Tiulkanov, a digital ethics researcher, legal expert, and technology policy advisor working at the intersection of computer science, human rights, and international law. Aleksandr brings a rare blend of technical depth and policy insight to global conversations about the governance of artificial intelligence, cybersecurity, and emerging technologies. We discuss his career path from data protection and human rights advocacy to working with global institutions such as the United Nations and the Council of Europe, where he has contributed to international standards on data governance and AI ethics.

Aleksandr offers a compelling critique of current AI systems, particularly large language models, which he views as limited in their ability to capture true human intelligence and emotion. He explains why ethical design cannot be an afterthought in AI development, and how the lack of transparency in algorithmic decision-making threatens not only individual privacy but democratic structures worldwide. We talk about the deep structural issues that exist in both legal and technical approaches to AI and data protection, including the challenges of harmonizing cross-border laws, the power imbalance between tech companies and users, and the geopolitical dimensions of digital sovereignty.

We also explore Aleksandr’s thoughts on the role of civil society and how community-driven oversight and decentralized governance might offer more sustainable alternatives to corporate-led AI development. He advocates for a deeper integration of ethical reasoning into computer science education, highlighting the need for stronger global frameworks that prioritize fairness, accountability, and the right to opt out of data-hungry systems.

This episode is a thoughtful and wide-ranging exploration of digital ethics, global privacy regulation, and the future of responsible technology. It issues an urgent call for collaboration among lawyers, technologists, regulators, and citizens to develop systems that truly serve humanity. We share hope for a future where the rule of law, not just code, guides the evolution of AI, and where human dignity remains at the center of innovation.

In episode 243 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Yogita Parulekar, CEO and Founder of Invigrid. Yogita brings over two decades of cybersecurity leadership to the conversation, beginning her journey in the industry long before it was a mainstream priority. With deep expertise in governance, infrastructure, and crisis response, Yogita discusses how the landscape of cyber threats has evolved dramatically, moving from relatively isolated risks to complex, interconnected threats fueled by AI, deepfakes, disinformation, and geopolitical uncertainty. She and Debbie explore the urgent need for companies to embed cybersecurity into the DNA of their business strategy, rather than treat it as an isolated IT function. Yogita emphasizes that today's cyber risk is not just technical—it is existential, affecting national security, business continuity, and societal trust. She shares insights on the growing importance of board-level engagement, cyber education, and scenario planning. Yogita also highlights how cyber and privacy are often misunderstood, offering a helpful analogy to distinguish their roles: privacy is about people, while security is about infrastructure. The discussion reinforces that to succeed in today’s environment, organizations must integrate privacy, cybersecurity, and governance from the start.

In episode 242 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Karina Klever, CEO and CISO at Klever Compliance. Karina shares her extensive career journey through IT operations, project management, and compliance leadership to demystify what effective governance really means. She challenges the outdated practice of blindly following frameworks and checklists that do not reflect a company’s actual business model or operational maturity. Karina introduces her pragmatic “Now, Next, Near, Never” methodology—a practical framework for prioritizing GRC (governance, risk, compliance) efforts based on relevance, applicability, and timing. She and Debbie unpack why so many organizations suffer from “compliance theater,” implementing policies they do not actually follow or understand. Karina explains the risks of orphaned controls, vague role descriptions, and overreliance on vendor templates that are misaligned with internal realities. She also stresses the importance of documentation, clarity in control language, and having a feedback loop for maturing compliance over time. This episode is a must-listen for organizations looking to move beyond checkbox audits and build scalable, operationally aligned governance structures that support real risk mitigation and long-term accountability.

In episode 241 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Phillip Mason, Global Privacy Program Manager at Corning, Inc. Phillip joins Debbie to discuss the complicated interplay between AI advancement, regulatory frameworks, and the ethical imperative of human judgment. Drawing from his diverse background in accounting, law, and privacy, Phillip offers an informed and multidimensional perspective on how businesses navigate emerging risks. He critiques overbroad AI legislation like the EU AI Act, which he believes may have unintended consequences for innovation, particularly among smaller firms lacking legal and compliance resources. Debbie and Phillip dive into examples of poorly executed AI rollouts that sparked public backlash, such as LinkedIn’s data harvesting practices and Microsoft’s Recall feature, emphasizing the importance of transparency and foresight. Phillip also unpacks the difference between having a “human in the loop” and placing real ethical judgment into practice. They discuss how organizations can build a culture of trust and accountability where data science and compliance work harmoniously. The conversation ultimately underscores that as algorithms get smarter, human oversight must also evolve, with thoughtful governance, interdisciplinary collaboration, and values-driven leadership.