🎙️ Episode 252 of The Data Diva Talks Privacy Podcast – J. Mark Bishop and Debbie Reynolds, The Data Diva, on AI myths, GDPR safeguards, and energy costs of large models

In this episode, I speak with J. Mark Bishop, Professor of Cognitive Computing Emeritus at Goldsmiths, University of London, and Scientific Advisor to Fact360, about the myths and realities of artificial intelligence.

Our discussion begins with how we describe AI itself. Mark challenges the language we use, terms like “learning” in machine learning, and argues that much of what is happening is, in fact, just optimization. We examine how anthropomorphic language about AI can create misplaced expectations, shaping how the public and policymakers perceive these technologies.

We examine the tension between AI and privacy, particularly in relation to transparency. Mark reflects on the protections built into frameworks like the GDPR, which explicitly address how personal data may be used when AI makes or informs significant decisions. We examine how these rules strike a balance between individual rights and the need to utilize AI systems in business and government.

Another major theme is metadata analysis. Mark shares insights from his work at Fact360, where analyzing patterns of communication without even looking at message content can reveal signals of organizational change, insider threats, or misconduct. This approach has roots in traffic analysis techniques dating back to World War II, showing how metadata continues to play a powerful role in intelligence and security.

We also discuss the scaling laws of AI and whether building increasingly larger data centers will ultimately lead to artificial general intelligence. Mark strongly critiques this idea, raising concerns about the energy demands of massive AI models. He points out the environmental and ethical costs of data centers, which consume energy on the scale of entire nations, especially when many communities still live in energy poverty.

This episode brings together philosophy, technology, governance, and ethics, a conversation that questions not just what AI is, but what it should be.

Subscribe to “The Data Diva” Talks Privacy Podcast, now available on all major podcast directories, including Apple Podcasts, Spotify, Stitcher, iHeart Radio, and more.

Hosted by Data Diva Media
Debbie Reynolds Consulting, LLC

#AI #ethics #metadata #GDPR #datagovernance #sustainability
#dataprivacy #datadiva #privacy #cybersecurity

In episode 251 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Ilia Dubovtsev, Founder of Dub Consulting, joining from Moscow, Russia. he discussion centers on the complexities of privacy in the workplace and how emerging technologies, especially AI, are reshaping the boundaries of personal data and institutional responsibility. Ilia shares his framework for operationalizing privacy—built on the principles of accountability, fairness, and balancing interests, and explains why this model is essential when managing employee data in digitally driven environments.

Ilia shares his belief that privacy is the maximum expression of individual liberty. He developed a three-pillar framework for privacy programs: accountability, balance of interest, and fairness. He explains how these principles can be applied across jurisdictions, whether in Russia, Europe, or the United States. Despite the United States’ lack of a comprehensive federal privacy law, Ilia notes that core principles like non-discrimination and transparency often serve as common ground for workplace privacy protections.

Debbie and Ilia dive deep into the complexities of employee privacy, comparing regulatory and cultural variations. They acknowledge that workplace data, often governed by contract law, labor law, and surveillance practices, is uniquely sensitive because employees have fewer choices about whether and how their data is collected. The conversation shifts to the influence of AI in the workplace. Ilia envisions AI empowering employees by reducing dependency on traditional corporate structures, potentially shifting employer-employee dynamics to a more equitable “peer” relationship. He proposes a new privacy policy model that includes (1) transparent data practices, (2) distinct policy boundaries across employment stages, and (3) accessible remedies for challenging data misuse. Ilia stresses the need for literacy, both technical and legal, to protect workers and hold employers accountable.

The episode concludes with a thoughtful exchange on liberty, trust, and the potential of fair AI governance. Ilia emphasizes that privacy must be preserved through principled regulation and public education, rather than a proliferation of fragmented, burdensome rules. He cites the U.S. scholarly conversation around the “duty of loyalty” and calls for frameworks that ensure both data accountability and empowerment for individuals.

#EmployeePrivacy #GlobalPrivacyFramework #AIinWorkplace #DubConsulting #PrivacyRights #DigitalGovernance #DataLiberty #WorkplaceEthics #AIandHR #PrivacyLiteracy

In episode 250 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Marianne Mazaud, Co-Founder of AI ON US, an International Executive Summit Focused on Responsible Artificial Intelligence, co-created with Thomas Lozopone. They explore the powerful relationship between AI, privacy, and trust, emphasizing how leaders can take actionable steps to create inclusive and ethically grounded AI systems.

Marianne shares insights from her extensive experience in creative performance marketing and brand protection, including how generative AI technologies have created both opportunities and new risks. She stresses the importance of privacy and inclusion in AI governance, especially in high-risk sectors like healthcare and education.

The conversation moves to public trust in AI. Marianne references a study revealing widespread distrust in AI systems due to cybersecurity concerns, algorithmic bias, and lack of transparency. She highlights the need to involve more diverse voices, including individuals with disabilities and children, in the development of emerging technologies. Marianne and Debbie also examine the role of data privacy in consumer trust, citing a PricewaterhouseCoopers report showing that 83% of consumers believe data protection is essential to building trust with businesses.

They compare AI regulatory landscapes across the European Union and the United States. Marianne outlines how the EU AI Act places joint responsibility on AI developers and providers, which can introduce compliance complexities, especially for small businesses. She explains how these regulations can be difficult to implement retroactively and may impact innovation when not considered early in the development process.

Marianne closes by introducing the AI On Us initiative and the International Summit on Responsible AI for Executives. These efforts are designed to support leaders navigating AI governance through immersive workshops, best practices, and applied exercises. She also describes the Arborist Charter, a commitment to gender equality and inclusion in AI that has been adopted by 150 companies globally.

In episode 249 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Marlyse McQuillen, Vice President of Regulatory Compliance, Privacy, and AI at IntegraConnect LLC. Their conversation offers a multidimensional exploration of privacy, from professional ethics and emerging legal conflicts to education policy and AI governance.

Marlyse shares her journey into privacy law, which began during her work as a corporate attorney and expanded through roles in sectors such as health care, finance, and security. She reflects on her professional evolution and her aspirations to bring her cross-industry expertise to companies, especially as organizations increasingly confront regulatory pressure in the areas of consumer data and artificial intelligence.

The conversation dives into privacy issues in healthcare, where Marlyse emphasizes the risks of digital health data in a landscape that continues to shift toward value-based care. She highlights how HIPAA and HIPAA adjacent laws or obligations create complexities in addressing data outside of traditional clinical systems. This becomes especially urgent when companies face financial instability. Marlyse details the example of 23AndMe, a major bankruptcy involving genetic data, in which states raised objections to the sale of consumer health information, and the court ultimately appointed a consumer privacy ombudsman. She and Debbie underscore the long-term damage to trust when sensitive personal data is treated as a transferable asset during bankruptcy proceedings.

The discussion also touches on public digital exposure through the lens of the “Coldplaygate” incident, where a viral Kiss Cam moment led to the resignation of a company CEO. Marlyse and Debbie reflect on how these seemingly lighthearted digital moments can carry real consequences, especially in an era of high surveillance and online amplification. They emphasize the importance of discretion and privacy boundaries, even in public settings.

Marlyse brings a strong policy perspective, advocating for legislative updates to genetic privacy laws and more comprehensive protection for children in schools. She is actively working with the Plunk Foundation to build a digital literacy curriculum that educates young people on safe AI use and privacy rights. She envisions federal mandates for consumer data protection education as a way to create foundational awareness early in life.

The episode closes with personal reflections on the rewarding yet difficult work of privacy leadership, the importance of soft skills development, and Marlyse’s creative approach to privacy education, including a song she wrote to raise awareness about data rights. Throughout, she champions practical reforms, better breach responses, and a cultural shift toward accountability in both public and private uses of technology.

#DigitalHealthPrivacy #GeneticData #AIinEducation #ConsumerTrust #Coldplaygate #PrivacyEducation #PlunkFoundation #PrivacyBankruptcy #PrivacyLeadership #DigitalLiteracy #DataRights

Debbie Reynolds, “The Data Diva,” speaks with Damilola Adenuga-Taiwo, a cybersecurity and compliance professional with extensive expertise in payment systems, PCI DSS, ISO standards, and governance frameworks. We discuss his unconventional path into the field, beginning with teaching postgraduate technology courses and evolving into global consulting roles focused on cybersecurity risk, assessments, and compliance. Damilola explains the critical role of standards like PCI DSS in securing cardholder data, how global payment brands shaped their adoption, and why such frameworks succeed even without legal mandates.

We explore the nuanced differences between privacy and cybersecurity, the challenges of implementing compliance in high-friction environments such as digital payments, and how financial institutions have effectively balanced innovation with data protection. Damilola also explores the convergence of security and privacy, illustrating how standards require organizations to consider not only what data is collected, but also why, for how long, and under what conditions it must be deleted.

A major theme of the episode is the growing concern over AI misuse, ranging from deepfakes and fraud to the psychological implications of relying on generative AI daily. Damilola reflects on how tools like ChatGPT are rapidly transforming work habits, raising ethical questions about digital dependency, and blurring the line between convenience and risk. We also discuss the widening regulatory gap, the need for proactive standards, and how cybersecurity professionals can bridge the chasm between policy, practice, and public trust.

This episode offers practical and philosophical insights for anyone grappling with the accelerating pace of AI, the rigor of compliance, and the evolving definitions of data responsibility. We hope for a future where robust compliance frameworks, informed users, and ethical innovation collaborate to ensure digital safety and personal autonomy.

Debbie Reynolds, “The Data Diva,” talks to Michael Robbins, Social Entrepreneur and Civic Builder, and a visionary in building human-plus-digital learning ecosystems. We discuss his decades-long journey at the intersection of education, technology, and community, from grassroots innovation to White House policy. Michael shares a compelling vision for the future of AI in education, centered on empowering individuals to create and control their own AI narratives. He introduces his data model, called DOTES (Do, Observe, Tell, Explore, Show), which captures real-world learning experiences and enables the training of personalized AI agents grounded in data integrity and digital personhood.

Our conversation explores the concept of implication models, AI systems that learn from and work for people, rather than exploiting their data. Michael draws parallels between decentralized data governance and the design of AI trusts, where individuals have full control over their digital identities and contributions. We also explore the limitations of current large language models and discuss new frameworks that could rebuild AI from the ground up, centering privacy, consent, and community.

Together, we envision a future where youth and adults alike use AI not as a replacement for human intelligence but as a tool for self-expression, empowerment, and democratic participation. This episode is a masterclass in AI ethics, digital sovereignty, and the urgent need to shift from extractive technologies to human-first ecosystems. We hope for a future where data privacy is not just a legal checkbox, but a fundamental principle of technological design and societal infrastructure.

In episode 246 of “The Data Diva” Talks Privacy Podcast, Debbie Reynolds talks to Aparna Bhushan, In episode 246 of “The Data Diva” Talks Privacy Podcast, Debbie Reynolds talks to Aparna Bhushan, a co-host of the Rethinking Tech podcast and a seasoned data protection and governance attorney licensed in both the U.S. and Canada. Together, they explore the critical intersection of geopolitics, tech policy, and data ethics. Aparna shares her professional journey from startups to global corporations and international organizations, such as UNICEF, where her passion for ethical and practical data governance took root. The conversation examines the fast-paced and often contradictory dynamics facing governments, companies, and users in the digital age, highlighting how the collapse of traditional rules has left many institutions struggling to find direction.

Debbie and Aparna discuss how companies are navigating conflicting global regulations, the growing risks of consumer backlash, and the real-world consequences of poor data decisions, such as the fallout from GM’s data broker scandal and the potential sale of sensitive genetic data in the 23andMe bankruptcy. They also address the dangers of regulation lag, scope creep, and public distrust in platforms that mishandle personal data. Aparna shares her perspective on the emerging global impact of the EU AI Act and the regulatory vacuum in the U.S., arguing that proactive privacy strategies and consumer trust are more valuable than merely checking compliance boxes.

We dive deep into the complexities of age verification laws, questioning the practicality and privacy implications of requiring IDs or weakening encryption to protect children online. They emphasize the need for innovation that respects user rights and propose creative approaches to solving systemic data challenges, including Aparna’s vision for AI systems that can audit other AI models for fairness and bias.

To close the episode, Aparna shares her global privacy wish list: a more conscious and intentional user culture, and a renewed investment in responsible technology development. This thoughtful and wide-ranging conversation is a must-listen for anyone interested in the ethical evolution of data governance in a rapidly shifting global landscape.

In episode 245, Debbie Reynolds, “The Data Diva” talks to Onur Korucu, a Non-Executive Director, Managing Partner, Advisory Board Member, IAPP, who brings a rare combination of legal and engineering expertise to the fields of privacy, governance, and artificial intelligence. We discuss how Onur’s early fascination with cybersecurity shaped her dual career as both a technology expert and a data protection strategist. She shares insights from her work advising companies across Europe, the Middle East, and beyond on the safe and ethical deployment of AI systems. Onur emphasizes that privacy must be embedded into the foundation of AI models, not just layered on later, and that risk management must include human-centered perspectives from design through deployment.

We explore the practical challenges of global compliance, how organizations struggle to keep up with the rapid pace of AI development, and the ethical dilemmas posed by technologies such as deepfakes and surveillance systems. Onur shares her vision for holistic governance frameworks that empower privacy professionals, policymakers, and engineers to work collaboratively. She also discusses the role of education, mentorship, and community support in building resilience within the data protection profession. This episode offers a global perspective on the convergence of AI and privacy, expressing hope for an ethical digital future where transparency, accountability, and human oversight are not optional but essential, and this is also reflected in Data Privacy in the future.

In episode 244, Debbie Reynolds, “The Data Diva” talks to Aleksandr Tiulkanov, a digital ethics researcher, legal expert, and technology policy advisor working at the intersection of computer science, human rights, and international law. Aleksandr brings a rare blend of technical depth and policy insight to global conversations about the governance of artificial intelligence, cybersecurity, and emerging technologies. We discuss his career path from data protection and human rights advocacy to working with global institutions such as the United Nations and the Council of Europe, where he has contributed to international standards on data governance and AI ethics.

Aleksandr offers a compelling critique of current AI systems, particularly large language models, which he views as limited in their ability to capture true human intelligence and emotion. He explains why ethical design cannot be an afterthought in AI development, and how the lack of transparency in algorithmic decision-making threatens not only individual privacy but democratic structures worldwide. We talk about the deep structural issues that exist in both legal and technical approaches to AI and data protection, including the challenges of harmonizing cross-border laws, the power imbalance between tech companies and users, and the geopolitical dimensions of digital sovereignty.

We also explore Aleksandr’s thoughts on the role of civil society and how community-driven oversight and decentralized governance might offer more sustainable alternatives to corporate-led AI development. He advocates for a deeper integration of ethical reasoning into computer science education, highlighting the need for stronger global frameworks that prioritize fairness, accountability, and the right to opt out of data-hungry systems.

This episode is a thoughtful and wide-ranging exploration of digital ethics, global privacy regulation, and the future of responsible technology. It issues an urgent call for collaboration among lawyers, technologists, regulators, and citizens to develop systems that truly serve humanity. We share hope for a future where the rule of law, not just code, guides the evolution of AI, and where human dignity remains at the center of innovation.

In episode 243 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Yogita Parulekar, CEO and Founder of Invigrid. Yogita brings over two decades of cybersecurity leadership to the conversation, beginning her journey in the industry long before it was a mainstream priority. With deep expertise in governance, infrastructure, and crisis response, Yogita discusses how the landscape of cyber threats has evolved dramatically, moving from relatively isolated risks to complex, interconnected threats fueled by AI, deepfakes, disinformation, and geopolitical uncertainty. She and Debbie explore the urgent need for companies to embed cybersecurity into the DNA of their business strategy, rather than treat it as an isolated IT function. Yogita emphasizes that today's cyber risk is not just technical—it is existential, affecting national security, business continuity, and societal trust. She shares insights on the growing importance of board-level engagement, cyber education, and scenario planning. Yogita also highlights how cyber and privacy are often misunderstood, offering a helpful analogy to distinguish their roles: privacy is about people, while security is about infrastructure. The discussion reinforces that to succeed in today’s environment, organizations must integrate privacy, cybersecurity, and governance from the start.

In episode 242 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Karina Klever, CEO and CISO at Klever Compliance. Karina shares her extensive career journey through IT operations, project management, and compliance leadership to demystify what effective governance really means. She challenges the outdated practice of blindly following frameworks and checklists that do not reflect a company’s actual business model or operational maturity. Karina introduces her pragmatic “Now, Next, Near, Never” methodology—a practical framework for prioritizing GRC (governance, risk, compliance) efforts based on relevance, applicability, and timing. She and Debbie unpack why so many organizations suffer from “compliance theater,” implementing policies they do not actually follow or understand. Karina explains the risks of orphaned controls, vague role descriptions, and overreliance on vendor templates that are misaligned with internal realities. She also stresses the importance of documentation, clarity in control language, and having a feedback loop for maturing compliance over time. This episode is a must-listen for organizations looking to move beyond checkbox audits and build scalable, operationally aligned governance structures that support real risk mitigation and long-term accountability.

In episode 241 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Phillip Mason, Global Privacy Program Manager at Corning, Inc. Phillip joins Debbie to discuss the complicated interplay between AI advancement, regulatory frameworks, and the ethical imperative of human judgment. Drawing from his diverse background in accounting, law, and privacy, Phillip offers an informed and multidimensional perspective on how businesses navigate emerging risks. He critiques overbroad AI legislation like the EU AI Act, which he believes may have unintended consequences for innovation, particularly among smaller firms lacking legal and compliance resources. Debbie and Phillip dive into examples of poorly executed AI rollouts that sparked public backlash, such as LinkedIn’s data harvesting practices and Microsoft’s Recall feature, emphasizing the importance of transparency and foresight. Phillip also unpacks the difference between having a “human in the loop” and placing real ethical judgment into practice. They discuss how organizations can build a culture of trust and accountability where data science and compliance work harmoniously. The conversation ultimately underscores that as algorithms get smarter, human oversight must also evolve, with thoughtful governance, interdisciplinary collaboration, and values-driven leadership.

In episode 240 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Ian Glazer, Vice President of Product Strategy at SGNL (SGNL.ai) and co-founder of IDPro. With decades of leadership in digital identity, Ian shares insights on how identity, privacy, and security have become essential foundations of digital interaction.

They explore how identity has shifted from managing usernames and passwords to helping individuals assert who they are in digital spaces. Ian and Debbie examine the rise of “proofing creep,” where services now require government IDs and biometric selfies, raising questions about over-collection and user dignity. Ian explains that identity is how privacy controls are enforced, and that organizations need to ask what data they are collecting, what it represents, and how it should be protected.

The conversation covers mobile driver's licenses, biometric authentication, and government-backed digital ID programs. Ian raises concerns about fragmented identity systems that could create barriers to global access and digital inclusion. They also discuss challenges with age verification laws that translate physical-world practices poorly into online environments, often leading to excessive data demands.

Ian outlines how emerging AI systems acting on behalf of users present new identity challenges around authority, authentication, and accountability. He ties this to similar concerns around digital estate management, emphasizing the need for consistent identity frameworks across different contexts.

Closing the episode, Ian calls for an empathetic approach to designing identity systems, one that recognizes real-world conditions such as aging, accessibility needs, and unequal access to technology. Debbie and Ian agree that identity systems should be easy to use, respectful of users, and built to support everyone, not just tech-savvy individuals.

In episode 239 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Saumya Gupta, Assistant Vice President for APAC and Japan at Platform 3 Solutions. Saumya brings a unique blend of deep technical expertise and strategic thinking to the conversation about data privacy in the modern enterprise. She and Debbie discuss how legacy systems represent one of the largest and most overlooked privacy risks, storing sensitive data long past its useful life and outside of governance controls. Saumya explains how data lake and lakehouse architectures can help businesses centralize, tag, and govern large volumes of structured and unstructured data more efficiently. She presents her open metadata model, a five-layer system that empowers organizations to classify data by technical properties, business relevance, operational quality, sensitivity, and compliance requirements. The conversation explores the collision between AI’s data hunger and privacy’s minimization mandate, and Saumya warns that enterprises cannot afford to ignore data lifecycle hygiene. They also discuss defensible deletion, audit readiness, and the importance of building data infrastructure with privacy as a foundational element. Saumya’s insights help organizations reframe legacy data not just as a cost center or liability, but as an opportunity to reset and future-proof their compliance strategies.

Debbie Reynolds “The Data Diva” talks to Temi Odesanya, Director, Responsible AI and Automation. We discuss her extensive background in artificial intelligence automation, detailing her journey that began with her family's business in the Netherlands. This early exposure to technology ignited her interest in data science, leading her to pursue postgraduate degrees and a scholarship in Italy. Throughout her career, she has become increasingly aware of the critical importance of data governance and compliance, particularly regarding customer data. The conversation highlights Temi's curiosity and the significance of ethical considerations in technology, especially in the context of automated decision-making and data privacy.

The discussion further explores the ethical implications of AI and the necessity for organizations to align their values with the technologies they adopt. Temi raises concerns about data misuse and the potential for technology to exacerbate privacy violations, emphasizing the need for transparency and meaningful consent in data handling. We advocate for multidisciplinary approaches to data governance, recognizing the growing consumer awareness of data misuse. Temi concludes with her vision for a future where privacy as prioritized, particularly for vulnerable groups, and where ethical considerations are integral to technological advancements.

Debbie Reynolds “The Data Diva” talks to Mathew Waddell, Founder, Tactically Secure. We discuss insights from his career in the tech industry, particularly in cybersecurity, and his experience working with government agencies and large corporations. He discusses his commitment to simplifying security for individuals and protecting them from threats like ransomware.
The discussion then shifts to the evolving landscape of cybersecurity threats, particularly the sophistication of ransomware attacks. Waddell stresses the need for businesses to integrate data privacy and cybersecurity strategies to combat these threats effectively. He points out the increasing trend of attackers stealing data and posting it online to coerce companies into paying ransoms, highlighting the interconnectedness of privacy violations and cybersecurity breaches. Both speakers agreed on the necessity for businesses to adopt proactive measures and recognize the importance of regulations like GDPR and CCPA in prioritizing data protection.
Waddell and Reynolds address the dual potential of AI tools in cybersecurity, noting that they can enhance security measures but can also be exploited by malicious actors. They discuss the importance of training employees to recognize cyber threats and the need for effective identity verification strategies in light of emerging technologies like deepfakes and his data privacy wish for the future.

Debbie Reynolds, "The Data Diva", talks to Michael McCracken, Privacy Consulting Manager at Credera. We discuss his career trajectory, transitioning from accounting to IT audit, which led him to specialize in data privacy, particularly concerning children's information and neurodivergence. He emphasizes the significance of inclusivity in the privacy sector, arguing that diverse teams enhance the effectiveness of privacy strategies.

The conversation highlights the complexities surrounding data collection, especially regarding minors. Michael argues that businesses should prioritize individual privacy and not rely on exploiting data. Debbie pointed out the risks associated with unnecessary data collection, which can lead to breaches and erode trust.

We advocate for treating data as a valuable asset requiring careful stewardship rather than a commodity to be exploited. They discussed the importance of passion and advocacy within organizations to bridge communication gaps and enhance collaboration on privacy initiatives.

Michael raises concerns about the inadequacies of current legal frameworks in protecting children's privacy, warning that companies often prioritize legal defenses over accountability. He and Debbie agreed that a multifaceted approach is necessary for effective privacy regulation. They emphasize the need for transparency and organizational responsibility in privacy practices, particularly as large companies struggle to adapt to regulatory changes. The discussion also touches on the impact of GDPR on U.S. business practices and the challenges posed by the lack of a cohesive national privacy framework.

In concluding,   Michael articulates his vision for a unified privacy ethic that prioritizes individual rights and ethical considerations. Debbie echoes this sentiment, advocating that organizations adopt clear ethical frameworks as guiding principles. 

In episode 235 of The Data Diva Talks Privacy, Debbie Reynolds welcomes Carly Kind, the Australian Privacy Commissioner at the Office of the Australian Information Commissioner. Carly shares her remarkable journey from a career in criminal defense law and human rights advocacy to becoming one of the leading voices in global privacy regulation. She discusses her early exposure to privacy issues through work at the UN and NGOs such as Privacy International and the Ada Lovelace Institute, where she focused on the intersection of technology, human rights, and AI governance.

Debbie and Carly explore privacy's philosophical and practical dimensions, touching on its roots in human dignity, autonomy, and democracy. Carly challenges the often-framed conflict between privacy and innovation, arguing that strong privacy protections foster trust and are essential for societal progress and sustainable technological development. She also shares her insights as a regulator, describing the complex and often resource-intensive reality of enforcing privacy laws and ensuring compliance across various entities.

The conversation then turns to pressing global concerns, particularly the privacy implications of artificial intelligence, including the erosion of purpose limitation principles and the growing dominance of data-rich tech companies. Carly raises important concerns about biometric surveillance, data exploitation in real estate and credit sectors, and the widespread tracking of individuals’ digital behavior.

One of the focal points of the discussion is Australia’s Social Media Minimum Age Act, which mandates a ban on children under 16 using social media platforms. Carly reflects on the privacy risks of increased identity verification, the evolving nature of the internet, and the unintended consequences of well-intentioned regulation. She also discusses the importance of advancing children’s online privacy rights through robust regulatory codes.

In closing, Carly shares her vision for a more equitable digital future. She emphasizes the need for public reconnection with the foundational values of privacy, calls for rebalancing power in the digital ecosystem, and advocates for genuine consumer choice and competitive digital markets. This thought-provoking conversation offers a nuanced look at the global state of privacy, regulation, and the future of human rights in the digital age.

Debbie Reynolds “The Data Diva” talks to Marko Dinic, CEO of Jatheon Technologies, Inc. We discuss the evolving landscape of data archiving, compliance, and artificial intelligence. Marko shares his extensive experience in the archiving space, spanning over two decades, and highlights how regulatory frameworks like Sarbanes-Oxley, GDPR, and CCPA have shaped data retention practices across industries. He explains the complexities of managing data archiving, including challenges with deletion, deduplication, and maintaining audit logs while complying with privacy laws. The conversation explores the growing tension between data retention requirements and privacy mandates, especially in light of AI advancements.

Marko emphasizes how AI-driven systems are transforming corporate data management, creating both opportunities and new legal and compliance concerns. The discussion touches on the evolution of data archiving from being a compliance necessity to becoming a strategic corporate asset. Laws such as Sarbanes-Oxley, GDPR, and CCPA significantly impact how organizations must retain and manage data while balancing individuals’ right to be forgotten. AI complicates data deletion processes, raising new privacy risks as organizations increasingly rely on automated compliance workflows. The growing importance of archiving systems as enterprise-wide data hubs underscores their role in providing AI-driven insights while ensuring regulatory adherence.

As AI continues to reshape the business landscape, organizations must rethink data governance strategies to navigate compliance challenges. AI models introduce complexities in legal discovery and searchability, requiring transparency in how AI-generated outputs are produced and stored. With companies leaning more heavily on archiving to manage the vast amounts of data being generated, data governance, compliance, and privacy concerns will remain central to business strategy. The integration of AI into archiving systems represents both an opportunity and a challenge, requiring careful consideration of legal, ethical, and technological factors to maintain compliance and data integrity.

Debbie Reynolds “The Data Diva” talks to Peter Cranstone, CEO, 3PMobile, Digital Ecosystems and Consumer Choice. We discuss his personal journey in technology, beginning with his early work on data compression inspired by his uncle. He discusses the creation of the Do Not Track web standard aimed at enhancing user privacy, which faced challenges due to consumer preferences for convenience. Despite the introduction of privacy regulations such as GDPR and CCPA, he notes that users often prioritize instant gratification over privacy. His collaboration with a Kaiser Permanente executive shifted his focus from IT architecture to business strategy, broadening his understanding of how technology can be tailored to meet individual needs in healthcare.

Cranstone also recountes the historical evolution of windshield wipers, illustrating how innovation can take time to gain public acceptance. He highlightes the contributions of Mary Anderson and Robert Kearns, emphasizing the importance of gradual acceptance in automotive technology. Additionally, he discusses the complexities of engaging patients in their health management, proposing a dynamic app that allows for continuous interaction with healthcare providers, thereby addressing the challenges posed by an aging population.

The conversation shifts to data privacy and decentralization, with Cranstone advocating for a secure wallet system that empowers users to manage their data. He argues for a trusted web model where individuals are compensated for sharing their information, contrasting it with current practices that often exploit user data. Cranstone also addresses the need for equitable resource distribution, suggesting that the value generated by major tech companies could be redirected to alleviate issues like food insecurity. He concludes by emphasizing the importance of AI in personalizing user interactions while maintaining privacy, advocating for a moral approach to data management that respects individuals and promotes equitable distribution, and his data privacy hope for the future.