In episode 240 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Ian Glazer, Vice President of Product Strategy at SGNL (SGNL.ai) and co-founder of IDPro. With decades of leadership in digital identity, Ian shares insights on how identity, privacy, and security have become essential foundations of digital interaction.

They explore how identity has shifted from managing usernames and passwords to helping individuals assert who they are in digital spaces. Ian and Debbie examine the rise of “proofing creep,” where services now require government IDs and biometric selfies, raising questions about over-collection and user dignity. Ian explains that identity is how privacy controls are enforced, and that organizations need to ask what data they are collecting, what it represents, and how it should be protected.

The conversation covers mobile driver's licenses, biometric authentication, and government-backed digital ID programs. Ian raises concerns about fragmented identity systems that could create barriers to global access and digital inclusion. They also discuss challenges with age verification laws that translate physical-world practices poorly into online environments, often leading to excessive data demands.

Ian outlines how emerging AI systems acting on behalf of users present new identity challenges around authority, authentication, and accountability. He ties this to similar concerns around digital estate management, emphasizing the need for consistent identity frameworks across different contexts.

Closing the episode, Ian calls for an empathetic approach to designing identity systems, one that recognizes real-world conditions such as aging, accessibility needs, and unequal access to technology. Debbie and Ian agree that identity systems should be easy to use, respectful of users, and built to support everyone, not just tech-savvy individuals.

In episode 239 of The Data Diva Talks Privacy Podcast, host Debbie Reynolds, “The Data Diva,” welcomes Saumya Gupta, Assistant Vice President for APAC and Japan at Platform 3 Solutions. Saumya brings a unique blend of deep technical expertise and strategic thinking to the conversation about data privacy in the modern enterprise. She and Debbie discuss how legacy systems represent one of the largest and most overlooked privacy risks, storing sensitive data long past its useful life and outside of governance controls. Saumya explains how data lake and lakehouse architectures can help businesses centralize, tag, and govern large volumes of structured and unstructured data more efficiently. She presents her open metadata model, a five-layer system that empowers organizations to classify data by technical properties, business relevance, operational quality, sensitivity, and compliance requirements. The conversation explores the collision between AI’s data hunger and privacy’s minimization mandate, and Saumya warns that enterprises cannot afford to ignore data lifecycle hygiene. They also discuss defensible deletion, audit readiness, and the importance of building data infrastructure with privacy as a foundational element. Saumya’s insights help organizations reframe legacy data not just as a cost center or liability, but as an opportunity to reset and future-proof their compliance strategies.

Debbie Reynolds “The Data Diva” talks to Temi Odesanya, Director, Responsible AI and Automation. We discuss her extensive background in artificial intelligence automation, detailing her journey that began with her family's business in the Netherlands. This early exposure to technology ignited her interest in data science, leading her to pursue postgraduate degrees and a scholarship in Italy. Throughout her career, she has become increasingly aware of the critical importance of data governance and compliance, particularly regarding customer data. The conversation highlights Temi's curiosity and the significance of ethical considerations in technology, especially in the context of automated decision-making and data privacy.

The discussion further explores the ethical implications of AI and the necessity for organizations to align their values with the technologies they adopt. Temi raises concerns about data misuse and the potential for technology to exacerbate privacy violations, emphasizing the need for transparency and meaningful consent in data handling. We advocate for multidisciplinary approaches to data governance, recognizing the growing consumer awareness of data misuse. Temi concludes with her vision for a future where privacy as prioritized, particularly for vulnerable groups, and where ethical considerations are integral to technological advancements.

Debbie Reynolds “The Data Diva” talks to Mathew Waddell, Founder, Tactically Secure. We discuss insights from his career in the tech industry, particularly in cybersecurity, and his experience working with government agencies and large corporations. He discusses his commitment to simplifying security for individuals and protecting them from threats like ransomware.
The discussion then shifts to the evolving landscape of cybersecurity threats, particularly the sophistication of ransomware attacks. Waddell stresses the need for businesses to integrate data privacy and cybersecurity strategies to combat these threats effectively. He points out the increasing trend of attackers stealing data and posting it online to coerce companies into paying ransoms, highlighting the interconnectedness of privacy violations and cybersecurity breaches. Both speakers agreed on the necessity for businesses to adopt proactive measures and recognize the importance of regulations like GDPR and CCPA in prioritizing data protection.
Waddell and Reynolds address the dual potential of AI tools in cybersecurity, noting that they can enhance security measures but can also be exploited by malicious actors. They discuss the importance of training employees to recognize cyber threats and the need for effective identity verification strategies in light of emerging technologies like deepfakes and his data privacy wish for the future.

Debbie Reynolds, "The Data Diva", talks to Michael McCracken, Privacy Consulting Manager at Credera. We discuss his career trajectory, transitioning from accounting to IT audit, which led him to specialize in data privacy, particularly concerning children's information and neurodivergence. He emphasizes the significance of inclusivity in the privacy sector, arguing that diverse teams enhance the effectiveness of privacy strategies.

The conversation highlights the complexities surrounding data collection, especially regarding minors. Michael argues that businesses should prioritize individual privacy and not rely on exploiting data. Debbie pointed out the risks associated with unnecessary data collection, which can lead to breaches and erode trust.

We advocate for treating data as a valuable asset requiring careful stewardship rather than a commodity to be exploited. They discussed the importance of passion and advocacy within organizations to bridge communication gaps and enhance collaboration on privacy initiatives.

Michael raises concerns about the inadequacies of current legal frameworks in protecting children's privacy, warning that companies often prioritize legal defenses over accountability. He and Debbie agreed that a multifaceted approach is necessary for effective privacy regulation. They emphasize the need for transparency and organizational responsibility in privacy practices, particularly as large companies struggle to adapt to regulatory changes. The discussion also touches on the impact of GDPR on U.S. business practices and the challenges posed by the lack of a cohesive national privacy framework.

In concluding,   Michael articulates his vision for a unified privacy ethic that prioritizes individual rights and ethical considerations. Debbie echoes this sentiment, advocating that organizations adopt clear ethical frameworks as guiding principles. 

In episode 235 of The Data Diva Talks Privacy, Debbie Reynolds welcomes Carly Kind, the Australian Privacy Commissioner at the Office of the Australian Information Commissioner. Carly shares her remarkable journey from a career in criminal defense law and human rights advocacy to becoming one of the leading voices in global privacy regulation. She discusses her early exposure to privacy issues through work at the UN and NGOs such as Privacy International and the Ada Lovelace Institute, where she focused on the intersection of technology, human rights, and AI governance.

Debbie and Carly explore privacy's philosophical and practical dimensions, touching on its roots in human dignity, autonomy, and democracy. Carly challenges the often-framed conflict between privacy and innovation, arguing that strong privacy protections foster trust and are essential for societal progress and sustainable technological development. She also shares her insights as a regulator, describing the complex and often resource-intensive reality of enforcing privacy laws and ensuring compliance across various entities.

The conversation then turns to pressing global concerns, particularly the privacy implications of artificial intelligence, including the erosion of purpose limitation principles and the growing dominance of data-rich tech companies. Carly raises important concerns about biometric surveillance, data exploitation in real estate and credit sectors, and the widespread tracking of individuals’ digital behavior.

One of the focal points of the discussion is Australia’s Social Media Minimum Age Act, which mandates a ban on children under 16 using social media platforms. Carly reflects on the privacy risks of increased identity verification, the evolving nature of the internet, and the unintended consequences of well-intentioned regulation. She also discusses the importance of advancing children’s online privacy rights through robust regulatory codes.

In closing, Carly shares her vision for a more equitable digital future. She emphasizes the need for public reconnection with the foundational values of privacy, calls for rebalancing power in the digital ecosystem, and advocates for genuine consumer choice and competitive digital markets. This thought-provoking conversation offers a nuanced look at the global state of privacy, regulation, and the future of human rights in the digital age.

Debbie Reynolds “The Data Diva” talks to Marko Dinic, CEO of Jatheon Technologies, Inc. We discuss the evolving landscape of data archiving, compliance, and artificial intelligence. Marko shares his extensive experience in the archiving space, spanning over two decades, and highlights how regulatory frameworks like Sarbanes-Oxley, GDPR, and CCPA have shaped data retention practices across industries. He explains the complexities of managing data archiving, including challenges with deletion, deduplication, and maintaining audit logs while complying with privacy laws. The conversation explores the growing tension between data retention requirements and privacy mandates, especially in light of AI advancements.

Marko emphasizes how AI-driven systems are transforming corporate data management, creating both opportunities and new legal and compliance concerns. The discussion touches on the evolution of data archiving from being a compliance necessity to becoming a strategic corporate asset. Laws such as Sarbanes-Oxley, GDPR, and CCPA significantly impact how organizations must retain and manage data while balancing individuals’ right to be forgotten. AI complicates data deletion processes, raising new privacy risks as organizations increasingly rely on automated compliance workflows. The growing importance of archiving systems as enterprise-wide data hubs underscores their role in providing AI-driven insights while ensuring regulatory adherence.

As AI continues to reshape the business landscape, organizations must rethink data governance strategies to navigate compliance challenges. AI models introduce complexities in legal discovery and searchability, requiring transparency in how AI-generated outputs are produced and stored. With companies leaning more heavily on archiving to manage the vast amounts of data being generated, data governance, compliance, and privacy concerns will remain central to business strategy. The integration of AI into archiving systems represents both an opportunity and a challenge, requiring careful consideration of legal, ethical, and technological factors to maintain compliance and data integrity.

Debbie Reynolds “The Data Diva” talks to Peter Cranstone, CEO, 3PMobile, Digital Ecosystems and Consumer Choice. We discuss his personal journey in technology, beginning with his early work on data compression inspired by his uncle. He discusses the creation of the Do Not Track web standard aimed at enhancing user privacy, which faced challenges due to consumer preferences for convenience. Despite the introduction of privacy regulations such as GDPR and CCPA, he notes that users often prioritize instant gratification over privacy. His collaboration with a Kaiser Permanente executive shifted his focus from IT architecture to business strategy, broadening his understanding of how technology can be tailored to meet individual needs in healthcare.

Cranstone also recountes the historical evolution of windshield wipers, illustrating how innovation can take time to gain public acceptance. He highlightes the contributions of Mary Anderson and Robert Kearns, emphasizing the importance of gradual acceptance in automotive technology. Additionally, he discusses the complexities of engaging patients in their health management, proposing a dynamic app that allows for continuous interaction with healthcare providers, thereby addressing the challenges posed by an aging population.

The conversation shifts to data privacy and decentralization, with Cranstone advocating for a secure wallet system that empowers users to manage their data. He argues for a trusted web model where individuals are compensated for sharing their information, contrasting it with current practices that often exploit user data. Cranstone also addresses the need for equitable resource distribution, suggesting that the value generated by major tech companies could be redirected to alleviate issues like food insecurity. He concludes by emphasizing the importance of AI in personalizing user interactions while maintaining privacy, advocating for a moral approach to data management that respects individuals and promotes equitable distribution, and his data privacy hope for the future.

Debbie Reynolds, "The Data Diva," talks to Caroline Lancelot Miltgen, a Social and Behavioral Scientist (PhD), Consumer/UX Privacy expert, and Responsible AI Expert (France). We discuss Caroline's expertise in consumer privacy, user experience (UX) privacy, and AI ethics. She shares insights from her academic career and extensive research on consumer behavior concerning privacy.

The discussion explores several critical topics, starting with the misconception that consumers don't care about their privacy simply because they frequently share their data. Caroline explains that, in reality, many consumers feel powerless and lack the tools or understanding to protect their personal information. We also explore the challenges posed by the power imbalance between consumers and companies collecting their data, highlighting that existing U.S. and European regulations have not fully addressed this issue.

The conversation also covers the differences between privacy regulations in the U.S. and Europe, particularly around consent and opting out. Caroline underscores consumers' difficulties in opting out of data collection and points out that companies often place the burden of privacy protection on the consumer. We discuss how artificial intelligence (AI) further complicates privacy matters, as many consumers unknowingly provide data used in AI models, raising concerns about AI's impact on privacy. The ethical implications of data usage in AI systems are also a focal point. Caroline calls for a multidisciplinary approach to address privacy challenges, combining legal, technical, and societal perspectives.

Caroline emphasizes that trust and education are essential in improving consumer privacy and suggests that businesses need to be more transparent and less intrusive in their data collection practices. She argues that solving privacy issues requires more than legal or technical solutions, stressing the importance of a broader perspective considering consumer needs. The episode offers valuable insights into how consumers, businesses, and regulators can collaborate to create a more privacy-conscious digital landscape and her hope for Data Privacy in the future.

Debbie Reynolds “The Data Diva” talks to Soribel Feliz, AI Governance, National Security. AI Coach - Ex-Meta. Former Diplomat. We discuss artificial intelligence policy, governance, and its societal implications. Soribel shares her unique career journey, beginning as a U.S. diplomat serving in Europe, South America, and Washington, D.C., before making a bold transition into the tech industry. She provides a behind-the-scenes look at her work at Meta, where she contributed to election integrity and content moderation, and later at Microsoft, where she helped shape the company’s response to the emergence of ChatGPT. She also discusses her time in Congress as a Rapid Response AI Policy Fellow, where she played a crucial role in helping lawmakers understand and regulate AI, leading to her current work in the US goverbment on AI compliance and governance.
Throughout the conversation, Soribel examines the necessity of AI guardrails to mitigate potential harms while fostering innovation. She challenges the notion that regulation stifles technological progress, arguing that responsible AI development is essential to prevent unintended consequences and protect vulnerable populations. She also provides insight into the growing efforts within Congress to improve technological literacy, including specialized fellowships and collaborations with think tanks to ensure more informed policymaking.
Debbie and Soribel also discuss the broader global impact of AI regulations, particularly the EU AI Act, which has set a precedent for risk-based governance. They explore the challenges of implementing age verification laws, weighing the benefits of child protection against the privacy risks and potential barriers to access that such laws may create. Soribel emphasizes the importance of workforce adaptation, noting that as AI reshapes industries, professionals must explore new career paths and leverage transferable skills to remain competitive. Drawing from her expertise as a career coach, she offers valuable advice on transitioning into emerging fields without the need for a complete restart.
The conversation highlights growing concerns over AI’s effects on employment, economic inequality, misinformation, and data privacy. Soribel underscores the importance of making AI discussions more accessible to the public, avoiding overly technical jargon, and focusing on real-world impacts. She warns of the dangers posed by unchecked AI development but also encourages a balanced perspective that acknowledges both the risks and opportunities presented by the technology.

Soribel shares her vision for a future where AI’s economic benefits are more equitably distributed and where technological advancements align with sustainability efforts. She advocates for a more responsible and ethical approach to AI development—one that prioritizes fairness, transparency, and societal well-being.
This episode offers an in-depth look at the most pressing AI policy challenges and the evolving role of governance in shaping the future of technology.

Debbie Reynolds “The Data Diva” talks to Lawrence Gentilello, CEO and Founder of Optery, a company dedicated to removing personal data from online databases to enhance privacy and security for individuals and businesses. We discuss his career journey, beginning with his early work in the data industry at BlueKai, a firm specializing in collecting intent and purchase data for targeted advertising. He discusses how the industry evolved from simple ad personalization into a vast ecosystem where personal data is used in ways that can pose risks to individuals. His decision to launch Optery in 2020 was influenced by both his professional experience and a personal incident in which criminals used publicly available information to create fraudulent IDs in his and his wife’s names.
Debbie and Lawrence examine the hidden world of data brokers—companies that gather, package, and sell personal information without individuals’ direct knowledge or consent. Lawrence describes how these brokers operate across different sectors, from advertising and email prospecting to risk analytics and law enforcement databases. He highlights the difficulty individuals face in protecting their information, as the average person has around 100 exposed online profiles, making them vulnerable to identity theft, cyberattacks, and even physical security threats.

The discussion also covers emerging threats, including the rise of AI-native data brokers—companies that use artificial intelligence to automate the collection and sale of personal data at an even greater scale. Lawrence describes how these firms often operate without transparency and avoid legal disclosure, making it harder for individuals to track how their information is being used. He also references a recent incident involving the Russian ransomware gang Black Basta, where leaked internal communications revealed that cybercriminals were using data broker services like ZoomInfo and RocketReach to research and target victims.
Debbie and Lawrence explore the real-world consequences of unchecked data sharing, including phishing scams, cyberattacks, and even physical harm. They discuss how executives, government officials, and everyday individuals become targets due to the ease of accessing their personal data online. Lawrence explains how Optery’s services help address these risks through deep-crawling search technology, before-and-after screenshot verification, and automated monthly scans that continuously remove exposed information.
Lawrence outlines his vision for improving privacy protections. He advocates for a standardized set of privacy laws across the U.S., stronger enforcement against data brokers that fail to comply with regulations, and the inclusion of authorized agent provisions in all privacy laws to ensure individuals can get assistance in managing their data. Debbie emphasizes the importance of ongoing awareness and proactive steps to combat the risks associated with data brokers. This insightful discussion sheds light on the urgent need for privacy-focused solutions and stronger policies to protect individuals and their data.

In this episode of The Data Diva Talks Privacy podcast, host Debbie Reynolds welcomes back Kenya Dixon, litigation partner at Nelson Mullins and former Director of White House Information Governance. Their discussion centers on government data privacy, the impact of artificial intelligence on federal records, and the importance of following proper protocols in handling personal information.

Kenya provides insight into the Privacy Act of 1974, which was enacted in response to concerns about government misuse of personal data. She explains how federal agencies are required to follow structured processes when handling personally identifiable information (PII) and creating new systems of record. The conversation delves into the recent controversies surrounding the government's data practices, including concerns over the lack of transparency regarding artificial intelligence and data consolidation efforts. Kenya emphasizes that while the government has a right to upgrade its technology and streamline data processes, the public must be informed through proper documentation and procedural adherence.

The discussion also touches on the role of artificial intelligence in government data management and the potential concerns regarding private entities' access to government-held personal information. Kenya highlights the importance of public engagement and awareness in privacy-related matters, encouraging individuals to stay informed, participate in democratic processes, and understand how their data is used. She also shares her experiences from her time in government, addressing misinformation and misconceptions about data handling in federal agencies.

As privacy issues continue to make headlines, Kenya and Debbie explore the broader implications of data governance, cybersecurity regulations, and the likelihood of federal privacy legislation. They conclude by stressing the significance of state-level privacy laws, the role of AI in shaping the future of data governance, and the ongoing need for transparency in government data practices. This episode offers valuable insights for privacy professionals, policymakers, and anyone interested in the evolving landscape of data privacy.

Debbie Reynolds “The Data Diva” talks to Carey Parker, Podcast host and author of "Firewalls Don't Stop Dragons: A Step-by-Step Guide to Computer Security and Privacy for Non-Techies". We discuss the importance of addressing contemporary privacy issues on their respective podcasts. Parker, inspired by the Snowden revelations, shared insights from his career and the motivation behind writing a book on privacy and security. We emphasize the need for clarity in media coverage of significant data breaches.

The conversation highlights the distinction between cybersecurity and privacy, with Reynolds asserting that each should not be viewed as trade-offs. Parker used a political cartoon to illustrate that privacy violations are more severe and irreversible than security failures. We debated the conflicting interests between individuals and corporations regarding data privacy, with Parker expressing frustration over the lack of effective privacy laws in the U.S. and advocating for transparency and education in privacy matters.

We both recognize the importance of individual actions in enhancing privacy and security, advocating for proactive measures like using password managers. We discussed specific privacy concerns, such as the financial troubles of 23andMe and the implications for sensitive DNA information in the event of data breaches. We also examine the privacy risks associated with IoT devices and the inadequacies of current privacy policies, proposing a consumer-driven approach to privacy standards and Caery shares his privacy wish for the future.

Debbie Reynolds “The Data Diva” talks with Alvaro De Nicholas, CEO of DNA Ventures, about his career in technology and his views on the growing divide in data privacy.

Alvaro shares his journey from telecommunications engineering to leading digital transformation projects at major companies like Accenture, British Telecom, and Lloyds Bank and his connections with NASA. Reflecting on his experiences, he highlights how technology has advanced rapidly while privacy protections have lagged.

A key theme of the discussion revolves around data privacy implications and the increasing divide between those who can afford to protect their privacy and those who cannot. Alvaro raises the thought-provoking question: “Is privacy the privilege of those who can afford it?” He explains how wealthier individuals often have the means to limit their digital footprint while the broader population is subjected to extensive data collection, fueling concerns about fairness, bias, and transparency.

Debbie and Alvaro explore the growing presence of artificial intelligence and how it amplifies privacy risks and potentially entrenches societal inequalities. They discuss the potential dangers of AI models that rely on incomplete or biased data, which could lead to life-altering decisions without individuals’ knowledge or consent.

The conversation also touches on the proliferation of IoT (Internet of Things) devices and the invisible ways they gather data. Alvaro highlights how even everyday items, such as smartwatches and pet trackers, contribute to a vast network of personal data collection. Together, they reflect on the lack of regulation in this space and the urgent need for greater transparency and consumer awareness.

Biometrics emerges as another focal point of the episode. While Alvaro acknowledges the security benefits of biometrics, he expresses deep concern about the irreversible nature of biometric breaches. Debbie echoes these concerns, citing examples where biometric data is being collected for seemingly trivial purposes, such as purchasing beverages at sports stadiums. This raises questions about the balance between convenience and risk.

Alvaro also considers the impact of regulations like GDPR and notes their influence outside Europe. He envisions a future where individuals have greater control over their data, managing it as a personal asset, and hopes for privacy in the future.

Debbie Reynolds “The Data Diva” talks to Lisa LeVasseur, the founder of Internet Safety Labs, for a compelling discussion about the critical intersection of technology, privacy, and safety. Lisa shares her journey from software development and engineering to founding an organization that pioneers safety standards and independent testing for digital technology. She highlights the shift in focus from privacy to safety, explaining how "safety" encompasses broader harms beyond data privacy, covering issues like deceptive patterns and commercial surveillance.

Lisa delves into the unseen risks associated with apps and websites, describing how user data often flows to numerous third parties without the user's knowledge or consent. She introduces the concept of safety labels developed by Internet Safety Labs, which categorize and score apps based on the level of risk posed by their data-sharing practices. This innovative approach aims to provide greater transparency and accountability in the tech industry.

The conversation explores regulation limitations, with Lisa expressing skepticism about the effectiveness of current data broker laws and the enforcement of privacy regulations. She discusses the hidden ecosystem of identity resolution and customer data platforms, underscoring their role in tracking and correlating personal information across platforms and devices.

Debbie and Lisa also discuss the larger implications of data monetization, advocating for disallowing the personal information market as a radical step toward enhancing consumer safety. They also discuss the need for stronger accountability measures and the importance of raising awareness about the data economy’s impact on individuals.

Lisa concludes by inviting listeners to engage with Internet Safety Labs’ initiatives, including participating in developing safety standards and joining a pilot program for certifying privacy auditors. This episode is a must-listen for anyone interested in the evolving landscape of data privacy, consumer protection, the push for safer technology, and hope for future privacy.

https://internetsafetylabs.org/

Debbie Reynolds “The Data Diva” talks to Elizabeth Aguado,  Emerging Technologies, Responsible AI Expert (South America). We discuss  the impact of regulations and frameworks in South America and Latin America, as well as the relevance of discussing underprivileged communities. Aguado raises important concerns about privacy and data protection in the global South, emphasizing the slow progress of authorities in implementing regulations and the high cost of privacy.

Additionally, she addressed the lack of attention on ethical questions related to emerging technologies and the general lack of concern about privacy among people in the global South, emphasizing the importance of igniting conversations and building awareness. We also discussed our joint effort on the Tech Ethics and Public Policy course at Stanford, where my presentation on biometrics was well-received.

Debbie Reynolds, "The Data Diva" talks to Mike Swift, the Chief Global Digital Risk Correspondent at MLex Market Insights. Mike's extensive background in journalism and his focus on the intersection of technology and the law gives him a compelling perspective on the conversation.

Mike discusses his career journey, from reporting on major tech companies like Google and Facebook at The San Jose Mercury News to covering digital risk, privacy, and antitrust issues at MLex. The conversation highlights the increasing overlap between privacy and antitrust. Mike offers insights into significant cases involving Google's ad tech practices and the ongoing debate between Apple and Google over app store control.

The episode's central theme is the evolving view of personal data as a consumer protection issue and a national security concern. Mike reflects on recent legislative efforts to restrict the flow of Americans' data to foreign adversaries, marking a notable shift in privacy discourse at the federal level.

Debbie and Mike explore the growing influence of data brokers, who often operate without direct relationships with consumers while amassing and selling vast amounts of personal data. They discuss the 23andMe breach and raise questions about the adequacy of credit monitoring as a remedy for biometric data leaks.

Artificial intelligence also takes center stage as the two unpack the debate over regulation and innovation. Mike shares insights on California's legislative efforts to regulate powerful AI systems, emphasizing the need to balance technological advancement with consumer protection and privacy safeguards.

The discussion highlights the U.S.'s lack of comprehensive federal privacy legislation, exposing consumers to risks while creating inconsistent protections across states. Mike underscores the need for stronger regulatory guardrails and advocates for recognizing privacy as a fundamental human right.

This episode offers a deep dive into the intersection of technology, law, and privacy. Mike provides valuable insights on the current and future landscape of data governance and shares his hope for Data Privacy in the future.

Debbie Reynolds “The Data Diva” talks to Luke Mulks, Vice President of Business Operations at Brave Software and host of the Brave Technologist podcast.

Luke shares his unique journey from working in ad tech to joining Brave Software, where he now champions a privacy-first approach to browsing and online advertising. The conversation explores the profound issues in the ad tech ecosystem, the challenges of data over-collection, and the opportunities for innovation in building user-respecting solutions.

Luke discusses the evolution of ad targeting from domain-specific ads to intrusive audience tracking across the web, underscoring how these methods have fueled surveillance capitalism. He explains how Brave Software takes a fundamentally different approach by respecting user privacy as a default setting while creating viable business models. By leveraging privacy-preserving technologies, Brave has proven that companies can monetize digital ecosystems without compromising user trust.

Debbie and Luke address global privacy controls (GPC) and the broader regulatory landscape, highlighting its limitations and the challenges of relying on companies to act in good faith. Luke emphasizes that privacy solutions must be built into the technology—“an architectural and foundational approach”—rather than depending on users to opt into protections or companies to self-regulate. They also discuss the interplay between privacy and competition, exploring how dominant tech companies leverage monopolistic control over browsers, operating systems, and ad ecosystems to stifle innovation and consumer choice.

The episode cexplores concerns, including cashless societies, financial privacy, and AI-powered content creation. Luke explains the importance of digital tools that preserve the anonymity of cash in a digital environment, warn and warnsst the risks of hyper-centralized financial systems. He also reflects on how AI disrupts privacy, advertising, and content integrity, underscoring the need for better tooling and ethical governance to address emerging challenges.

Debbie Reynolds “The Data Diva” talks to

Debbie Reynolds “The Data Diva” talks to Matthew Rosenquist, Mercury Risk's Chief Information Security Officer (CISO), cybersecurity strategist, and LinkedIn Top Voice. With over 35 years of experience, Matthew shares his dynamic career journey, which started with internal investigations, building Intel’s first Security Operations Center, and leading crisis response teams. His extensive background includes advising governments, businesses, and academia on emerging threats and cybersecurity best practices.

Matthew highlights the critical evolution of cybersecurity from a “nice-to-have” to a mission-critical business necessity while discussing how rising consumer and regulatory expectations are reshaping the cybersecurity landscape. He explains the growing gap between mounting security demands and available resources, emphasizing that cybersecurity leaders must demonstrate value beyond risk prevention. Matthew advocates for evolving cybersecurity’s role from compliance-focused operations to strategic business enablers that deliver competitive advantages and even revenue opportunities.


The conversation explores the interconnectedness of privacy and cybersecurity, framing both as foundational to digital trust. Matthew emphasizes that privacy failures and cybersecurity breaches undermine trust with customers, regulators, and business partners, making collaboration between cybersecurity and privacy professionals essential. He also illuminates the importance of proactivity in cybersecurity, contrasting it with the reactive “firefighting” mindset often seen in organizations.


Matthew goes into the threat of insider risks, distinguishing between malicious insiders and non-malicious actors who unintentionally create vulnerabilities. Drawing from his experience, he underscores the need for strong leadership, clear policies, and an organizational culture where employees feel empowered to report issues without fear. Looking to the future, he stresses the importance of having cybersecurity expertise on boards of directors, enabling organizations to navigate rising risks and better align cybersecurity initiatives with business objectives.
As the discussion concludes, Matthew shares his wish for the cybersecurity industry: improved communication, collaboration, and leadership. He calls for greater strategic thinking, proactive risk management, and a collective effort to stay ahead of evolving threats in an increasingly complex digital world. He also highlights his hope for Cybersecurity and Data Privacy in the future.